As the Super Bowl approaches, Airbnb rival Vrbo announced its use of “unauthorized event prevention technology,” algorithms that try to avoid house parties at rental properties. Similar to a credit system, the tech generates a risk score for each booking, giving hosts a chance to call it off.

The Expedia-owned company will score renters based on their length of stay, lead time, number of guests and other factors. Vrbo is careful to add that it doesn’t use demographical information (race, sex, gender, age and so on) to evaluate risk. If a renter triggers a warning, Vrbo sends the host an email alert, giving them the option to cancel without a penalty; guests also receive a message reminding them of the policy.

Although Vrbo is rolling out the new system nationally, it recently conducted a yearlong pilot test in the Phoenix area, where Super Bowl LVII takes place on February 12th. The trial allegedly prevented over 500 unauthorized bookings in the US, saving hosts $2.5 million in cleanup and repairs. Vrbo will also restrict same-day bookings, team up with noise-monitoring and neighborhood watch services and share data with Airbnb about troublesome renters.

The new system will automatically apply to all US bookings. Vrbo says fewer than 0.25 percent of all weekend bookings in the US have led to party-related complaints.

Nothing’s Carl Pei has confirmed the upcoming Phone 2 will launch in the US later this year. The CEO and co-founder described the 2023 flagship as “more premium” than the Nothing Phone 1, which Engadget saw as “an impressive debut” in our review.

Pei dropped several tidbits in an interview with Inverse. First, he says the Ear 1 earbuds’ US launch was a barometer for US demand. “We’re really excited about the US market because it’s a big country,” said Pei. “If you look at our earbuds sales, about one-third comes from the US. And by not launching our phone in the US, we’re leaving potentially a third of the volume on the table.” Pei describes the Phone 2’s US launch as Nothing’s top priority this year.

Pei suggests declining smartphone sales indicate the US market is ripe for innovation. “From a business point of view, [Apple and Samsung] shouldn’t go very niche and try something completely different because they might alienate current users. That’s where smaller companies like us can come in and try and do something different. It’s not that we’re smarter or that they can’t, but it just doesn’t make sense for them to do it.” However, although stagnation may play a part, the biggest reasons for the nosedive have likely been supply-chain problems, inflation and an unpredictable economy.

Steve Jennings via Getty Images

Pei says red tape was the main reason Nothing didn't launch the Phone 1 in the US. American carriers demand Android manufacturers comply with various adaptations and preinstalled apps, which takes significant resources. But the company’s rapid growth and proven ability to move volume has given it leverage. “When you make a smartphone for the US, you need to work with the carriers on certification and adapting some of their features into your OS,” he said. “We didn’t have the resources for that before, and now we do,” Pei adds that Nothing has grown from 200 employees in 2021 to 400 today.

Although Pei doesn’t spill many secrets about the Phone 2, he hints at a higher-end design than its predecessor. “We’re developing a smartphone that’s more premium than the Nothing Phone 1, and software will be a big focus area for us.” However, he stresses that the Phone 1 was also a flagship handset. “Mobile chipsets have really improved over the last seven to nine years. That’s why I want to avoid calling the Phone 2 a flagship because that would mean that the Phone 1 was not a flagship. Within our own portfolio of smartphones, the Phone 1 was very much a flagship in terms of the amount of care we put into the product. That’s why I used the word ‘premium’ [to describe the Phone 2] instead, which signifies that it’s a more premium step up, but it’s still a flagship just like the Phone 1.”

Swiss scientists have developed a proof-of-concept method to collect environmental DNA (eDNA) from high-arching forest canopies, an under-observed habitat. Rather than hiring skilled climbers to risk their lives to grab a little bug and bird DNA, the team flew a collection drone into the trees to capture genetic material — giving them a clearer picture of the area’s organic breakdown.

The researchers used a quadcopter equipped with a sticky collection cage. But since tree branches can bend at the slightest touch — and the drone needs to touch the branches to collect DNA — it has a haptic-based control scheme using force sensors to measure the pressure between the drone and the branch. Then, it adjusts its landing accordingly, leaning against the branch gently enough to avoid flinging valuable material to the ground.

