Microsoft has patched a high-severity vulnerability in Windows 11's Notepad that allowed attackers to silently execute local or remote programs when a user clicked a specially crafted Markdown link, all without triggering any Windows security warning.

The flaw, tracked as CVE-2026-20841 and fixed in the February 2026 Patch Tuesday update, stemmed from Notepad's relatively new Markdown support -- a feature Microsoft added after discontinuing WordPad and rewriting Notepad to serve as both a plain text and rich text editor. An attacker only needed to create a Markdown file containing file:// links pointing to executables or special URIs like ms-appinstaller://, and a Ctrl+click in Markdown mode would launch them. Microsoft's fix now displays a warning dialog for any link that doesn't use http:// or https://, though the company did not explain why it chose a prompt over blocking non-standard links entirely. Notepad updates automatically through the Microsoft Store.

Meta Platforms' latest annual report contained an unusual, cautionary note for investors. From a report: The tech giant's auditor, Ernst & Young, raised a red flag over the financial engineering Meta used to keep a $27 billion data-center project off its balance sheet. While EY ultimately blessed Meta's accounting treatment, the firm flagged it as a "critical audit matter." This means it was one of the hardest, riskiest judgments the auditor had to make.

Such a warning label is rare for a specific, high-profile transaction at a major audit client. Meta moved the data-center project, called Hyperion, off its books in October into a new joint venture with Blue Owl Capital. Meta owns 20% of the venture; funds managed by Blue Owl own the other 80%. A holding company called Beignet Investor, which owns the Blue Owl portion, sold a then-record $27.3 billion of bonds to investors. The joint venture is known in accounting parlance as a variable interest entity, or VIE. Meta said it isn't the "primary beneficiary" of this entity and so didn't have to put the venture's assets and liabilities on its own balance sheet.

Meta's assertion that it lacks power over the venture is debatable and has drawn scrutiny from investors and lawmakers. Meta is a hyperscaler and knows how to run data centers for artificial intelligence, while Blue Owl is a financier. Whether the venture succeeds economically will come down to Meta's decisions and know-how. In its report, EY said auditing Meta's decision "was especially challenging due to the significant judgment required in determining the activities that most significantly affect the VIE's economic performance."

Electric vehicles accounted for just 1% of new car sales across Africa in 2025, but a study published in Nature Energy by researchers at ETH Zurich finds that EVs paired with solar off-grid charging systems -- solar panels, batteries and an inverter -- could become cheaper to own than gas-powered equivalents across most of the continent by 2040.

The analysis considered total cost of ownership including sticker price, financing and fuel or charging costs, but excluded policy-related factors like taxes and subsidies. Electric two-wheelers could reach cost parity even sooner, by the end of the decade, thanks to smaller battery packs.

Small cars remain the toughest segment. The biggest obstacle is financing: in some African countries, political instability and economic uncertainty push borrowing costs so high that interest on an EV loan can exceed the vehicle's purchase price. South Africa, Mauritius and Botswana are already near the financing conditions needed for cost parity; countries like Sudan and Ghana would need drastic cuts.

T-Mobile is opening registration today for a beta test of Live Translation, an AI-powered feature that will translate live phone calls into more than 50 languages when it launches this spring.

The feature operates at the network level, so it doesn't require any specific app or device -- beta participants simply dial 87 to activate it on a call. T-Mobile President of Technology and CTO John Saw told The Verge that Live Translation works over VoLTE, VoNR and VoWiFi, meaning it isn't limited to 5G. The only requirement is that a T-Mobile customer must initiate the translation. The beta will be free, though T-Mobile has not said whether the feature will eventually be paywalled.

Google on Tuesday expanded its "Results about you" tool to let users request the removal of Search results containing government-issued ID numbers -- including driver's licenses, passports and Social Security numbers -- adding to the tool's existing ability to flag results that surface phone numbers, email addresses, and home addresses.

The update, announced on Safer Internet Day, is rolling out in the U.S. over the coming days. Google also streamlined its process for reporting non-consensual explicit images on Search, allowing users to select and submit removal requests for multiple images at once rather than reporting them individually.

Microsoft has begun automatically replacing the original Secure Boot security certificates on Windows devices through regular monthly updates, a necessary move given that the 15-year-old certificates first issued in 2011 are set to expire between late June and October 2026.

