New York governor Kathy Hochul has finally signed a right-to-repair bill into law, over half a year since the state legislature was passed. Representatives for Microsoft and Apple pressed Hochul's office for changes, as well as industry association TechNet, which represents many notable tech companies, including Amazon, Google, Dell and HP. Critics say the amendments will weaken the law's effectiveness. The bill's revised language excludes enterprise electronics, like devices used in schools and hospitals. Home appliances, motor vehicles, medical devices and off-road equipment were also previously exempted.

Whatever aims the right-to-repair bill had when first proposed have been weakened. Public Interest Research Groups (PIRG), a collective of consumer rights organizations, said in a statement to Engadget: "Such changes could limit the benefits for school computers and most products currently in use." It continued: "The bill now excludes certain smartphone circuit boards from parts the manufacturers are required to sell and requires repair shops to post unwieldy warranty language."

– Mat Smith

The Morning After isn’t just a newsletter – it’s also a daily podcast. Get our daily audio briefings, Monday through Friday, by subscribing right here.

The biggest stories you might have missed

• The best apps on Android and iOS to download on your new smartphone

• Apple's 512GB MacBook Air M2 is $220 off right now

• The best iPhone accessories

• 2022 was a busy year for electric vehicle companies

TikTok will be banned on most US federal government devices

Included in a mammoth $1.7 trillion bill that President Biden just signed.

TikTok will be outlawed on almost all devices issued by the federal government after lawmakers passed a $1.7 trillion spending bill. Officials recently added the No TikTok on Government Devices Act (what a name) to the bill, which the Senate unanimously approved last week. The mammoth 4,155-page legislation was fast-tracked to avoid a partial government shutdown. It will fund the government through September. The legislation requires the Biden administration to establish rules to remove TikTok from government devices by mid-February. The bill carved out exceptions for elected officials, congressional staff, law enforcement agents and other officials. However, the House of Representatives separately banned TikTok on devices it owns and manages.

Continue reading.

Samsung's new smart fridge has a massive 32-inch display

Think of it like a smart TV with a fridge attached to it.

Samsung

CES is nearly here, which means we're once again writing about refrigerators. With its Family Hub Plus, Samsung has boosted the touch display size to 32 inches from 21 inches, although it’s still a vertical screen. Samsung has added support for Google Photos, along with the OneDrive integration seen on past models. There’s also a new SmartThings hub so you can control multiple smart home devices from your… kitchen, including robot vacuums, air conditioning, lighting and more. It also supports Amazon's Your Essentials service, letting you order groceries and other products directly from the touchscreen. Those groceries go inside.

Continue reading.

The EV revolution became an eventuality in 2022

It's been a busy year for the industry.

It’s been a decade since the first Tesla EV made its commercial debut and the electrification of American automotive society began in earnest. Over the past ten years as battery capacities have grown and range anxieties have shrunk, electric vehicles have become a daily sight in most parts of the country. Now, virtually every notable automaker on the planet has jumped on the electric bandwagon with sizable investments in battery and production technologies and pledges to electrify their lineups within a decade or so.

Not even recent years’ production slowdowns and supply chain disruptions brought on by the COVID pandemic managed to stall the industry’s momentum. The International Energy Agency in January reported that EVs had managed to triple their market share between 2019 and 2021 with 6.6 million units being sold globally last year. And as eventful as 2022 turned out to be, 2023 and beyond could be even bigger for the EV industry. We’re expecting EV debuts including the VW ID.3; the Lucid Gravity, Polestar 3, Jeep (one of four!) and Honda’s Prologue SUVs.

Continue reading.

TikTok will be outlawed on almost all devices issued by the federal government after lawmakers passed a $1.7 trillion spending bill. Officials crammed the No TikTok on Government Devices Act, which the Senate unanimously approved last week, into the mammoth 4,155-page omnibus bill. The spending package was fast tracked in order to avoid a partial government shutdown. It will fund the government through September.

The Senate voted 68-29 to pass the bill on December 22nd. The House approved it on Friday with a vote of 225-201. On the same day, President Joe Biden signed a stopgap bill that funded the government for another week in order to avert a shutdown until the omnibus bill landed on his desk. Today, President Biden signed the bill into law.

The legislation requires the Biden administration to establish rules to remove TikTok from government devices by mid-February. The bill carved out exceptions for elected officials, congressional staff, law enforcement agents and other officials. However, the House of Representatives separately banned TikTok on devices it owns and manages.

