Up to 40% of food in the U.S. is discarded. But as VOA’s Julie Taboh reports, a company in the Netherlands has come up with technology that can help reduce food waste in industrial kitchens.

Camera: Tina Trinh, Orbisk;         
Produced by Julie Taboh, Adam Greenbaum
…

Negotiators from the European Parliament and EU member states agreed Thursday on a landmark law to curb the market dominance of U.S. big tech giants such as Google, Meta, Amazon and Apple.

Meeting in Brussels, the lawmakers nailed down a long list of do’s and don’ts that will single out the world’s most iconic web giants as internet “gatekeepers” subject to special rules.

The Digital Markets Act (DMA) has sped through the bloc’s legislative procedures and is designed to protect consumers and give rivals a better chance to survive against the world’s powerful tech juggernauts.

“The agreement ushers in a new era of tech regulation worldwide,” said German MEP Andreas Schwab, who led the negotiations for the European Parliament.

“The Digital Markets Act puts an end to the ever-increasing dominance of Big Tech companies,” he added.

The main point of the law is to avert the years of procedures and court battles needed to punish Big Tech’s monopolistic behavior in which cases can end with huge fines but little change in how the giants do business.

Once implemented, the law will give Brussels unprecedented authority to keep an eye on decisions by the giants, especially when they pull out the checkbook to buy up promising startups.

“The gatekeepers – they now have to take responsibility,” said the EU’s competition supremo Margrethe Vestager.

“A number of things they can do, a number of things they can’t do, and that of course gives everyone a fair chance,” she added.

‘Concrete impacts’

The law contains about 20 rules that in many cases target practices by Big Tech that have gone against the bloc’s rules on competition, but which Brussels has struggled to enforce.

The DMA imposes myriad obligations on Big Tech, including forcing Apple to open up its App Store to alternative payment systems, a demand that the iPhone maker has opposed fiercely, most notably in its feud with Epic games, the maker of Fortnite.

Google will be asked to clearly offer users of Android-run smartphones alternatives to its search engine, the Google Maps app or its Chrome browser.

A Google spokesperson told AFP that the US internet giant will “take time to study the final text and work with regulators to implement it.”

“While we support many of the DMA’s ambitions around consumer choice and interoperability, we remain concerned that some of the rules could reduce innovation and the choice available to Europeans,” the spokesperson said.

Apple would also be forced to loosen its grip on the iPhone, with users allowed to uninstall its Safari web browser and other company-imposed apps that users cannot currently delete.

In a statement, Apple swiftly expressed regret over the law, saying it was “concerned that some provisions of the DMA will create unnecessary privacy and security vulnerabilities for our users.”

After a furious campaign by influential MEPs, the law also forces messaging services such as Meta-owned WhatsApp to make themselves available to users on other services such as Signal or Apple’s iMessage, and vice versa.

France, which holds the EU presidency and negotiated on behalf of the bloc’s 27 member states, said the law would deliver “concrete impacts on the lives of European citizens.”

“We are talking about the goods you buy online, the smartphone you use every day, and the services you use every day,” said France’s digital affairs minister, Cedric O.

Stiff fines

Violation of the rules could lead to fines as high as 10% of a company’s annual global sales and even 20% for repeat offenders.

The DMA “will have a profound impact on the way some gatekeepers’ operations are currently conducted,” said lawyer Katrin Schallenberg, a partner at Clifford Chance.

“Clearly, companies affected … are already working on ways to comply with or even challenge the regulation,” she added.

The Big Tech companies have lobbied hard against the new rules and the firms have been defended in Washington, where it is alleged that the new law unfairly targets U.S. companies.

With the deal now reached by negotiators, the DMA now faces final votes in a full session of the European Parliament as well as by ministers from the EU’s 27 member states.

The rules could come into place starting Jan. 1, 2023, though tech companies are asking for more time to implement the law.
…

U.S. and British officials on Thursday accused the Russian government of running a yearslong campaign to hack into critical infrastructure, including an American nuclear plant and a Saudi oil refinery.

The announcement was paired with the unsealing of criminal charges against four Russian government officials, whom the U.S. Department of Justice accused of carrying out two major hacking operations aimed at the global energy sector. Thousands of computers in 135 countries were affected between 2012 and 2018, U.S. prosecutors said.

Cybersecurity analysts described the moves as a shot across the bow to Moscow after U.S. President Joe Biden had warned just days ago about “evolving intelligence” that the Russian government might be preparing cyberattacks against American targets.

John Hultquist, whose firm Mandiant investigated the Saudi refinery hack, said that by making the criminal charges public, the United States “let them know that we know who they are.”

In one of the two indictments unsealed on Thursday and dated June 2021, the Justice Department accused Evgeny Viktorovich Gladkikh, a 36-year-old Russian Ministry of Defense research institute employee, of conspiring with others between May and September 2017 to hack the systems of a foreign refinery and install malware known as “Triton” on a safety system produced by Schneider Electric SE.

The refinery wasn’t named, but the British government said it was in Saudi Arabia and had previously been identified as the Petro Rabigh refinery complex on the Red Sea coast.

In a second indictment, dated August 2021, the Justice Department said three other suspected hackers from Russia’s Federal Security Service (FSB) carried out cyberattacks on the computer networks of oil and gas firms, nuclear power plants, and utility and power transmission companies between 2012 and 2017 — a campaign researchers have long attributed to a group sometimes dubbed “Energetic Bear” or “Berserk Bear.”

The Russian Embassy in Washington did not immediately return a message seeking comment.

The three accused Russians in the second case are Pavel Aleksandrovich Akulov, 36, Mikhail Mikhailovich Gavrilov, 42, and Marat Valeryevich Tyukov, 39. None of the four defendants have been arrested, a U.S. official said.

Britain’s Foreign Office said that the FSB hackers targeted the systems controlling the Wolf Creek nuclear plant in Kansas “but failed to have any negative impact.”

“Russia’s targeting of critical national infrastructure is calculated and dangerous,” British Foreign Secretary Liz Truss said in a statement. She said it showed Russian President Vladimir Putin “is prepared to risk lives to sow division and confusion among allies.”

A Justice Department official told reporters that even though the hacking at issue in the two cases occurred years ago, investigators remained concerned Russia will carry out similar attacks in future.

“These charges show the dark art of the possible when it comes to critical infrastructure,” the official said.

