Subway said on Tuesday it plans to add charging parks to select restaurants. "Dubbed Subway Oasis, the EV parks will be outfitted with 'charging canopies with multiple ports, picnic tables, Wi-Fi, restrooms, green space, and even playgrounds,'" reports Insider. From the report: Subway is working with EV tech startups GenZ EV Solution and RED E Charging to open these parks. Additionally, the company said that Subway is opening smaller fast-charging EV stations at new or newly remodeled restaurants across the US this year. "On average, the smaller-format, fast EV chargers will offer a 120-mile charge in 17 minutes for approximately $20," the company said. Once open, EV customers might also get the added perk of receiving Subway discounts while waiting for their cars to charge, the company said. Subway did not specify how much it would cost consumers to charge their cars at their new charging stations, nor did they mention where and when the first Subway Oasis would be built.

Tumblr's parody of paid verification has already delivered the social network and blogging platform a 125% boost in iOS in-app purchase revenue since November, according to a new analysis of the app's in-app consumer spending. TechCrunch reports: The company, now operated by WordPress.com owner Automattic following its 2019 acquisition, launched its response to Twitter's paid verification hustle with the addition of its own purely cosmetic double blue checks -- a sort of tongue-in-cheek rebuttal to the idea that subscription-based verification had any real value. As it turns out, at least some Tumblr users were willing to pay -- though perhaps not for clout, but because in-jokes have proven to be a more successful monetization strategy for the blogging network than some of its more legitimate attempts to make money, such as its creator-focused subscription, Post+. After being met with community backlash, at one point Post+ was being outperformed from a monetization perspective by crabs -- a goofy paid feature that let users send animated dancing crabs to each other's dashboards.

According to new data from app intelligence firm Sensor Tower provided to TechCrunch, consumer spending on Tumblr's iOS app increased since November 2022's double-blue check launch, now totaling $263,000 in net revenue. While that's not a significant figure in the grand scheme of things by any means, it still represents a 125% jump in spending compared with the prior three-month total of August through October 2022. When looking at more long-term trends, Tumblr's revenue remains up -- but not by as much. Sensor Tower says the in-app purchase revenue on iOS is up 19%, compared with the prior ten months ahead of the blue check's launch (January through October 2022).

Starry, an ISP that launched in 2016 with a focus on delivering home internet with wireless antennas instead of cables, has declared bankruptcy. The Verge reports: In a press release (PDF), the company says that it intends to quickly restructure and that it'll continue providing internet service in its "five core operating markets." Those are Boston, New York City, Los Angeles, Denver, and Washington, DC. The ISP has clearly been struggling over the past few months. In October 2022, it announced that it was laying off around 500 people, which amounted to about half of its staff. A few months later, Starry announced it was leaving Columbus, Ohio, in a bid to focus more on its five "core" markets. All the while, it was burning millions of dollars in cash, and its stock was dropping after a special purpose acquisition company-backed IPO in March -- it started at around $10 a share but is now worth $0.012, down from last week when it was approximately $0.02 per share.

The company also defaulted on its Rural Digital Opportunity Fund bids after it won awards from the FCC to work on providing internet to underserved areas in the US. Had it completed the work, it stood to receive almost $269 million, according to Light Reading. Starry has asked the United States Bankruptcy Court for the District of Delaware to approve a plan that would give it $43 million in funding from lenders, which it says would provide "the necessary liquidity to continue its normal business operations and meet its post-filing obligations to its employees, customers and vendors." "With the support of our lenders, we feel confident in our ability to successfully exit this process as a stronger company, well-positioned to continue" providing internet to customers, said Starry CEO Chet Kanojia in the company's press release.