Secure Boot, which verifies that only trusted and digitally signed software runs before Windows loads, became a hardware requirement for Windows 11. A new batch of certificates was issued in 2023 and already ships on most PCs built since 2024; nearly all devices shipped in 2025 include them by default. Older hardware is now receiving the updated certificates through Windows Update, starting last month's KB5074109 release for Windows 11. Devices that don't receive the new certificates before expiration will still function but enter what Microsoft calls a "degraded security state," unable to receive future boot-level protections and potentially facing compatibility issues down the line.

Windows 10 users must enroll in Microsoft's paid Extended Security Updates program to get the new certificates. A small number of devices may also need a separate firmware update from their manufacturer before the Windows-delivered certificates can be applied.

Apple and Google have agreed to a set of commitments to the UK's Competition and Markets Authority that will prevent them from giving preferential treatment to their own apps and require greater transparency around how third-party apps are approved for sale.

The CMA announced the measures on Tuesday, seven months after it declared that the two companies held an "effective duopoly" over the UK's mobile app ecosystem. Both companies also committed to not using data gathered from third-party developers in ways the regulator deems unfair. The CMA granted both app stores "strategic market status" in October 2025, a designation that gave it the authority to demand changes.

CMA head Sarah Cardell called the commitments "important first steps" and said the regulator would "closely monitor" implementation. Technology analyst Paolo Pescatore described the announcement as a "pragmatic first step" but noted some may see it as "addressing the low-hanging fruit." The UK's app economy is the largest in Europe by revenue and number of developers, generating an estimated 1.5% of the country's GDP.

The software and technology sectors pose one of the all-time great concentration risks to the speculative-grade credit market, according to Deutsche Bank AG analysts. Bloomberg: They comprise $597 billion and $681 billion of the speculative-grade credit universe, or about 14% and 16% respectively, analysts led by Steve Caprio wrote in a Monday note. Speculative debt spans high-yield debt, leveraged loans and US private credit.

That's "a meaningful chunk of debt outstanding that risks souring broader sentiment, if software defaults increase," the analysts wrote, with "a potential impact that would rival that of the Energy sector in 2016." Unlike in 2016, pressures would likely first emerge in private credit, business development companies and leveraged loans, with the high-yield market weakening later, the analysts added.

The rapid adoption of artificial intelligence tools risks further weighing down multiples and revenues for software-as-a-service firms, while the US Federal Reserve's hawkish stance since 2022 has pressured cash flows, the analysts wrote. For instance, software payment-in-kind loan usage has risen to 11.3% in BDC portfolios, over 2.5 percentage points higher than the already elevated index average of 8.7%, according to Deutsche. PIK deals typically allow borrowers to pay interest in more debt rather than cash.

Deepfake fraud has gone "industrial," an analysis published by AI experts has said. From a report: Tools to create tailored, even personalised, scams -- leveraging, for example, deepfake videos of Swedish journalists or the president of Cyprus -- are no longer niche, but inexpensive and easy to deploy at scale, said the analysis from the AI Incident Database.

It catalogued more than a dozen recent examples of "impersonation for profit," including a deepfake video of Western Australia's premier, Robert Cook, hawking an investment scheme, and deepfake doctors promoting skin creams. These examples are part of a trend in which scammers are using widely available AI tools to perpetuate increasingly targeted heists. Last year, a finance officer at a Singaporean multinational paid out nearly $500,000 to scammers during what he believed was a video call with company leadership. UK consumers are estimated to have lost $12.86bn to fraud in the nine months to November 2025.

"Capabilities have suddenly reached that level where fake content can be produced by pretty much anybody," said Simon Mylius, an MIT researcher who works on a project linked to the AI Incident Database. He calculates that "frauds, scams and targeted manipulation" have made up the largest proportion of incidents reported to the database in 11 of the past 12 months. He said: "It's become very accessible to a point where there is really effectively no barrier to entry."

An anonymous reader shares a report: It turns out that when fewer cars spew exhaust as they drive along, air quality improves. That's the conclusion of a new study published in The Lancet Planetary Health that looked at the effect of increased numbers of both EVs and plug-in hybrids on air pollution in California. The Golden State has by far the largest number of plug-in vehicles in the United States, and they've now reached significant numbers to have a positive impact on air quality.

Between 2019 and 2023, for every 200 EVs or plug-in hybrids added, nitrogen dioxide (NO2) levels dropped 1.1%, according to the study, which used satellite data to track those levels through the unique way NO2 absorbs and reflects sunlight. NO2 can trigger asthma attacks, cause bronchitis, and increase the risk of heart disease and stroke.