The official added that the department decided to unseal the indictments because they determined the “benefit of revealing the results of the investigation now outweighs the likelihood of arrests in the future.”

The 2017 Saudi refinery attack stunned the cybersecurity community when it was made public by researchers later that year. Unlike typical digital intrusions aimed at stealing data or holding it for ransom, the attack appeared aimed at causing physical damage to the facility itself by disabling its safety system. U.S. officials have been tracking the case ever since.

In 2019, those behind Triton were reported to be scanning and probing at least 20 electric utilities in the United States for vulnerabilities.

Two weeks before the 2020 U.S. presidential election, the U.S. Treasury Department imposed sanctions on the Russian government-backed Central Scientific Research Institute of Chemistry and Mechanics. Prosecutors believe Gladkikh worked there. On Thursday, British officials also announced sanctions on the institute.

The Foreign Office said FSB hackers had targeted British energy companies and had successfully stolen data from the U.S. aviation sector. It also accused the hackers of trying to compromise an employee of Mikhail Khodorkovsky, a former oil tycoon who fell afoul of the Kremlin and now lives in London. 
…

Seattle-based teenager Avi Schiffmann is doing what he can to help Ukrainian refugees. He has launched a website that helps refugees find safe places to stay, matching refugees with people willing to share their homes. Anush Avetisyan has the story, narrated by Anna Rice.
…

Okta whose authentication services are used by companies including Fedex and Moody’s to provide access to their networks, said on Tuesday that it had been hit by hackers and that some customers may have been affected.

The scope of the breach is still unclear, but it could have major consequences because thousands of companies rely on San Francisco-based Okta to manage access to their networks and applications.

Chief Security Officer David Bradbury said in a blog post that the computer of a customer support engineer working for a third-party contractor was accessed by the hackers for a five-day period in mid-January and that “the potential impact to Okta customers is limited to the access that support engineers have.”

“There are no corrective actions that need to be taken by our customers,” he said.

Nevertheless, Bradbury acknowledged that support engineers were able to help reset passwords and that some customers “may have been impacted.” He said the company was in the process of identifying and contacting them.

The nature of that impact wasn’t clear, and Okta did not immediately respond to an email asking how many organizations were potentially affected or how that squared with Okta’s advice that customers did not need to take corrective action.

On its website, Okta describes itself as the “identity provider for the internet” and says it has more than 15,000 customers on its platform.

It competes with the likes of Microsoft, PingID, Duo, SecureAuth and IBM to provide identity services such as single sign-on and multifactor authentication used to help users securely access online applications and websites.

Okta’s statement follows the posting of a series of screenshots of Okta’s internal communications by a group of ransom-seeking hackers known as Lapsus$ on their Telegram channel late on Monday.

In an accompanying message, the group said its focus was “ONLY on Okta customers.”

Lapsus$ responded to Okta’s statement on Tuesday by saying the company was trying to minimize the importance of the breach.

Some outside observers weren’t impressed with Okta’s explanation either.

Dan Tentler, the founder of cybersecurity consultancy Phobos Group, earlier told Reuters that Okta customers should “be very vigilant right now.”

There were signs that Okta customers were taking action to revisit their security.

Web infrastructure company Cloudflare issued a detailed explanation  of how it reacted to the Okta breach and saying the company did not believe it had been compromised as a result.

FedEx said in a statement that it too was investigating and “we currently have no indication that our environment has been accessed or compromised.” Moody’s did not return a message seeking comment.

Lapsus$ is a relatively new entrant to the crowded ransomware field but has made waves with high-profile hacks and attention-seeking behavior.

The group compromised the websites of Portuguese media conglomerate Impresa earlier this year, tweeting the phrase “Lapsus$ is now the new president of Portugal” from one newspaper’s Twitter accounts. The Impresa-owned media outlets described the hack as an assault on press freedom.

Last month, the group leaked proprietary information about U.S. chipmaker Nvidia to the Web.

More recently the group has purported to have leaked source code from several big tech firms, including Microsoft. In a blog post published Tuesday and devoted to Lapsus$, the software firm confirmed that one of its accounts had been compromised, “gaining limited access.”

The hackers did not respond to a message left on their Telegram group chat seeking comment.

 
…

Three companies have lodged a complaint with the European Commission against Microsoft, accusing the U.S. technology giant of anti-competitive practices in its cloud services, sources told AFP on Saturday, confirming media reports.

Microsoft is “undermining fair competition and limiting the choice of consumers” in the computing cloud services market, said one of the three, French company OVHcloud, in a statement to AFP.

The companies complain that under certain clauses in Microsoft’s licensing contracts for Office 365 services, tariffs are higher when the software is not run on Azure cloud infrastructure, which is owned by the U.S. group.

They also say the user experience is worse and that there are incompatibilities with certain other Microsoft products when not running on Azure. 

In a statement to AFP, Microsoft said, “European cloud service providers have built successful business models on Microsoft software and services” and had many options on how to use that software.

“We continually evaluate how best to support all of our partners and make Microsoft software available to all customers in all environments, including those with other cloud service providers,” it continued.

The complaint, first reported this week by The Wall Street Journal, was lodged last summer with the EU Commission’s competition authority.

Microsoft is also the subject of an earlier 2021 complaint to the European Commission by a different set of companies led by the German Nextcloud.

It denounced the “ever-stronger integration” of Microsoft’s cloud services, which it said complicated the development of competing offers.

Microsoft has already been heavily fined multiple times by Brussels for anti-competitive practices regarding its Internet Explorer browser, Windows operating system and software licensing rules. 
…

Before Russia invaded Ukraine, the groundwork had already begun — online. Russian disinformation is a key part of what many are calling a hybrid war.  VOA’s Tina Trinh explains.
…

Facebook owner Meta Platforms FB.O will help train Australian political candidates on aspects of cyber security and coach influencers to stop the spread of misinformation in a bid to boost the integrity of an upcoming election, it said on Tuesday.

Australia has not yet set a date for its next election, which is due by May. Authorities are already on high alert for electoral interference, having previously highlighted foreign interference attempts aimed at all levels of government and targeting both sides of politics.

“We’ll stay vigilant to emerging threats and take additional steps, if necessary, to prevent abuse on our platform while also empowering people in Australia to use their voice by voting,” Josh Machin, the company’s Australian chief of public policy, said in a statement that is to be posted online.