The European Union is (finally) coming to grips with the dysfunctionalities of its most famous tech law of all: the General Data Protection Regulation. From a report: The European Commission will propose a new law before the summer that's aimed at improving how EU countries' privacy regulators enforce the GDPR, a newly published page on its website showed. Adopted in 2016, the privacy rulebook was a watershed moment in global tech regulation, forcing companies to abide by new standards such as asking for consent to collect people's data online against threats of hefty fines of up to 4 percent of global annual turnover. The law effectively became European officials' poster child of powerful legislation coming out of Brussels. But five years after EU data protection authorities started their job, as GDPR entered into force, activists, experts and some national privacy watchdogs have become frustrated at what they see as an inefficient system to tackle major cases, especially from Big Tech companies.

Most notably, critics have lamented the powerful role that the Irish Data Protection Commission has under the so-called one-stop shop rule, which directs most major investigations to run through the Irish system because tech companies like Meta, Google, Apple and others have set up their European homes there. Under the GDPR, tech companies are overseen by the national regulator in the EU country where they are headquartered. Ireland and, to a lesser extent, Luxembourg, where Amazon's EU headquarters is based, have faced mounting criticism in recent years for lax enforcement, which they deny. The Irish data authority in recent months imposed some major multimillion-euro fines to sanction GDPR infringements from Meta, the parent company of Instagram and Facebook. Now, a new EU regulation that is expected in the second quarter of 2023 wants to set clear procedural rules for national data protection authorities dealing with cross-border investigations and infringements. The law "will harmonize some aspects of the administrative procedure" in cross-border cases and " support a smooth functioning of the GDPR cooperation and dispute resolution mechanisms," the Commission wrote.

Crypto exchange Coinbase has confirmed that it was briefly compromised by the same attackers that targeted Twilio, Cloudflare, DoorDash, and more than a hundred other organizations last year. From a report: In a post-mortem of the incident published over the weekend, Coinbase said that the so-called '0ktapus' hackers stole the login credentials of one of its employees in an attempt to remotely gain access to the company's systems. 0ktapus is a hacking group that has targeted more than 130 organizations in 2022 as part of an ongoing effort to steal the credentials of thousands of employees, often by impersonating Okta log-in pages. That figure of 130 organizations is now likely much higher, as a leaked Crowdstrike report seen by TechCrunch claims that the gang is now targeting several tech and video game companies.

Microsoft has partnered with web3 infrastructure provider Ankr to offer a node service for enterprises in need of blockchain data access. From a report: The two firms will work together on a new node hosting service in Microsoft's Azure cloud marketplace, with tailored memory and bandwidth specifications for blockchain nodes. The enterprise node deployment service would enable web3 projects or developers to deploy smart contracts, relay transactions and read or write blockchain data, according to a company release. "Our partnership with Ankr will enable developers and organizations to access blockchain data in a reliable and secure way as they explore how web3 can address real-world business challenges," said Rashmi Misra, Microsoft's general manager for AI and emerging technologies in the release. "Together, we are building a robust web3 infrastructure layer."

Steven Vaughan-Nichols, writing for ZDNet: Linux 6.2 was released yesterday, and Linus Torvalds described the latest Linux kernel release as, "Maybe it's not a sexy LTS release like 6.1 ended up being, but all those regular pedestrian kernels want some test love too." For once, I disagree with Torvalds. By adding upstream support for the Apple M1 Pro, M1 Max, and M1 Ultra chips, newer Mac owners can look forward to running Linux on their M1-powered machines. And, for techies, that's sexy. Getting Linux to run on the M1 family wasn't easy.

When these high-powered ARM chips first arrived, Torvalds told me in an exclusive interview that he'd like to run Linux on these next-generation Macs. But, while he'd been "waiting for an ARM laptop that can run Linux for a long time," he worried, saying, "The main problem with the M1 for me is the GPU and other devices around it because that's likely what would hold me off using it because it wouldn't have any Linux support unless Apple opens up."
UPDATE (2/26/2023): Asahi Linux called ZDNet's report "misleading and borderline false," posting on Twitter that "You will not be able to run Ubuntu nor any other standard distro with 6.2 on any M1 Mac. Please don't get your hopes up." We are continuously upstreaming kernel features, and 6.2 notably adds device trees and basic boot support for M1 Pro/Max/Ultra machines. However, there is still a long road before upstream kernels are usable on laptops. There is no trackpad/keyboard support upstream yet.