Earlier this month, FBI Director Chris Wray warned that China could use the app (which is owned by Beijing-based company ByteDance) to collect data on users. Some attempts have been made, including in the last few weeks, to prohibit TikTok in the US entirely. Several states have banned TikTok from government devices, including Georgia, South Dakota, Maryland and Texas. Indiana has sued TikTok over alleged security and child safety issues.

TikTok has attempted to soothe US lawmakers' concerns that the app could be used for spying purposes. Since June, it has been directing all traffic from the country to Oracle servers based domestically. TikTok and ByteDance said they'd delete US user data from their own servers in the US and Singapore. In August, Oracle began a review of TikTok's algorithms and content moderation systems.

As Congress was voting on the bill, news broke that ByteDance fired four employees (two in the US and two in China) who accessed the TikTok data of US journalists. The workers were allegedly trying to find the sources of leaks to the reporters.

The omnibus bill includes other tech-related provisions, including more funding for federal antitrust officials. In addition, the package incorporates the Computers for Veterans and Students Act. This requires the government to hand over certain surplus computers to nonprofits. The systems will be repaired and/or refurbished, then distributed to schools, homeschooled students, veterans, seniors and others in need.

There's also another $1.8 billion in new funding to implement the CHIPS and Science Act, which aims to boost domestic production of semiconductors. The omnibus bill earmarks $25.4 billion for NASA — 5.6 percent more than the agency received in fiscal year 2022, but less than the $26 billion the White House asked for. The National Science Foundation will get $9.9 billion, an increase of 12 percent. The National Institute of Standards and Technology and National Oceanic and Atmospheric Administration will receive increases of 32 percent (up to $1.6 billion) and 17.5 percent ($761 million), respectively.

Almost seven months after the state legislature overwhelmingly passed a right-to-repair bill, New York governor Kathy Hochul has signed it into law. But Hochul only greenlit the bill after the legislature agreed to some changes. Hochul wrote in a memo that the legislation, as it was originally drafted, "included technical issues that could put safety and security at risk, as well as heighten the risk of injury from physical repair projects." The governor said the modifications addressed these issues, but critics say the amendments will weaken the law's effectiveness.

"This legislation would enhance consumer options in the repair markets by granting them greater access to the parts, tools and documents needed for repairs," Hochul wrote. "Encouraging consumers to maximize the lifespan of their devices through repairs is a laudable goal to save money and reduce electronic waste."

The changes strip out the bill's requirement for "original equipment manufacturers [or OEMs] to provide to the public any passwords, security codes or materials to override security features." OEMs will also be able to bundle "assemblies of parts" instead of just the specific component actually needed for a DIY repair if "the risk of improper installation heightens the risk of injury." 

The rules will only apply to devices that are originally built and used or sold in New York for the first time after July 1st. There's also an exemption for "digital products that are the subject of business-to-business or business-to-government sales and that otherwise are not offered for sale by retailers."

As Ars Technica reported earlier this month, representatives for Microsoft and Apple pressed Hochul's office for changes. So did industry association TechNet, which represents many notable tech companies, including Amazon, Google, Dell, HP and Engadget parent Yahoo.

As a result, the bill's revised language excludes enterprise electronics, such as those that schools, hospitals, universities and data centers rely on, as iFixit CEO Kyle Wiens wrote in a blog post. Home appliances, motor vehicles, medical devices and off-road equipment were previously exempted.

"Such changes could limit the benefits for school computers and most products currently in use," Public Interest Research Groups (PIRG), a collective of consumer rights organizations, said in a statement to Engadget. "Even more troubling, the bill now excludes certain smartphone circuit boards from parts the manufacturers are required to sell, and requires repair shops to post unwieldy warranty language."

"We knew it was going to be difficult to face down the biggest and wealthiest companies in the world," PIRG right to repair director Nathan Proctor said. "But, though trimmed down, a new Right to Repair law was signed. Now our work remains to strengthen this law and pass others until people have what they need to fix their stuff."

As The Verge notes, repair technician and right-to-repair advocate Louis Rossmann said the changes have watered down the law to the point where it's "functionally useless." Rossmann, who spent seven years trying to get the bill passed, called Hochul's assertion that the changes were necessary to include protections from physical harm and security risks "bullshit," citing a Federal Trade Commission report on the issue.

The right-to-repair movement has picked up steam over the last couple of years. Ahead of expected legislation coming into force, companies such as Google, Apple, Samsung and Valve started providing repair manuals and selling parts for some of their products.

Last year, President Joe Biden signed an executive order that aimed at bolstering competition in the US, including in the tech industry. Among other measures, it called on the FTC to ban "anticompetitive restrictions on using independent repair shops or doing DIY repairs of your own devices and equipment."