The social media giant added that it had drafted in a university to help with fact-checking operations in Australia and would require disclosure of the names of those paying for election-related advertisements, in what it called its most comprehensive election strategy.

The steps show how social media firms are seeking to combat online distortion and abuse of information during the lead-up to an election, a time when such efforts are typically at their most heated.

The Facebook Protect security program for high-profile individuals launched in Australia in December, with the company vowing to work with election officials and political parties to offer training for candidates on its policies and tools and ways to keep safe.

To avert hacking, it will prompt candidates to upgrade security to two-factor authentication. The company said it would also coach influencers, or those who earn advertising income from online commentary, to spot fake news.

People seeking to run election-related ads will need to furnish government-issued identification, as well as mandatory disclosures of funding sources for them, it said.

Ads by unauthorized parties, without funding disclosure, would be taken down and stored in a public archive for seven years, it added.

RMIT University, which joined Meta’s third-party fact-checking effort, said it would review posts the company identified as potential misinformation and try to verify them via interviews with primary sources and checks of public data.

“A continuing focus of our work is to identify the super spreaders of misinformation and the ecosystems in which they operate,” said RMIT FactLab Director Russell Skelton in a statement. “High impact misinformation disrupts evidence-based public policy and debate and so it is crucial we gain a better understanding of what drives this.” 
…

For many Ukrainians, staying online has been daunting as Russia attacks telecoms and power supplies, but some people, like Oleg Kutkov, a software and communications engineer, are testing out a new way to stay connected.

In a FaceTime interview with VOA Mandarin from Kyiv, Kutkov held up the components of the two-part terminal needed to connect via Starlink, an internet constellation of some 2,000 satellites operated by billionaire Elon Musk’s private firm SpaceX, one of a growing number of enterprises supporting Ukraine.

The Starlink dish and modem setup is easy to use, according to Kutkov, who is in his mid-30s.

“You just place the receptor outside, power on, wait a few minutes, and then you can go online without any additional tuning,” he told VOA Mandarin on Monday.

Kutkov said, “Our government is communicating with citizens using social (media) channels, and we are getting all the information from them on the internet. Not from TV or radio, but the internet. So [having connectivity] is very important.”

Skylink arrived in Ukraine with next-generation speed. On Feb. 26, Mykhailo Fedorov, Ukraine’s vice prime minister and minister of digital transformation, tweeted to Musk, “while you try to colonize Mars — Russia try to occupy Ukraine! While your rockets successfully land from space — Russian rockets attack Ukrainian civil people! We ask you to provide Ukraine with Starlink stations and to address sane Russians to stand.”

Hours later, Musk tweeted that Ukraine would soon have Starlink service and despite criticism that he was using the crisis as a marketing stunt, the hardware began arriving there on Feb. 28.

Fedorov tweeted on March 9 that a second shipment of Starlink equipment had arrived as the situation in Ukraine continued to deteriorate.

According to NetBlocks, a London-based organization tracking internet outages around the world, several major cities in southern Ukraine, including Kherson and Mariupol, have experienced severe internet disruption due to attacks on infrastructure and power supplies.

In other areas, including Kharkiv and Kyiv, internet connections were disrupted as Russian troops launched cyber assaults targeting financial and government websites in Ukraine.

And even though Musk has cautioned the Skylink connection is being used by Russia to target users, Kutkov has been sharing his experiences with the service on Twitter. He told VOA Mandarin that he has received requests for support from across the country, including from ordinary citizens, companies and even those in the military.

“Ukraine is a highly digitized country,” Kutlov said. “We have everything online.”

SpaceX is one of a growing number of private companies that began taking an active role in supporting Ukraine in the fight against Russia almost as soon as Russia began missile and artillery attacks on Feb. 24.

Mobile phone carriers including T-Mobile, AT&T and Verizon have waived charges for calls and texts to and from Ukraine.

Tesla is allowing any electric vehicles to use its charging stations along the borders of Ukraine with Poland and Hungary.

Airbnb, the online marketplace for lodging, stepped up to organize free short-term accommodation for 100,000 refugees from Ukraine.

Google and Facebook have banned Russian state media from their European platforms while working with European governments to combat the spread of disinformation from the Kremlin. Twitter began labeling all tweets containing content from Russian state-affiliated media outlets on Feb. 28.

As of Friday, more than 340 companies have announced their withdrawal from Russia’s economy in protest of Putin’s invasion of Ukraine, according to the Yale School of Management.

Russia has threatened to counter that exodus by nationalizing foreign-owned businesses that have decided to flee the country in response to the invasion of Ukraine.

Eli Dourado, a senior research fellow at the Center for Growth and Opportunity at Utah State University, told VOA Mandarin the reason that so many private companies have taken action is that Russia’s invasion has “shocked and disgusted much of the world.”

He said the circumstances of the conflict have left a lot of people feeling that “it’s almost pure good versus evil.”

Abishur Prakash, co-founder and geopolitical futurist at the Center for Innovating the Future, a Toronto-based advisory firm, said one of the reasons Western corporations, especially tech companies, are taking sides is “because the global landscape has now permanently shifted.”

“The West is trying to permanently decouple from Russia, and Western tech firms are more than complying,” said Prakash, author of The World Is Vertical: How Technology Is Remaking Globalization, in an emailed response to VOA Mandarin. “There is a tacit acceptance in the boardrooms of technology companies that Russia has become ‘off limits.'”
…

U.S. authorities have broadly expanded the use of a smartphone app during the coronavirus pandemic to ensure immigrants released from detention will attend deportation hearings, a requirement that advocates say violates their privacy and makes them feel they’re not free.

More than 125,000 people — many of them stopped at the U.S.-Mexico border — are now compelled to install the app known as SmartLink on their phones, up from about 5,000 less than three years ago. It allows officials to easily check on them by requiring the immigrants to send a selfie or make or receive a phone call when asked.

Although the technology is less cumbersome than an ankle monitor, advocates say tethering immigrants to the app is unfair considering many have paid bond to get out of U.S. detention facilities while their cases churn through the country’s backlogged immigration courts. Immigration proceedings are administrative, not criminal, and the overwhelming majority of people with cases before the courts aren’t detained.

Advocates said they’re concerned about how the U.S. government might use data culled from the app on immigrants’ whereabouts and contacts to round up and arrest others on immigration violations.