While you can boot an upstream 6.2 kernel on desktops (M1 Mac Mini, M1 Max/Ultra Mac Studio) and do useful things with it, that is only the case for 16K page size kernel builds. No generic ARM64 distro ships 16K kernels today, to our knowledge.

Our goal is to upstream everything, but that doesn't mean distros instantly get Apple Silicon support. As with many other platforms, there is some integration work required. Distros need to package our userspace tooling and, at this time, offer 16K kernels. In the future, once 4K kernel builds are somewhat usable, you can expect zero-integration distros to somewhat work on these machines (i.e. some hardware will work, but not all, or only partially). This should be sufficient to add a third-party repo with the integration packages.

But for out-of-the-box hardware support, distros will need to work with us to get everything right. We are already working with some, and we expect to announce official Apple Silicon support for a mainstream distro in the near future. Just not quite yet!

Key members of China's most influential scientific body have outlined the country's plan to circumvent US chip sanctions for the first time, codifying Beijing's view of how it could win a crucial technological conflict with Washington. From a report: Two of the country's senior academics wrote that Beijing should amass a portfolio of patents that govern the next generation of chipmaking, from novel materials to new techniques. That should propel its semiconductor ambitions while giving China the clout to push back against US sanctions designed to hamstring its semiconductor sector, Luo Junwei and Li Shushen wrote in the bulletin of the Chinese Academy of Sciences.

The article, published to a social media account affiliated with the academy, offers a rare glimpse into how Beijing thinks about and might react to the Biden administration's escalating hostilities over semiconductors. The academy advises China's top decision makers and the article echoes remarks by President Xi Jinping calling for victory in developing core technologies. It comes as the country's new technology overseer outlined his vision for moving past American sanctions, stressing the need to modernize and rectify weak links in its supply chain. China has a plan to develop next-generation chip materials that it put in place in 2020 as a reaction to Trump-era restrictions. Yet that national strategy has yet to yield a technological edge on the world's leading chipmakers. Washington has implemented a series of measures limiting exports of technology such as chipmaking gear and artificial intelligence processors to China, part of a broader set of technology sanctions.

Google has released optimization features designed to improve battery life and memory usage on machines running the latest version of its Chrome desktop web browser. From a report: Chrome's new Energy Saver and Memory Saver modes were first announced in December last year alongside the release of Chrome 108, and now as noted by Android Police, the two optimization utilities are starting to roll out globally onto Chrome 110 desktops for Mac, Windows, and Chromebooks.

Memory Saver mode essentially snoozes Chrome tabs that aren't currently in use to free up RAM for more intensive tasks and create a smoother browsing experience. Don't worry if you're a tab hoarder though, as these inactive tabs are still visible and can be reloaded at any time to pick up where you left off. Your most used websites can also be marked as exempt from Memory Saver to ensure they're always running at the maximum possible performance.

New submitter calicuse writes: Microsoft's Outlook spam filters appear to be broken for many users today. I woke up to more than 20 junk messages in my Focused Inbox in Outlook this morning, and spam emails have kept breaking through on an hourly basis today. Many Outlook users in Europe have also spotted the same thing, with some heading to Twitter to complain about waking up to an inbox full of spam messages. Most of the messages that are making it into Outlook users' inboxes are very clearly spam. Today's issues are particularly bad, after weeks of the Outlook spam filter progressively deteriorating for me personally.

An anonymous reader shares a report: Did you force your PC to install Windows 11 despite it not meeting the official requirements? Microsoft might start nagging you for doing that -- or at least reminding you that what you've done is against the intended use of its operating system. The January 2023 Windows 11 update is pestering folks who forced the update on their PCs with a persistent watermark on the desktop warning that system requirements haven't been met. The story is circulating among Windows blogs, though I found a couple of instances of folks complaining about the watermark on the official Microsoft support forums.