TikTok is now banned on any device owned and managed by the US House of Representatives, according to Reuters. The House's Chief Administrative Officer (CAO) reportedly told all lawmakers and their staff in an email that they must delete the app from their devices, because it's considered "high risk due to a number of security issues." Everyone detected to have the social networking application on their phones would be contacted to make sure it's deleted, and any future downloads are prohibited. 

This is but the latest the development in a series of moves the US government has made to block the app from devices it owns. Last week, lawmakers approved a $1.7 trillion omnibus spending bill that included provisions that would prohibit the use of TikTok on executive branch devices. A spokesperson for the Chief Administrative Officer told Reuters that after its passage, the CAO worked with the Committee on House Administration to implement a similar policy for the House. 

That came after the Senate unanimously voted to approve the No TikTok on Government Devices Act that was introduced by Senator Josh Hawley (R-Missouri). As Reuters notes, 19 states had also banned or at least partially prohibited the app's installation and use on staff devices they own or manage. When the omnibus passed, TikTok spokesperson Brooke Oberwetter told Engadget that the company is "disappointed that Congress has moved to ban TikTok on government devices," calling it "a political gesture that will do nothing to advance national security interests."

TikTok's critics in the US government have been raising concerns that it could be used as a tool to spy on the US by Chinese officials. FBI Director Chris Wray called it a "Trojan Horse for the Chinese Communist Party" and said that it has no place on government devices until it completely cuts ties with China. TikTok, which is owned by Chinese company ByteDance, tried to address those concerns by routing all domestic traffic through Oracle servers in the US and pledging to delete all US user data from its servers. 

However, the recent revelation that ByteDance fired four employees for inappropriately obtaining the data of TikTok users in the US, including that of two reporters, probably doesn't help the company's cause. According to a New York Times report, the employees gained access to the IP addresses and other data linked to two reporters in their quest to find out who was leaking internal information to the press.

German researchers who purchased biometric capture devices on eBay found sensitive US military data stored on their memory cards, The New York Times has reported. That included fingerprints, iris scans, photographs, names and descriptions of the individuals, mostly from Iraq and Afghanistan. Many worked with the US army and could be targeted if the devices fell into the wrong hands, according to the report.

A group of researchers called the Chaos Computer Club, led by Matthias Marx, bought six of the devices on eBay, most for under $200. They were spurred by a 2021 report from The Intercept that the Taliban had seized similar US military biometric devices. As such, they wanted to see if they contained identifying data on people who assisted the US Military that could put them at risk.

They were "shocked" by the results, according to the report. On the memory card of one device, they found the names, nationalities, photographs, fingerprints and iris scans of 2,632 people. Other metadata showed it had been used near Kandahar, Afghanistan in the summer of 2012. Another device was used in Jordan in 2013 and contained the fingerprints and iris scans of a small group of US military personnel. 

Such devices were used to identify insurgents, verify local and third-country nationals accessing US bases and link people to events, according to a 2011 guide to the devices. "It was disturbing that [the US military] didn’t even try to protect the data,” Marx told the NY Times. “They didn’t care about the risk, or they ignored the risk.

One device was purchased at a military auction, and the seller said they were not aware that it contained sensitive data. The sensitive information was stored on a memory card, so the US military could have eliminated the risk by simply removing or destroying the cards before selling them.

"Because we have not reviewed the information contained on the devices, the department is not able to confirm the authenticity of the alleged data or otherwise comment on it," Defense Department press secretary Brig. Gen. Patrick S. Ryder told the Times. "The department requests that any devices thought to contain personally identifiable information be returned for further analysis."

Given the sensitivity of the information, the group plans to delete any personally identifiable information found on the devices. Another researcher noted that any individuals found on such devices aren't safe even if they changed their identities, and should be given asylum by the US government. 

South Korean authorities believe North Korean hackers, working for the government, have targeted at least 892 foreign policy experts in the country. The efforts focused on members of think tanks and academics, dating back to April. The attacks began with spear phishing emails, often claiming to be from figures in South Koreas political system. These usually included either links to fake sites or viruses as attachments. The ploy, while not particularly sophisticated, was enough to fool at least a handful of victims.

The result was that several prominent experts had their personal data stolen, email lists compromised (exposing more people to the hackers), and 13 companies (primarily online retailers) were victims of ransomware. Although police believe only 49 recipients actually handed credentials over to the fakes sites and only two companies paid the 2.5 million won ($1,980) ransom, it's difficult to judge the full scale of the fallout.

It's unclear what non-financial resources the North Korean hackers may have gained from this latest campaign. But it's certain this will not be the last cyber attack on its souther neighbor. The county has previously targeted security researchers to discover unpatched vulnerabilities, and even used the tragedy on Halloween in Itaewon as a tool to target South Korean citizens. 