“It’s kind of been shocking how just in a couple of years it has exploded so quickly and is now being used so much and everywhere,” said Jacinta Gonzalez, senior campaign director for the Latino rights organization Mijente. “It’s making it much easier for the government to track a larger number of people.”

The use of the app by Immigration and Customs Enforcement soared during the pandemic, when many government services went online. It continued to grow as President Joe Biden called on the Department of Justice to curb the use of private prisons. His administration has also voiced support for so-called alternatives to detention to ensure immigrants attend required appointments such as immigration court hearings.

Meanwhile, the number of cases before the long-backlogged U.S. immigration court system has soared to 1.6 million. Immigrants often must wait for years to get a hearing before a judge who will determine whether they can stay in the country legally or should be deported.

Since the pandemic, U.S. immigration authorities have reduced the number of immigrants in detention facilities and touted detention alternatives such as the app.

The SmartLink app comes from BI Inc, a Boulder, Colorado-based subsidiary of private prison company The GEO Group. GEO, which runs immigration detention facilities for ICE under other contracts, declined to comment on the app.

Officials at Immigration and Customs Enforcement, which is part of the Department of Homeland Security, declined to answer questions about the app, but said in a statement that detention alternatives “are an effective method of tracking noncitizens released from DHS custody who are awaiting their immigration proceedings.”

In recent congressional testimony, agency officials wrote that the SmartLink app is also cheaper than detention: it costs about $4.36 a day to put a person on a detention alternative and more than $140 a day to hold someone in a facility, agency budget estimates show.

Advocates say immigrants who spent months in detention facilities and were released on bond are being placed on the app when they go to an initial meeting with a deportation officer, and so are parents and children seeking asylum on the southwest border.

Initially, SmartLink was seen as a less intensive alternative to ankle monitors for immigrants who had been detained and released, but it is now being used widely on immigrants with no criminal history and who have not been detained at all, said Julie Mao, deputy director of the immigrant rights group Just Futures. Previously, immigrants often only attended periodic check-ins at agency offices.

“We’re very concerned that that is going to be used as the excessive standard for everyone who’s in the immigration system,” Mao said.

While most people attend their immigration court hearings, some do skip out. In those cases, immigration judges issue deportation orders in the immigrants’ absence, and deportation agents are tasked with trying to find them and return them to their countries. During the 2018 fiscal year, about a quarter of immigration judges’ case decisions were deportation orders for people who missed court, court data shows.

Advocates questioned whether monitoring systems matter in these cases, noting someone who wants to avoid court will stop checking in with deportation officers, trash their phone and move, whether on SmartLink or not.

They said they’re concerned that deportation agents could be tracking immigrants through SmartLink more than they are aware, just as commercial apps tap into location data on people’s phones.

In the criminal justice system, law enforcement agencies are using similar apps for defendants awaiting trial or serving sentences. Robert Magaletta, chief executive of Louisiana-based Shadowtrack Technologies, said the technology doesn’t continually track defendants but records their locations at check-ins, and that the company offers a separate, full-time tracking service to law enforcement agencies using tamperproof watches.

In a 2019 Congressional Research Service report, ICE said the app wasn’t continually monitoring immigrants. But advocates said even quick snapshots of people’s locations during check-ins could be used to track down friends and co-workers who lack proper immigration authorization. They noted immigration investigators pulled GPS data from the ankle monitors of Mississippi poultry plant workers to help build a case for a large workplace raid.

For immigrants released from detention with ankle monitors that irritate the skin and beep loudly at times, the app is an improvement, said Mackenzie Mackins, an immigration attorney in Los Angeles. It’s less painful and more discreet, she said, adding the ankle monitors made her clients feel they were viewed by others as criminals.

But SmartLink can be stressful for immigrants who came to the U.S. fleeing persecution in their countries, and for those who fear a technological glitch could lead to a missed check-in.

Rosanne Flores, a paralegal at Hilf and Hilf in Troy, Michigan, said she recently fielded panicked calls from clients because the app wasn’t working. They wound up having to report in person to immigration agents’ offices instead.

“I see the agony it causes the clients,” Flores said. “My heart goes out to them.” 
…

Facebook said Thursday that because of the invasion of Ukraine, it has temporarily eased its rules regarding violent speech.

Moscow’s internationally condemned invasion of its neighbor has provoked unprecedented sanctions from Western governments and businesses, but also a surge of online anger.

“As a result of the Russian invasion of Ukraine, we have temporarily made allowances for forms of political expression that would normally violate our rules like violent speech such as ‘death to the Russian invaders,'” Facebook’s parent company Meta said in a statement.

“We still won’t allow credible calls for violence against Russian civilians,” it added.

Facebook made its statement after a Reuters report, citing the firm’s emails to its content moderators, which said the policy applies to Armenia, Azerbaijan, Estonia, Georgia, Hungary, Latvia, Lithuania, Poland, Romania, Russia, Slovakia and Ukraine.

Facebook and other U.S. tech giants have moved to penalize Russia for the attack on Ukraine, and Moscow has also moved to block access to the leading social media network as well as Twitter.

Russia thus joins the small club of countries barring the largest social network in the world, along with China and North Korea.

Since Moscow’s invasion of Ukraine last month, Russian authorities also have stepped up pressure against independent media.

Blocking of Facebook and restricting of Twitter last week came the same day Moscow backed the imposition of jail terms on media publishing “false information” about the military.

In this context, Facebook had played a key information distribution role in Russia, even as it endures withering criticism in the West over matters ranging from political division to teenagers’ mental health.

The war is, meanwhile, taking place during a period of unprecedented crackdown on the Russian opposition, with has included protest leaders being assassinated, jailed or forced out of the country.

Big U.S. tech firms like Apple and Microsoft have announced halting the sale of their products in Russia, while other companies have paused certain business activities or ties.

Ukrainian officials have been campaigning heavily for Russia to be cut off from everything from Netflix to Instagram. 
…

Twitter says it has created a version of its microblogging service that can be used by Russians despite the regular version of the service being restricted in the country.

The service will be available via a special “onion” URL on the darkweb that is accessible only when using a Tor browser.

Onion URLs and Tor have long been used by those seeking to work around censorship as well as those who are involved in illegal activities on the darkweb.

The announcement of the new site was made by a software engineer who does work for Twitter.

“This is possibly the most important and long-awaited tweet that I’ve ever composed.