The watermark says "system requirements not met" and is emblazoned on the desktop's lower right hand corner if the operating system notices that it's running on hardware that doesn't meet the minimum requirements. It's possible the culprit is the dedicated security processor, or TPM 2.0 (Trusted Platform Module) chip, used by services like BitLocker and Windows Hello. Microsoft requires this module before upgrading. It's why many PCs were rendered un-upgradeable when Windows 11 was announced. Most new CPUs and motherboards have capability for it built into them, but the feature wasn't a guaranteed inclusion prior to the Windows 11 launch.

A hedge fund that was one of the highest-profile victims of the FTX scandal when half its assets were trapped on the collapsed cryptocurrency exchange has decided to close and return its remaining money to investors. From a report: Galois Capital, which last year had been managing about $200mn in assets and was one of the biggest crypto-focused quantitative funds, told investors that it had halted all trading and unwound all its positions as it was no longer viable, according to documents seen by the Financial Times. "Given the severity of the FTX situation, we do not think it is tenable to continue operating the fund both financially and culturally," wrote co-founder Kevin Zhou. "Once again I'm terribly sorry about the current situation we find ourselves in."

The FT revealed in November that Galois, despite pulling out some money, still had about half its assets stuck on FTX when the exchange collapsed. In a situation reminiscent of Lehman Brothers in 2008, hedge funds were left with billions of dollars trapped on the exchange, with many having viewed it as one of the more reputable trading platforms in an often lightly regulated or unregulated industry. As many as 1mn creditors have been identified in FTX's Delaware bankruptcy. Its founder, Sam Bankman-Fried, is due to face trial in October on fraud charges, to which he has pleaded not guilty. Since sending the letter, Galois has sold its claim for approximately 16 cents on the dollar.

Long-time Slashdot reader destinyland writes: Meta announced a new $11.99-a-month subscription service on Sunday (or $14.99-a-month for Android and iOS). For your money you mainly get the privilege of authenticating your own account with a government ID, so that it can then display the official "verified" badge. (Accounts must have a prior posting history, with account holders verified to be at least 18 years old.)

Meta promises they won't change already-verified Facebook and Instagram accounts — at least, not "as we test and learn." But they immediately follow that sentence by warning that in the longer-term they're "evolving the meaning" of verification, aiming to making everyone want to subscribe. Meta calls this "expanding access."

Paying subscribers will also get:

— Protection from account impersonation (at a higher level that's apparently not made available to non-paying members), including "proactive account monitoring".

— "Help when you need it with access to a real person for common account issues."

— Exclusive "stickers" for Facebook and Instagram Stories and Facebook Reels, plus 100 free Facebook "stars" each month "so you can show your support for other creators."


But most importantly, Meta is also promising to grant "increased visibility and reach" to paying members, promising "prominence" in parts of the service (including search, recommendations, and in comments). Although a footnote warns this may vary — depending on what you're trying to post about — and all content "will be treated according to our existing guidelines for recommendations on Instagram or Facebook and our Content Guidelines."

George Takei once calculated roughly 80% of your friends never see the things you post on Facebook. But now Facebook is deliberately evolving into a two-tiered system where some will always be relegated to less-likely-to-be-seen status, always outshined by wealthier friends with $144 a year to spend on upgrading their Facebook accounts.

The internet already has a two-tiered system for news, where the best news articles are only available to those with the funds to climb over multiple paywalls. But now even the lower tier of discourse — all that non-journalistic content floating around Facebook — will transform from a pool of burbling anger and misinformation into something worse. It's like Facebook's algorithm went from promoting just the most divisive content to promoting content from whoever most desires to foist their ideas onto other people. This may not end well.