Cyber warfare has been a major focus of North Korea for years, even as it seeks to deter foreign militaries with more traditional methods, like building nuclear weapons. It has also been a major source of revenue for the country which is in perpetual financial crisis and largely cut off from the world's markets. It's estimated that North Korean hackers have stolen $1.72 billion worth of cryptocurrency since 2017. And it doesn't appear that it's letting the recent crypto crash scare it off, as the recent ransoms were also paid in BitCoin.

Though the hackers covered their tracks reasonably well, the targets, tactics and IP addresses have led police to believe this is the same group that hacked the Korea Hydro & Nuclear Power in 2014. They also believe that the hackers will not cease their activity just because their efforts have been discovered. Authorities have urged people, especially those who work in sensitive areas like technology and government, to step up their security measures and be extra vigilant against fishing and human engineering attacks.

The Canadian government has announced enforceable quotas for zero-emission vehicle sales. By 2026, a fifth of all new passenger cars, trucks and SUVs sold in the country will need to be zero-emission models, such as electric or hydrogen fuel cell vehicles. 

"We're moving forward with a regulated sales target that requires at least 20 percent of new vehicles sold by 2026 to be zero emission, increasing that to 60 percent by 2030 and 100 percent by 2035," Julie Dabrusin, parliamentary secretary to the Minister of Environment and Climate Change, said at a press conference.

It's estimated that, between 2026 and 2050, the quotas will lead to Canadians saving almost $34 billion CAD in energy costs. The reduction in greenhouse gas emissions will be equivalent to Ontario's entire emissions for three years. Currently, passenger vehicle emissions account for around 10 percent of Canada's total greenhouse gas emissions.

While Canada already had zero-emission vehicle sales targets, those aren't yet enforceable nationwide, though some provinces, including Quebec and British Columbia, have their own mandates. The final regulations should be published in 2023. According to the Canadian Press, importers and manufacturers that don't meet the quotas may be penalized under the Canadian Environmental Protection Act. The country will use credits to track vehicle sales.

There's still some way to go until Canada can meet the proposed sales targets. In the first six months of 2022, EVs (including plug-in hybrid models) made up 7.2 percent of new car registrations. That was up from 5.2 percent for all of 2021. In British Columbia, almost 15 percent of new vehicles registered between January and June were EVs. In Quebec and Ontario, the proportions were 11.4 percent and 5.5 percent, respectively. In all other provinces, EVs accounted for less than four percent of new vehicle sales.

Infrastructure improvements should help to increase EV adoption, as should incentives. Dabrusin noted that, by 2027, 85,000 federally funded public chargers will be installed across the country. She added that Canada has long offered rebates on new zero-emission vehicle purchases of up to $5,000 for individuals and up to $10,000 for businesses. More than 180,000 Canadians and businesses in the country have benefitted from those incentives, which have been renewed. The government also plans to invest in EV manufacturing.

Several automakers have pledged to switch entirely to making EVs and/or hydrogen fuel cell vehicles, with GM setting a deadline of 2035 and Honda aiming to fully make the transition by 2040. Some jurisdictions — such as California, New York and the UK — will ban the sale of gas-powered vehicles by 2035.

“The regulated sales targets for zero emission vehicles announced today will reduce emissions by helping more drivers get behind the wheel of an electric car," Anna Kanduth, a senior research associate at the Canadian Climate Institute, said. "Right now, more than half of Canadians want their next car to be an electric vehicle but they face long wait times, with scarce supply going to provinces like British Columbia and Quebec, where sales mandates are already in place. The federal regulations will help shorten wait times for electric vehicles and plug-in hybrids by increasing supply in all provinces and territories."

Ukraine will receive an additional 10,000-plus Starlink satellite dishes from Elon Musk's SpaceX to help provide internet amid Russian attacks on communications infrastructure, Bloomberg has reported. Financial issues around the terminals have reportedly been resolved, with several European countries stepping up to share the costs, according to Ukraine's deputy prime minister Mykhailo Federov. 

"SpaceX and Musk quickly react to problems and help us,” Federov told Bloomberg. “Musk assured us he will continue to support Ukraine. When we had a powerful blackout, I messaged him on that day and he momentarily reacted and has already delivered some steps. He understands the situation." However, Ukraine will need to find additional funds by spring of next year.

The 10,000 new terminals add to the 22,000 already received, and will be used to "stabilize connections for critical situations," according to Federov. "There is no alternative to satellite connections," he added. 