“On behalf of @Twitter, I am delighted to announce their new @TorProject onion service,” wrote Alec Muffett.
…

A Ukrainian man charged last year with conducting one of the most severe ransomware attacks against U.S. targets has been extradited to the United States and made a court appearance Wednesday, the U.S. Justice Department said.

According to an August 2021 indictment, Yaroslav Vasinskyi accessed the internal computer networks of several victim companies and deployed Sodinokibi/REvil ransomware to encrypt the data on their computers, the Justice Department said in a statement.

Vasinskyi was allegedly responsible for the July 2021 ransomware attack against Florida software provider Kaseya, the department said.

Reuters could not reach a representative of Vasinskyi. Kaseya did not immediately return a message seeking comment.

The Ukrainian national was accused in the indictment of breaking into Kaseya over the July 4 weekend last year and simultaneously distributing with accomplices REvil ransomware to as many as 1,500 Kaseya customers, encrypting their data and forcing some to shut down for days, the Justice Department said.

While most of the 1,500 businesses paralyzed as a result around the globe faced limited concerns, the disruption was felt keenly in places such as Sweden, where hundreds of supermarkets had to close because their cash registers were inoperative, and New Zealand, where schools and kindergartens were knocked offline.

Vasinskyi was charged in the indictment with breaking into the victim companies and installing encryption software developed by the core REvil ransomware hacking group. REvil directly handled the ransom negotiations and split the profits with Vasinskyi and other affiliates. This model allowed the notorious ransomware gang to extort numerous companies for cryptocurrency.

Vasinskyi was arrested in Poland in October. The Justice Department charged him and a Russian late last year.

U.S. law enforcement authorities transported Vasinskyi to Dallas, Texas, where he arrived March 3, the Justice Department said Wednesday.

REvil was involved in an attack last year against top global meat processor JBS S.A.
…

Russia’s blocking of Facebook is a symptom of its broader effort to cut itself off from sources of information that could imperil its internationally condemned invasion of Ukraine, experts say.

The often-criticized social network is part of a web of information sources that can challenge the Kremlin’s preferred perspective that its assault on Ukraine is righteous and necessary.

Blocking of Facebook and restricting of Twitter on Friday came the same day Moscow backed the imposition of jail terms on media publishing “false information” about the military.

Russia’s motivation “is to suppress political challenges at a very fraught moment for (Vladimir) Putin, and the regime, when it comes to those asking very tough questions about why Russia is continuing to prosecute this war,” said Steven Feldstein, a senior fellow at the Carnegie Endowment for International Peace.

Russia thus joins the very small club of countries barring the largest social network in the world, along with China and North Korea.

Moscow was expected to quickly overpower its neighbor but the campaign has already shown signs that it could go longer and could lead to the unleashing of its full military ferocity.

“It’s a censorship tool of last resort,” Feldstein added. “They are pulling the plug on a platform rather than try to block pages or use all sorts of other mechanisms that they traditionally do.”

Earlier this week independent monitoring group OVD-Info said that more than 7,000 people in Russia had been detained at demonstrations over Moscow’s invasion of Ukraine.

Web monitoring group NetBlocks said Russia’s moves against the social media giants come amid a backdrop of protests “which are coordinated and mobilized through social media and messaging applications.”

The war is meanwhile taking place during a period of unprecedented crackdown on the Russian opposition, with has included protest leaders being assassinated, jailed or forced out of the country.

‘No access to truth’

Since Moscow’s invasion of Ukraine last week, Russian authorities have stepped up pressure against independent media even though press freedoms in the country were already rapidly waning.

In this context, Facebook plays a key information distribution role in Russia, even as it endures withering criticism in the West over matters ranging from political division to teenagers’ mental health.

Natalia Krapiva, tech legal counsel at rights group Access Now, said social media has been a place where independent, critical voices have been talking about the invasion.

“Facebook is one of the key platforms in Russia,” she said, adding that its loss is “a devastating blow to access to independent information and for resistance to the war.”

Russia has been hit with unprecedented sanctions from the West over the invasion, but also rejections both symbolic and significant from sources ranging from sporting organizations to U.S. tech companies.

Facebook’s parent Meta and Twitter however have engaged on the very sensitive issue of information by blocking the spread of Russian state-linked news media.

Russia’s media regulator took aim at both, with Roskomnadzor accusing Facebook of discrimination toward state media.

Big U.S. tech firms like Apple and Microsoft have announced halting the sale of their products in Russia, while other companies have made public their “pauses” of certain business activities or ties.

On Friday U.S. internet service provider Cogent Communications said it had “terminated its contracts with customers billing out of Russia.”

The Washington Post reported Cogent has “several dozen customers in Russia, with many of them, such as state-owned telecommunications giant Rostelecom, being close to the government.”

It’s exactly the kind of measure Ukrainian officials have been campaigning heavily for as they ask Russia be cut off from everything from Netflix to Instagram.

Yet experts like Krapiva worry about what that would mean for dissenting or critical voices inside Russia.

“There’s a risk of people having no access to truth,” she said.

“Some Ukrainians have been calling for disconnecting Russia from the internet, but that’s counterproductive to disconnect civil society in Russia who are trying to fight.”  
…

Formed in a fury to counter Russia’s blitzkrieg attack, Ukraine’s hundreds-strong volunteer “hacker” corps is much more than a paramilitary cyberattack force in Europe’s first major war of the internet age. It is crucial to information combat and to crowdsourcing intelligence.

“We are really a swarm. A self-organizing swarm,” said Roman Zakharov, a 37-year-old IT executive at the center of Ukraine’s bootstrap digital army.

Inventions of the volunteer hackers range from software tools that let smartphone and computer owners anywhere participate in distributed denial-of-service attacks on official Russian websites to bots on the Telegram messaging platform that block disinformation, let people report Russian troop locations and offer instructions on assembling Molotov cocktails and basic first aid.

Zahkarov ran research at an automation startup before joining Ukraine’s digital self-defense corps. His group is StandForUkraine. Its ranks include software engineers, marketing managers, graphic designers and online ad buyers, he said.

The movement is global, drawing on IT professionals in the Ukrainian diaspora whose handiwork includes web defacements with antiwar messaging and graphic images of death and destruction in the hopes of mobilizing Russians against the invasion.