Autodesk has sued Google in San Francisco federal court, alleging the search giant infringed its "Flow" trademark by launching competing AI-powered software for movie, TV and video game production in May 2025.

Autodesk says it has used the Flow name since September 2022 and that Google assured it would not commercialize a product under the same name -- then filed a trademark application in Tonga, where filings are not publicly accessible, before seeking U.S. protection.

Alphabet has lined up banks to sell a rare 100-year bond, stepping up a borrowing spree by Big Tech companies racing to fund their vast investments in AI this year. From a report: The so-called century bond will form part of a debut sterling issuance this week by Google's parent company, according to people familiar with the matter. Alphabet was also selling $15bn of dollar bonds on Monday and lining up a Swiss franc bond sale, the people said.

Century bonds -- long-term borrowing at its most extreme -- are highly unusual, although a flurry were sold during the period of very low interest rates that followed the financial crisis, including by governments such as Austria and Argentina. The University of Oxford, EDF and the Wellcome Trust -- the most recent in 2018 -- are the only issuers to have previously tapped the sterling century market.

Such sales are even rarer in the tech sector, with most of the industry's biggest groups issuing up to 40 years, although IBM sold a 100-year bond back in 1996. Big Tech companies and their suppliers are expected to invest almost $700bn in AI infrastructure this year and are increasingly turning to the debt markets to finance the giant data centre build-out. Michael Burry, writing on Substack: Alphabet looking to issue a 100-year bond. Last time this happened in tech was Motorola in 1997, which was the last year Motorola was considered a big deal.

At the start of 1997, Motorola was a top 25 market cap and top 25 revenue corporation in America. Never again. The Motorola corporate brand in 1997 was ranked #1 in the US, ahead of Microsoft. In 1998, Nokia overtook Motorola in cell phones, and after the iPhone it fell out of the consumer eye. Today Motorola is the 232nd largest market cap with only $11 billion in sales.

A mounting body of research is making it harder for companies to justify what most of them still do -- push experienced workers out the door just as they're hitting their professional peak. A 2025 study published in the journal Intelligence analyzed 16 cognitive, emotional and personality dimensions and found that while processing speed declines after early adulthood, other capabilities -- including the ability to avoid distractions and accumulated knowledge -- continue to improve, putting peak overall functioning between ages 55 and 60.

AARP and OECD data back this up at the firm level: a 10-percentage-point increase in workers above 50 correlates with roughly 1.1% higher productivity. A 2022 Boston Consulting Group study found cross-generational teams outperform homogeneous ones. UK retailer B&Q staffed a store largely with older workers in 1989 and saw profits rise 18%. BMW implemented 70 ergonomic changes at a German plant in 2007 and recorded a 7% productivity gain. Yet an Urban Institute analysis of U.S. data from 1992 to 2016 found more than half of workers above 50 were pushed out of long-held jobs before they chose to retire.

"How Chinese is your car?" asks the Wall Street Journal. "Automakers are racing to work it out." Modern cars are packed with internet-connected widgets, many of them containing Chinese technology. Now, the car industry is scrambling to root out that tech ahead of a looming deadline, a test case for America's ability to decouple from Chinese supply chains. New U.S. rules will soon ban Chinese software in vehicle systems that connect to the cloud, part of an effort to prevent cameras, microphones and GPS tracking in cars from being exploited by foreign adversaries.

The move is "one of the most consequential and complex auto regulations in decades," according to Hilary Cain, head of policy at trade group the Alliance for Automotive Innovation. "It requires a deep examination of supply chains and aggressive compliance timelines."

Carmakers will need to attest to the U.S. government that, as of March 17, core elements of their products don't contain code that was written in China or by a Chinese company. The rule also covers software for advanced autonomous driving and will be extended to connectivity hardware starting in 2029. Connected cars made by Chinese or China-controlled companies are also banned, wherever their software comes from...

The Commerce Department's Bureau of Industry and Security, which introduced the connected-vehicle rule, is also allowing the use of Chinese code that is transferred to a non-Chinese entity before March 17. That carve-out has sparked a rush of corporate restructuring, according to Matt Wyckhouse, chief executive of cybersecurity firm Finite State. Global suppliers are relocating China-based software teams, while Chinese companies are seeking new owners for operations in the West.
Thanks to long-time Slashdot reader schwit1 for sharing the article.