The drone’s cage then grabs samples with a sticky surface made from “adhesive tape and a cotton gauze humidified with a solution of water and DNA-free sugar.” The cage spends around 10 seconds leaning on each branch and collecting eDNA before zipping back to the base, where the scientists retrieve the samples and ship them to a lab. The experiment’s drone successfully collected enough genetic material to identify 21 animal classes ranging from insects and mammals to birds and amphibians.

Science

However, the scientists make it clear this is a work in progress. For example, on the last research day, the team noticed a drop in eDNA detection because of rainfall the night before — suggesting the method only tells them which creatures visited since the last downpour. Additionally, they noted unexplained differences in the performance of their two collectors, highlighting the need for more research on equipment variations.

The researchers hope their work will make it easier and cheaper for environmental biologists to learn which critters live in some of the hardest-to-reach places. The approach could eventually help the scientific community understand how environmental changes affect biodiversity, perhaps helping identify endangered or vulnerable species before it’s too late.

Dutch authorities arrested a hacker for obtaining and trying to sell the personal information of nearly every Austrian citizen in May 2020, according to Reuters. It includes almost nine million data sets, roughly lining up with Austria’s population.

The defendant, arrested in November in an Amsterdam apartment, was reportedly already known to international police. The 25-year-old defendant also offered “similar data sets” from Italy, the Netherlands and Colombia. Dutch police waited until now to announce the arrest to avoid hindering ongoing investigations.

Authorities say the hacker posted the information in an online forum. Police say the trove consists of “registration data,” essential info residents must provide to authorities. That includes their full name, address and date of birth — but not financial info, fortunately. Nevertheless, the police confirmed the material’s authenticity, adding that “since this data was freely available on the Internet, it must absolutely be assumed that these registration data are, in full or in part, irrevocably in the hands of criminals.”

The US Department of Justice has spent months infiltrating and disrupting the Hive ransomware group, the agency announced on Thursday. The DOJ says Hive has targeted over 1,500 victims in more than 80 countries, extorting hundreds of millions of dollars in ransom payments.

Working with German and Netherlands law enforcement, the FBI seized Hive’s servers and websites, allegedly slowing the group’s ability to attack and extort new victims. It first infiltrated Hive’s network in July 2022, providing over 300 decryption keys to Hive’s current victims and more than 1,000 keys to previous victims — preventing over $130 million in ransom payments. The agency hasn’t announced any arrests. However, it’s still investigating the group, according toNBC News.

Hive used a ransomware-as-a-service (RaaS) model, where administrators (essentially the ringleaders) create ransomware strains with easy-to-use interfaces. The administrators then recruit affiliates who use the ransomware software to carry out the theft — and likely much of the risk.

For example, Hive would steal a victim’s data and encrypt their system. The affiliate would then demand a ransom in exchange for the decryption key and a promise not to publish the data. (Of course, it would frequently target the most sensitive data to apply maximum pressure.) If the victims pay, affiliates and administrators would split the ransom 80 / 20. Those unwilling to pay would find their data leaked on the web.

MANDEL NGAN via Getty Images

The US Cybersecurity and Infrastructure Security Agency (CISA) says Hive gained access through single-factor logins via Remote Desktop, VPNs, exploiting FortiToken (software-based access key) vulnerabilities and phishing emails with malicious attachments.

“Last night, the Justice Department dismantled an international ransomware network responsible for extorting and attempting to extort hundreds of millions of dollars from victims in the United States and around the world,” said US Attorney General Merrick Garland today. “We will continue to work both to prevent these attacks and to provide support to victims who have been targeted. And together with our international partners, we will continue to disrupt the criminal networks that deploy these attacks.” The FBI recommends victims contact their local FBI field office.

A OnePlus tablet is on the way. A new official image of the upcoming OnePlus Pad surfaced, showing a “Halo Green” color and an unconventional camera placement. The tablet will reportedly launch alongside the OnePlus 11 5G and Buds Pro 2 at a February 7th event.