“Both our nations are scared of a single man — (Russian President Vladimir) Putin,” said Zakharov. “He’s just out of his mind.” Volunteers reach out person-to-person to Russians with phone calls, emails and text messages, he said, and send videos and pictures of dead soldiers from the invading force from virtual call centers.

Some build websites, such as a “site where Russian mothers can look through (photos of) captured Russian guys to find their sons,” Zakharov said by phone from Kyiv, the Ukrainian capital.

The cyber volunteers’ effectiveness is difficult to gauge. Russian government websites have been repeatedly knocked offline, if briefly, by the DDoS attacks, but generally weather them with countermeasures.

It’s impossible to say how much of the disruption — including more damaging hacks — is caused by freelancers working independently of but in solidarity with Ukrainian hackers.

A tool called “Liberator” lets anyone in the world with a digital device become part of a DDoS attack network, or botnet. The tool’s programmers code in new targets as priorities change.

But is it legal? Some analysts say it violates international cyber norms. Its Estonian developers say they acted “in coordination with the Ministry of Digital Transformation” of Ukraine.

A top Ukrainian cybersecurity official, Victor Zhora, insisted at his first online news conference of the war Friday that homegrown volunteers were attacking only what they deem military targets, in which he included the financial sector, Kremlin-controlled media and railways. He did not discuss specific targets.

Zakharov did. He said Russia’s banking sector was well fortified against attack but that some telecommunications networks and rail services were not. He said Ukrainian-organized cyberattacks had briefly interrupted rail ticket sales in western Russia around Rostov and Voronezh and knocked out telephone service for a time in the region of eastern Ukraine controlled by Russian-backed separatists since 2014. The claims could not be independently confirmed.

A group of Belarusian hacktivists calling themselves the Cyber Partisans also apparently disrupted rail service in neighboring Belarus this week seeking to frustrate transiting Russian troops. A spokeswoman said Friday that electronic ticket sales were still down after their malware attack froze up railway IT servers.

Over the weekend, Ukraine’s minister of digital transformation, Mykhailo Fedorov, announced the creation of an volunteer cyber army. The IT Army of Ukraine now counts 290,000 followers on Telegram.

Zhora, deputy chair of the state special communications service, said one job of Ukrainian volunteers is to obtain intelligence that can be used to attack Russian military systems.

Some cybersecurity experts have expressed concern that soliciting help from freelancers who violate cyber norms could have dangerous escalatory consequences. One shadowy group claimed to have hacked Russian satellites; Dmitry Rogozin, the director general of Russia’s space agency Roscosmos, called the claim false but was also quoted by the Interfax news agency as saying such a cyberattack would be considered an act of war.

Asked if he endorsed the kind of hostile hacking being done under the umbrella of the Anonymous hacktivist brand — which anyone can claim — Zhora said, “We do not welcome any illegal activity in cyberspace.”

“But the world order changed on the 24th of February,” he added, when Russia invaded.

The overall effort was spurred by the creation of a group called the Ukrainian Cyber Volunteers by a civilian cybersecurity executive, Yegor Aushev, in coordination with Ukraine’s Defense Ministry. Aushev said it numbers more than 1,000 volunteers.

On Friday, most of Ukraine’s telecommunications and internet were fully operational despite outages in areas captured by invading Russian forces, said Zhora. He reported about 10 hostile hijackings of local government websites in Ukraine to spread false propaganda saying Ukraine’s government had capitulated.

Zhora said presumed Russian hackers continued trying to spread destructive malware in targeted email attacks on Ukrainian officials and — in what he considers a new tactic — to infect the devices of individual citizens. Three instances of such malware were discovered in the runup to the invasion.

U.S. Cyber Command has been assisting Ukraine since well before the invasion. Ukraine does not have a dedicated military cyber unit. It was standing one up when Russia attacked.

Zhora anticipates an escalation in Russia’s cyber aggression — many experts believe far worse is yet to come.

Meantime, donations from the global IT community continue to pour in. A few examples: NameCheap has donated internet domains while Amazon has been generous with cloud services, said Zakharov.
…

The Russian war on Ukraine is also happening online, as people share images from around Ukraine. Caught in the middle are U.S. technology firms, which have taken steps to curtail Russian propaganda and make changes for Ukrainians’ safety. But it’s a fine line to walk as VOA’s Michelle Quinn reports.    
Produced by: Matt Dibble  
…

Software giant Microsoft announced Friday that it is suspending “all new sales of Microsoft products and services in Russia” over that country’s invasion of Ukraine.

“Like the rest of the world, we are horrified, angered and saddened by the images and news coming from the war in Ukraine and condemn this unjustified, unprovoked and unlawful invasion by Russia,” the company said in a statement.

The company added that it was ‘stopping many aspects of our business in Russia in compliance with governmental sanctions decisions.’

Many companies have announced they are ending or limiting their activity in Russia. Some companies include Apple, Nike and Dell Technologies.

Microsoft added that it will continue to work with Ukraine to protect the country from Russian cyberattacks, noting it already had during an attack on a “major Ukrainian broadcaster.”

“Since the war began, we have acted against Russian positioning, destructive or disruptive measures against more than 20 Ukrainian government, IT and financial sector organizations,” Microsoft said. “We have also acted against cyberattacks targeting several additional civilian sites. We have publicly raised our concerns that these attacks against civilians violate the Geneva Convention.”

Some information in this report comes from Reuters.

 
…

A consortium of U.S. states announced on Wednesday a joint investigation into TikTok’s possible harm to young users of the platform, which has boomed in popularity, especially among children. 

Officials across the United States have launched their own investigations and lawsuits against Big Tech giants as new national regulations have failed to pass, partly because of partisan gridlock in Congress. 

The consortium of eight states will look into the harm TikTok can cause to its young users and what the company knew about such possible harm, California Attorney General Rob Bonta said a statement.  

Leading the investigation is a coalition of attorneys general from California, Florida, Kentucky, Massachusetts, Nebraska, New Jersey, Tennessee and Vermont.

The investigation will focus, among other things, on TikTok’s techniques to boost young user engagement, including efforts to increase the frequency and duration of children’s use. 

“We don’t know what social media companies knew about these harms and when,” Bonta said in a statement.  

“Our nationwide investigation will allow us to get much-needed answers and determine if TikTok is violating the law in promoting its platform to young Californians,” he added. 