Earlier in the fall, SpaceX asked the US Department of Defense to take over payments related to Starlink. "We are not in a position to further donate terminals to Ukraine, or fund the existing terminals for an indefinite period of time," the company said. Elon Musk backtracked on that decision, however, writing on Twitter that SpaceX would "keep funding [the] Ukraine [government] for free" even though Starlink is still losing money. It was reported in November that the price of a Starlink terminal had doubled in Ukraine, from around $385 to $700. However, the monthly rate for data has dropped from $100 since the war started in February down to $75. 

After obtaining Senate approval last week, the No TikTok on Government Devices Act could become law thanks to the $1.7 trillion spending bill federal lawmakers unveiled early Tuesday morning. In addition to allocating more funding for Ukraine and earmarking $40 billion for natural disaster recovery efforts across the US, the sprawling 4,155-page bill includes provisions that would prohibit the use of TikTok on government-owned phones and other devices.

While some Republican lawmakers are pushing for a country-wide ban on TikTok, the spending bill stops short of prohibiting all government use of TikTok. If passed, the legislation would order the General Services Administration and Office of Management and Budget to create guidelines for staff at executive agencies to remove TikTok from government-owned devices by mid-February. The draft legislation allows congressional staff and elected officials to continue using the app. It also carves out some exceptions for law enforcement agents and officials.

"We're disappointed that Congress has moved to ban TikTok on government devices — a political gesture that will do nothing to advance national security interests — rather than encouraging the Administration to conclude its national security review," TikTok spokesperson Brooke Oberwetter told Engadget.

"The agreement under review by [The Committee on Foreign Investment in the United States] will meaningfully address any security concerns that have been raised at both the federal and state level. These plans have been developed under the oversight of our country's top national security agencies — plans that we are well underway in implementing — to further secure our platform in the United States, and we will continue to brief lawmakers on them."

The proposed ban comes after at least 11 states, including Georgia and South Dakota, prohibited TikTok on government-owned devices. Political concerns over TikTok hit a high earlier this month after FBI Director Chris Wray said China could use the app to collect user data. TikTok has tried to address those concerns. As of June, the app began routing all domestic traffic through Oracle servers in the US. At the same time, TikTok and parent company ByteDance pledged to delete US user data from their own data servers in the US and Singapore.

Nearly 200 countries have agreed to protect 30 percent of Earth's lands and oceans by 2030. The deal was reached early this morning at the UN Biodiversity Conference (COP15) in Montreal following two weeks of negotiations. The only holdouts to the deal were the US and the Vatican, though the Biden administration has a domestic plan to conserve 30 percent of US land and water by 2030. 

With the agreement, each participating country agrees to hitting over 20 environmental targets by the end of the decade. A key condition is the so-called 30x30 plan to protect at least 30 percent of land, inland water and coastal areas by 2030. That forms the basis of an international agreement similar to the 2015 Paris climate accord. 

Along with the protection of habitats, nations have pledged to reduce pesticide risks by 50 percent, reduce nutrient runoff from farms and the rate at which invasive species are introduced to ecosystems.

Nations now have eight years to stop the loss of biodiversity being driven by humans due rainforest destruction, species exploitation, pollution and more. Previous agreements, like the biodiversity targets set at Aichi, Japan in 2010, saw nations fail to achieve the goals set. This time, though, there's a monitoring framework to keep track of progress. 

In addition to protecting species, the draft COP15 agreement urges nations to recognize and respect "the rights of indigenous peoples and local communities, including over their traditional territories." However, Amnesty International wrote that the deal was a "missed opportunity to protect indigenous peoples' rights," as it didn't explicitly recognize their lands and territories as a separate category of conserved area.

Another point of disagreement was between wealthy and poor countries over funds. Nations in South America and Africa that house the world's largest rainforests wanted assurances from rich countries that they'll receive money to battle poaching, illegal deforestation and other issues, according to The Washington Post. 

At one point in negotiations, delegates from developing countries walked out of on talks over funding issues. The agreement must "align the resources and the ambitions," said Columbia's environmental minister Susana Muhamad. The Democratic Republic of Congo's environment minister, Ève Bazaiba, added that "when it comes to fauna, we need to have the means to achieve this objective." 

The COP15 agreement follows a breakthrough deal at the COP27 climate conference, approving a climate damage fund for developing nations. How well the plan will be implemented remains to be seen, though. "While agreements are great, if we’re going to save life on Earth, now we have to roll up our sleeves and do it," the Center for Biological Diversity's Tanya Sanerib wrote. "The planet faces an extinction crisis like none ever before witnessed by humankind, with 28 percent of species across the global facing extinction."