The lone image, posted on OnePlus’ official India website, reveals a green finish with a centered rear camera. It’s reportedly an aluminum alloy body with a cambered (gently sloped like older iPads) frame. In some impressively flowery marketing copy, OnePlus toldTechRadar the green hue “blends the vibrancy of life with the vastness of space.” Unfortunately, we don’t yet know about other color options, full specs or pricing.

You can better see the tablet’s narrow bezels and centered front camera after adjusting the image’s levels:

OnePlus

This year may be a renaissance for Android tablets. In addition to OnePlus’ upcoming slate, Google teased its Pixel Tablet at two 2022 events. The device, arriving sometime this year, will attach to a speaker base while running the Tensor G2 chip from its latest flagship phones. It will follow the ill-fated Pixel Slate, which Google discontinued in 2020 after only two years. The consumer tablet market is dominated by Apple’s iPad, with Samsung and Amazon offering the most popular Android-running alternatives.

DARPA (Defense Advanced Research Projects Agency) is developing a new system to help military personnel perform complex tasks. Perceptually-enabled Task Guidance (PTG) technology uses sensors to see and hear what the user sees and hears, guiding them through AI-produced instructions displayed in augmented reality (AR).

PTG combines sensors (a microphone and head-mounted camera) with AI and AR headsets to integrate into the user’s environment. The idea is to help soldiers and other military personnel enhance their skills, complete complicated tasks and perform them better. DARPA has narrowed its focus to three areas: battlefield medicine (like untrained personnel helping medics in the field), sustainment (keeping military equipment up and running) and co-piloting (especially helicopters).

However, DARPA’s training demos use something more pedestrian: cooking. Dr. Bruce Draper, the program’s manager, describes it as the ideal proxy task. “[Cooking is] a good example of a complex physical task that can be done in many ways. There are lots of different objects, solids, liquids, things change state, so it’s visually quite complex. There is specialized terminology, there are specialized devices, and there’s a lot of different ways it can be accomplished. So it’s a really good practice domain.” The team views PTG as eventually finding uses in medical training, evaluating the competency of medics and other healthcare services.

DARPA

The personnel demoing the tech appear to be using a variant of Microsoft HoloLens. The government recently halted plans to buy more “AR combat goggles” from Microsoft, instead approving $40 million for the company to develop a new version. The reversal came after discovering that the current version caused issues like headaches, eyestrain and nausea.

DARPA is the Department of Defense’s “mad science” division. Founded by President Dwight Eisenhower in 1958 to develop cutting-edge tech for the US, many of the agency’s projects have trickled down into non-military products, including GPS, speech recognition, self-driving cars and robotics. Oh, and a minor technology called “the internet” also stemmed from DARPA’s late 1960s ARPANET (Advanced Research Projects Agency Network) program. It’s easy to imagine some form of PTG eventually following their lead into our everyday lives.

New York Attorney General Letitia James has sent a letter to MSG Entertainment, the owner and operator of Madison Square Garden and Radio City Music Hall, asking for information about its use of facial recognition to deny entry to attorneys at firms representing its legal opponents. James’s letter warns that the Orwellian policy may violate local, state and federal human rights laws, including those prohibiting retaliation.

MSG Entertainment’s facial recognition has been identifying and denying entry to lawyers from firms representing clients suing the company — whether or not those attorneys are directly involved in the cases. The company, led by CEO James Dolan (who also owns the New York Knicks and Rangers), has defended the policy, framing it as an attempt to prevent evidence collection “outside proper litigation discovery channels.” However, lawyers have called that rationale “ludicrous,” criticizing the ban as a “transparent effort” to punish attorneys for suing them.

The company has removed at least four lawyers from events at its venues since October — including at Knicks and Rangers games, concerts and Christmas shows. When passing through a metal detector, the arena’s facial recognition matched the attorneys with photos from their firms’ websites. James’s office says the policy impacts all lawyers working at more than 90 firms.