"You can hear the hum of the drone," says a local newscaster, "but then the propellors come into contact with the building, chunks of the drone later seen falling down. The next video shows the drone on the ground, surrounded by smoke...

"Amazon tells us there was minimal damage to the apartment building, adding they are working with the appropriate people to handle any repairs." But there were people standing outside, notes the woman who filmed the crash, and the falling drone "could've hit them, and they would've hurt."

More from USA Today: Cesarina Johnson, who captured the collision from her window, told USA TODAY that the collision seemed to happen "almost immediately" after she began to record the drone in action... "The propellers on the thing were still moving, and you could smell it was starting to burn," Johnson told Fox 4 News. "And you see a few sparks in one of my videos. Luckily, nothing really caught on fire where it got, it escalated really crazy." According to the outlet, firefighters were called out of an abundance of caution, but the "drone never caught fire...."

Amazon employees can be seen surveying the scene in the clip. Johnson told the outlet that firefighters and Amazon workers worked together to clean up before the drone was loaded into a truck.
Another local news report points out Amazon only began drone delivery in the area late last year.

The San Antonio Express News points out that America's Federal Aviation Administration "opened an investigation into Amazon's drone delivery program in November after one of its drone struck an Internet cable line in Waco."

The mailing list for the North American Network Operators' Group discusses Internet infrastructure issues like routing, IP address allocation, and containing malicious activity. This morning there was another message: We are heartbroken to report that our colleague — our mentor, friend, and conscience — David J. Farber passed away suddenly at his home in Roppongi, Tokyo. He left us on Saturday, Feb. 7, 2026, at the too-young age of 91...

Dave's career began with his education at Stevens Institute of Technology, which he loved deeply and served as a Trustee. He joined the legendary Bell Labs during its heyday, and worked at the Rand Corporation. Along the way, among countless other activities, he served as Chief Technologist of the U.S. Federal Communications Commission; became a proficient (instrument-rated) pilot; and was an active board member of the Electronic Frontier Foundation, a digital civil-liberties organization.

His professional accomplishments and impact are almost endless, but often captured by one moniker: "grandfather of the Internet," acknowledging the foundational contributions made by his many students at the University of California, Irvine; the University of Delaware; the University of Pennsylvania; and Carnegie Mellon University. In 2018, at the age of 83, Dave moved to Japan to become Distinguished Professor at Keio University and Co-Director of the Keio Cyber Civilization Research Center (CCRC). He loved teaching, and taught his final class on January 22, 2026... Dave thrived in Japan in every way...

It's impossible to summarize a life and career as rich and long as Dave"s in our few words here. And each of us, even those who knew him for decades, represent just one facet of his life. But because we are here at its end, we have the sad duty of sharing this news.
Farber once said that " At both Bell Labs and Rand, I had the privilege, at a young age, of working with and learning from giants in our field. Truly I can say (as have others) that I have done good things because I stood on the shoulders of those giants. In particular, I owe much to Dr. Richard Hamming, Paul Baran and George Mealy."

Long-time Slashdot reader Geoffrey.landis shared this report from InsideEVs: Chinese battery giant CATL and automaker Changan Automobile are preparing to put the world's first passenger car powered by sodium-ion batteries on public roads by mid-2026. And if the launch is successful, it could usher in an era where electric vehicles present less of a fire risk and can better handle extreme temperatures.

The CATL Naxtra sodium-ion battery will debut in the Changan Nevo A06 sedan, delivering an estimated range of around 400 kilometers (249 miles) on the China Light-Duty Test Cycle. From there, the battery will roll out across Changan's broader portfolio, including EVs from Avatr, Deepal, Qiyuan and Uni, the company said. "The launch represents a major step in the industry's transition toward a dual-chemistry ecosystem, where sodium-ion and lithium-ion batteries complement each other to meet diverse customer needs," CATL said in a press release...

It delivers 175 watt-hours per kilogram of energy density, which is lower than nickel-rich chemistries but roughly on par with lithium ion phosphate batteries... Where the Naxtra battery really stands out, however, is cold-weather performance. CATL says its discharge power at -30 degrees Celsius (-22 degrees Fahrenheit) is three times higher than that of lithium ion phosphate batteries.