TikTok’s short-form videos have boomed in popularity with the youngest users, prompting growing concern from parents over the potential that their children could develop unhealthy use habits or be exposed to harmful content. 

TikTok welcomes investigation

The platform welcomed the investigation as a chance to provide information on its efforts to protect users. 

“We care deeply about building an experience that helps to protect and support the well-being of our community,” TikTok’s statement said. 

“We look forward to providing information on the many safety and privacy protections we have for teens,” it added. 

Social media’s impact on young users came under renewed scrutiny last year when Facebook whistleblower Frances Haugen leaked a trove of internal company documents raising questions over whether it had prioritized growth over users’ safety. 

The documents were given to lawmakers, a consortium of journalists and U.S. regulators by Haugen, who has become a figurehead of criticism of the leading social media platform. 

Despite media attention on the issue and hearings before U.S. lawmakers, no new rules have gotten close to being enacted on the national level. 

States have instead proceeded with their own efforts to look into Big Tech companies. 

For example, a consortium of U.S. states announced a joint probe in November of Instagram’s parent company, Meta, for promoting the app to children despite allegedly knowing its potential for harm. The consortium of attorneys general, states’ top law enforcers and legal advisers, included some of the same states as Wednesday’s probe, like California and Florida.

Instagram sparked fierce criticism for its plans to make a version of the photo-sharing app for younger users. It later halted development. 
…

Some of America’s best-known companies including Apple, Google, Ford, Harley-Davidson and Exxon Mobil rebuked and rejected Russia for its invasion of Ukraine, under steady pressure from investors and consumers decrying the violence. 

Late Tuesday, Apple said it had stopped sales of iPhones and other products in Russia, adding that it was making changes to its Maps app to protect civilians in Ukraine. 

Tech firms including Alphabet’s Google dropped Russian state publishers from their news, and Ford Motor, with three joint venture factories in Russia, told its Russian manufacturing partner it was suspending operations in the country. Motorcycle maker Harley-Davidson suspended shipments of its bikes. 

Exxon wants out of Russia

Exxon Mobil Corp said it would discontinue operations in Russia and was taking steps to exit the Sakhalin-1 venture, following in the steps of British energy giants Shell and BP, Russia’s biggest foreign investor. 

Many corporations have been unusually clear in their condemnation of Russia. 

“We are deeply concerned about the Russian invasion of Ukraine and stand with all of the people who are suffering as a result of the violence,” Apple said in a statement. 

The steady drum beat of companies taking a stance increased later in the day as rockets struck major cities in Ukraine. 

“Ford is deeply concerned about the invasion of Ukraine and the resultant threats to peace and stability. The situation has compelled us to reassess our operations in Russia,” Ford said, adding to several days of announcements by global car companies. 

“We deplore Russia’s military action that violates the territorial integrity of Ukraine and endangers its people,” said Exxon, adding it will not invest in new developments in Russia. 

Boeing suspends support program

Boeing suspended parts, maintenance and technical support services for Russian airlines, a Politico reporter tweeted. The U.S. planemaker suspended major operations in Moscow and will also temporarily closed office in Kyiv, the tweet said. Boeing did not immediately respond to a request for comment. 

Restrictions from the West have hit the Russian economy hard, with the ruble falling as much as a third to a record low. Financial isolation is rising as shipping companies say they will not serve Russian ports. 

The U.S. government is expected to ban Russian flights from American airspace as soon as Wednesday, government and industry officials told Reuters. 

And a boom of investor interest in environmental, social and governance (ESG) factors is making it more difficult for those companies that sit on the sidelines. 

Russian companies are in particular peril with such Western investors, since they often are not open to talks to change their behavior, said TJ Kistner, vice president at Segal Marco Advisors, a large U.S. pension consultant. 

Investors continue to leave

Western investors may respond by pulling out. 

“The only course of action for many is simply divestment,” Kistner said. 

Moscow has responded by temporarily curbing foreign investors from selling Russian assets. 

Big Tech companies also are continuing efforts to stop Russian forces from taking advantage of their products. 

Apple said it had blocked app downloads of some state-backed news services outside of Russia. 

Microsoft earlier said it would remove Russian state-owned media outlet RT’s mobile apps from its Windows App store and ban ads on Russian state-sponsored media. Google barred RT and other Russian channels from receiving money for ads on websites, apps and YouTube videos, similar to a move by Facebook. 
…

Avalanche forecasters use a slew of technology to predict avalanche risk and help lovers of backcountry winter sports to be prepared. From Boulder Colorado, Shelley Schlender reports. Video editors – Shelley Schlender, Luis Da Costa.
…

As Russia’s war in Ukraine plays out for the world on social media, big tech platforms are moving to restrict Russian state media from using their platforms to spread propaganda and misinformation.

Google announced Tuesday that it’s blocking the YouTube channels of those outlets in Europe “effective immediately” but acknowledged “it’ll take time for our systems to fully ramp up.”

Other U.S.-owned tech companies have offered more modest changes so far: limiting the Kremlin’s reach, labeling more of this content so that people know it originated with the Russian government, and cutting Russian state organs off from whatever ad revenue they were previously making. 

The changes are a careful balancing act intended to slow the Kremlin from pumping propaganda into social media feeds without angering Russian officials to the point that they yank their citizens’ access to platforms during a crucial time of war, said Katie Harbath, a former public policy director for Facebook. 

“They’re trying to walk this very fine line; they’re doing this dance,” said Harbath, who now serves as director of technology and democracy at the International Republican Institute. “We want to stand up to Russia, but we also don’t want to get shut down in the country. How far can we push this?” 

Meta, which owns Facebook and Instagram, announced Monday that it would restrict access to Russia’s RT and Sputnik services in Europe, following a statement by European Union President Ursula von der Leyen over the weekend that officials are working to bar the sites throughout the EU. 

Google followed Tuesday with a European ban of those two outlets on YouTube.

The U.S. has not taken similar action or applied sanctions to Russian state media, leaving the American-owned tech companies to wrestle with how to blunt the Kremlin’s reach on their own. 

The results have been mixed. 

RT and other Russian-state media accounts are still active on Facebook in the U.S. Twitter announced Monday that after seeing more than 45,000 tweets daily from users sharing Russian state-affiliated media links in recent days, it will add labels to content from the Kremlin’s websites. The company also said it would not recommend or direct users to Russian-affiliated websites in its search function.