In the letter, James warns MSG Entertainment that blocking people from venues may violate New York’s civil and human rights laws while causing other attorneys to think twice about taking on legitimate cases against the company. “MSG Entertainment cannot fight their legal battles in their own arenas,” said AG James. “Madison Square Garden and Radio City Music Hall are world-renowned venues and should treat all patrons who purchased tickets with fairness and respect. Anyone with a ticket to an event should not be concerned that they may be wrongfully denied entry based on their appearance, and we’re urging MSG Entertainment to reverse this policy.”

USA TODAY USPW / reuters

The Attorney General isn’t alone in taking on Dolan and MSG Entertainment. New York state lawmakers Brad Hoylman-Sigal, Liz Krueger and Tony Simone introduced a bill on Monday to outlaw the policy. It would amend a previous state civil rights law prohibiting venues from denying entry to anyone with a legitimate ticket, adding “sporting events” to the list of qualifying events.

Madison Square Garden has used facial recognition for security since at least 2018. James’s letter calls on MSG Entertainment to justify its use of the tech and report its steps to comply with New York civil and human rights laws to ensure the tech won’t lead to further discrimination. “Discrimination and retaliation against those who have petitioned the government for redress,” reads the letter, “have no place in New York.”

Twitter has a new whistleblower, as another former employee has sounded the alarm about security issues, according toThe Washington Post. The new complainant, who has spoken with Congress and the Federal Trade Commission (FTC), says any Twitter engineer still has access to an internal program — formerly called “GodMode” — that lets them tweet from any account.

The whistleblower’s complaint alleges GodMode (now renamed to “privileged mode”) remains on the laptop of any engineer who wants it, requiring only a production computer and a simple code change from “FALSE” to “TRUE.” Screenshots of the code, included in an October complaint filed with the FTC, show a warning to anyone attempting to use it: “THINK BEFORE YOU DO THIS.”

This isn't the first time Twitter security has drawn scrutiny. In 2020, teenage crypto scammers hacked the company’s internal systems, sending fake tweets from the accounts of President Joe Biden, Barack Obama, Musk and others. Twitter’s at-the-time executives said they had fixed the issue and launched a “comprehensive information security program that is reasonably designed to protect the security, privacy, confidentiality, and integrity of nonpublic consumer information.”

However, Twitter’s first whistleblower, Peiter Zatko, disputed that. Another engineer claimed at the time that GodMode was still widely available.

Justin Sullivan via Getty Images

The new complainant’s filing says the incident led to Twitter reopening the case, which sparked the discovery that engineers could also delete or restore anyone’s tweets. (Regular Twitter users can't do either.) He also claims Twitter can’t log who, if anyone, uses or abuses any of the special privileges.

The new whistleblower’s complaint was filed by Whistleblower Aid, the same nonprofit firm representing Zatko. The FTC is reportedly interviewing former Twitter employees about the allegations.

A new exploit in the PC version of Grand Theft Auto Online is causing players to lose game progress and in-game currency, with some accounts becoming corrupted or banned. The exploit, a “remote code execution,” was distributed through the developer of the North Online GTA cheat mod.

The exploit can reportedly impact anyone, not just players in the same multiplayer lobby as the attacker, according toBleepingComputer. That means anyone currently online and playing the game on PC is at least theoretically vulnerable to attack. (Console players are unaffected.) Engadget reached out to Rockstar for comment, and we will update this article if we hear back.

The company tweeted this acknowledgment of the fiasco on Monday.

North's developer removed the abusive elements on January 21st and apologized (their changelog read “bad judgement on my part for adding this public.”) Although GTA Online doesn’t block harmless community-created mods, those distributing cheats or other hacks tilting the game’s competitive balance may face real-world consequences. Rockstar and parent company Take-Two Interactive have previously taken legal action against cheat makers, including the creator of an infinite-money hack who was ordered to pay $150,000 plus attorney fees in 2019.

A workaround for corrupted accounts, which some players have claimed works, is to delete the “Rockstar Games” folder from the Windows Documents folder before reloading the game. However, we recommend avoiding the PC version until Rockstar cleans things up.