Has the rise of hyper-addictive digital technologies really shattered our attention spans and driven books out of our culture? Maybe not, argues social psychologist Adam Mastroianni (author of the Substack Experimental History): As a psychologist, I used to study claims like these for a living, so I know that the mind is primed to believe narratives of decline. We have a much lower standard of evidence for "bad thing go up" than we do for "bad thing go down." Unsurprisingly, then, stories about the end of reading tend to leave out some inconvenient data points. For example, book sales were higher in 2025 than they were in 2019, and only a bit below their high point in the pandemic. Independent bookstores are booming, not busting; at least 422 new indie shops opened in the United States last year alone. Even Barnes & Noble is cool again.

The actual data on reading, meanwhile, isn't as apocalyptic as the headlines imply. Gallup surveys suggest that some mega-readers (11+ books per year) have become moderate readers (1-5 books per year), but they don't find any other major trends over the past three decades. Other surveys document similarly moderate declines. For instance, data from the National Endowment for the Arts finds a slight decrease in the percentage of U.S. adults who read any book in 2022 (49%) compared to 2012 (55%). And the American Time Use Survey shows a dip in reading time from 2003 to 2023. Ultimately, the plausibility of the "death of reading" thesis depends on two judgment calls. First, do these effects strike you as big or small...? The second judgment call: Do you expect these trends to continue, plateau, or even reverse...?

There are signs that the digital invasion of our attention is beginning to stall. We seem to have passed peak social media — time spent on the apps has started to slide. App developers are finding it harder and harder to squeeze more attention out of our eyeballs, and it turns out that having your eyeballs squeezed hurts, so people aren't sticking around for it... Fact #2: Reading has already survived several major incursions, which suggests it's more appealing than we thought. Radio, TV, dial-up, Wi-Fi, TikTok — none of it has been enough to snuff out the human desire to point our pupils at words on paper... It is remarkable, even miraculous, that people who possess the most addictive devices ever invented will occasionally choose to turn those devices off and pick up a book instead.
The author mocks the "death of reading" hypothesis for implying that all the world's avid readers "were just filling time with great works of literature until TikTok came along."

Waymo surprised U.S. lawmakers Wednesday during a hearing on autonomous vehicles and their safety and oversight. Newsweek reports: During questioning, Sen. Ed Markey, a Massachusetts Democrat, asked what happens when a Waymo vehicle encounters a driving situation it cannot independently resolve. "The Waymo phones a human friend for help," Markey explained, adding that the vehicle communicates with a "remote assistance operator." Markey criticized the lack of public information about these workers, despite their role in vehicle safety...

[Dr. Mauricio Peña, chief safety officer at Waymo] responded by clarifying the scope of the operators' involvement: "They provide guidance, they do not remotely drive the vehicles," Peña said. "Waymo asks for guidance in certain situations and gets input, but Waymo is always in charge of the dynamic driving task," according to EVShift. Pressed further on where those operators are located, Peña told lawmakers that some are based in the United States and others abroad, though he did not have an exact breakdown. After additional questioning, he confirmed that overseas operators are located in the Philippines...

The disclosure prompted sharp criticism from Markey, who raised concerns about security and labor implications. "Having people overseas influencing American vehicles is a safety issue," he said. "The information the operators receive could be out of date. It could introduce tremendous cyber security vulnerabilities," according to People. Markey also pointed to job displacement, noting that autonomous vehicles already affect taxi and rideshare drivers in the U.S. Waymo defended the practice in comments to People, saying the use of overseas staff is part of a broader effort to scale operations globally.
Waymo also defended the remote workers to Newsweek as licensed drivers reviewed for "driving-related convictions" and other traffic violations who are also "randomly screened for drug use."

Thanks to Slashdot reader sinij for sharing the news.

Apple "is preparing to allow voice-controlled AI apps from other companies in CarPlay," reports Bloomberg, citing "people familiar with the matter."

Bloomberg calls it "a move that will let users query AI chatbots through its vehicle interface for the first time." The company is working to support the apps in CarPlay within the coming months, said the people, who asked not to be identified because the plan hasn't been announced. The change marks a strategic shift for Apple, which until now has only allowed its own Siri assistant as a voice-control option within its popular vehicle infotainment software. With the move, AI providers such as OpenAI, Anthropic PBC and Alphabet Inc.'s Google will be able to release CarPlay versions of their apps that include a voice-control mode...

The company also has launched a higher-end version of the platform, CarPlay Ultra, that lets drivers control functions like seat adjustments and climate settings directly through Apple's software. But that system is rolling out slowly and must be customized for each automaker. That means it's likely to be a niche offering.
The article notes that Tesla is now working to support Apple's CarPlay.