Over the weekend, the Menlo Park, California-based company announced it was banning ads from Russian state media and had removed a network of 40 fake accounts, pages and groups that published pro-Russian talking points. The network used fictitious persons posing as journalists and experts, but didn’t have much of an audience.

Facebook began labeling state-controlled media outlets in 2020.

Meanwhile, Microsoft announced it wouldn’t display content or ads from RT and Sputnik, or include RT’s apps in its app store. And Google’s YouTube restricted Russian-state media from monetizing the site through ads, although the outlets are still uploading videos every few minutes on the site.

By comparison, the hands-off approach taken by TikTok, a Chinese platform popular in the U.S. for short, funny videos, has allowed pro-Russian propaganda to flourish on its site. The company did not respond to messages seeking comment.

One recent video posted to RT’s TikTok channel features a clip of Steve Bannon, a former top adviser to ex-President Donald Trump who now hosts a podcast with a penchant for misinformation and conspiracy theories. 

“Ukraine isn’t even a country. It’s kind of a concept,” Bannon said in the clip, echoing a claim by Russian President Vladimir Putin. “So when we talk about sovereignty and self-determination it’s just a corrupt area where the Clintons have turned into a colony where they can steal money.”

Already, Facebook’s efforts to limit Russian state media’s reach have drawn ire from Russian officials. Last week, Meta officials said they had rebuffed Russia’s request to stop fact-checking or labeling posts made by Russian state media. Kremlin officials responded by restricting access to Facebook.

The company has also denied requests from Ukrainian officials who have asked Meta to remove access to its platforms in Russia. The move would prevent everyday Russians from using the platforms to learn about the war, voice their views or organize protests, according to Nick Clegg, recently named the company’s vice president of global affairs.

“We believe turning off our services would silence important expression at a crucial time,” Clegg wrote on Twitter Sunday.

More aggressive labeling of state media and moves to de-emphasize their content online might help reduce the spread of harmful material without cutting off a key information source, said Alexandra Givens, CEO of the Center for Democracy and Technology, a Washington-based non-profit. 

“These platforms are a way for dissidents to organize and push back,” Givens said. “The clearest indication of that is the regime has been trying to shut down access to Facebook and Twitter.”

Russia has spent years creating its sprawling propaganda apparatus, which boasts dozens of sites that target millions of people in different languages. That preparation is making it hard for any tech company to mount a rapid response, said Graham Shellenberger at Miburo Solutions, a firm that tracks misinformation and influence campaigns. 

“This is a system that has been built over 10 years, especially when it comes to Ukraine,” Shellenberger said. “They’ve created the channels, they’ve created the messengers. And all the sudden now, we’re starting to take action against it.”

Redfish, a Facebook page that is labeled as Russian-state controlled media, has built up a mostly U.S. and liberal-leaning audience of more than 800,000 followers over the years. 

The page has in recent days posted anti-U.S. sentiment and sought to down play Russian’s invasion of Ukraine, calling it a “military operation” and dedicating multiple posts to highlighting anti-war protests across Russia. 

One Facebook post also used a picture of a map to highlight airstrikes in other parts of the world. 

“Don’t let the mainstream media’s Eurocentrism dictate your moral support for victims of war,” the post read. 

Last week, U.S. Sen. Mark Warner of Virginia sent letters to Google, Meta, Reddit, Telegram, TikTok and Twitter urging them to curb such Russian influence campaigns on their websites. 

“In addition to Russia’s established use of influence operations as a tool of strategic influence, information warfare constitutes an integral part of Russian military doctrine,” Warner wrote.
…

Twitter announced Monday that it will start labeling and making it harder for users to see tweets about the invasion of Ukraine that contain information from Russian state media outlets like RT and Sputnik.

“For years we’ve provided more context about state-affiliated media while not accepting ad $ or amplifying accounts,” Twitter said in a tweet. “With many looking for credible info due to the conflict in Ukraine, we’re now adding labels on Tweets linking to state media & reducing the content’s visibility.”

Twitter said it had seen over 45,000 tweets a day from people sharing links to Russian state media, much more than coming from state-sponsored accounts.

Twitter began to de-amplify Russian state media accounts in 2020 and had earlier banned Russian state media from advertising.

The announcement Monday will impact individuals sharing links from those entities.

The move is the latest spat between U.S. social media companies and Russia.

Twitter has been slowed down in Russia several times, most recently on Saturday, and last week, Russia said it would limit Russians’ access to some features of Facebook, saying the company was involved in censorship.

Google and Facebook have also banned Russian state media from monetizing their accounts.

Some information in this report comes from Reuters.
…

YouTube on Saturday barred Russian state-owned media outlet RT and other Russian channels from receiving money for advertisements that run with their videos, similar to a move by Facebook, after the invasion of Ukraine.

Citing “extraordinary circumstances,” YouTube said in a statement that it was “pausing a number of channels’ ability to monetize on YouTube, including several Russian channels affiliated with recent sanctions.” Ad placement is largely controlled by YouTube.

Videos from the affected channels also will come up less often in recommendations, YouTube spokesperson Farshad Shadloo said. He added that RT and several other channels would no longer be accessible in Ukraine due to “a government request.”

Ukraine Digital Minister Mykhailo Fedorov tweeted earlier on Saturday that he contacted YouTube “to block the propagandist Russian channels such as Russia 24, TASS, RIA Novosti.”

RT did not immediately respond to a request for comment. YouTube did not name the other channels it had restricted.

For years, lawmakers and some users have called on YouTube, which is owned by Alphabet Inc’s Google, to take greater action against channels with ties to the Russian government out of concern that they spread misinformation and should not profit from that.

Russia received an estimated $7 million to $32 million over the two-year period ended December 2018 from ads across 26 YouTube channels it backed, digital researcher Omelas told Reuters at the time.

YouTube previously has said that it does not treat state-funded media channels that comply with its rules any differently than other channels when it comes to sharing ad revenue.

Meta Platforms Inc, owner of Facebook, on Friday barred Russian state media from running ads or generating revenue from ads on its services anywhere in the world.
…

The Biden administration announced on Tuesday actions taken by the federal government and private industry that it says will bolster the supply chain of rare earths and other critical minerals used in technologies from household appliances and electronics to defense systems. They say these steps will reduce the nation’s dependence on China, a major producer of these elements. White House Bureau Chief Patsy Widakuswara has this report.
…