Is it just me, or does this seem like a desperate grab for money?

— They're monetizing Meta's inability to stop account impersonators.

— Their announcement admits that "access to account support" remains a top request of their creators. Yet paying members are apparently more likely to get it than non-paying members. Maybe that can be their new marketing slogan. "Help when you need it — sold separately."

— This is happening. It becomes available for purchase this week on Instagram or Facebook in Australia and New Zealand.

Slashdot reader John Smith 2294 is an IT consultant and system administrator "who started in the days of DEC VAX/VMS," now maintaining networks for small to medium businesses and non-profits. And they're sharing a concern with Slashdot.

"I object to Windows 11 insisting on an outlook.com / Microsoft Account OS login." Sure there are workarounds, but user action or updates can undo them. So I will not be using Windows 11 for science or business any more.... I will be using Win10 refurbs for as long as they are available, and then Mac Mini refurbs and Linux. My first Linux Mint user has been working happily for two months now and I have not heard a word from them.

So, as an IT Admin responsible for business or education networks of 20 users or more, will you be using Windows 11 on your networks or, like me, is this the end of the road for Windows for you too?
I'd thought their concern would be about Windows is sending user data to third parties. But are these really big enough reasons for system adminstrators to be avoiding Windows 11 altogether?

Share your thoughts and experiences in the comments. Should production networks avoid Windows 11?

"IBM is the latest tech giant to unveil its own "AI supercomputer," this one composed of a bunch of virtual machines running within IBM Cloud," reports the Register: The system known as Vela, which the company claims has been online since May last year, is touted as IBM's first AI-optimized, cloud-native supercomputer, created with the aim of developing and training large-scale AI models. Before anyone rushes off to sign up for access, IBM stated that the platform is currently reserved for use by the IBM Research community. In fact, Vela has become the company's "go-to environment" for researchers creating advanced AI capabilities since May 2022, including work on foundation models, it said.

IBM states that it chose this architecture because it gives the company greater flexibility to scale up as required, and also the ability to deploy similar infrastructure into any IBM Cloud datacenter around the globe. But Vela is not running on any old standard IBM Cloud node hardware; each is a twin-socket system with 2nd Gen Xeon Scalable processors configured with 1.5TB of DRAM, and four 3.2TB NVMe flash drives, plus eight 80GB Nvidia A100 GPUs, the latter connected by NVLink and NVSwitch. This makes the Vela infrastructure closer to that of a high performance compute site than typical cloud infrastructure, despite IBM's insistence that it was taking a different path as "traditional supercomputers weren't designed for AI."

It is also notable that IBM chose to use x86 processors rather than its own Power 10 chips, especially as these were touted by Big Blue as being ideally suited for memory-intensive workloads such as large-model AI inferencing.
Thanks to Slashdot reader guest reader for sharing the story.

There may soon come a time when your car "also serves as the hub of your personal power plant," writes the Washington Post's climate columnist. And then they tell the story of a New Mexico man named Nate Graham who connected a power strip and a $150 inverter to his Chevy Bolt EV during a power outage: The Bolt's battery powered his refrigerator, lights and other crucial devices with ease. As the rest of his neighborhood outside Albuquerque languished in darkness, Graham's family life continued virtually unchanged. "It was a complete game changer making power outages a nonissue," says Graham, 35, a manager at a software company. "It lasted a day-and-a-half, but it could have gone much longer." Today, Graham primarily powers his home appliances with rooftop solar panels and, when the power goes out, his Chevy Bolt. He has cut his monthly energy bill from about $220 to $8 per month. "I'm not a rich person, but it was relatively easy," says Graham "You wind up in a magical position with no [natural] gas, no oil and no gasoline bill."

Graham is a preview of what some automakers are now promising anyone with an EV: An enormous home battery on wheels that can reverse the flow of electricity to power the entire home through the main electric panel. Beyond serving as an emissions-free backup generator, the EV has the potential of revolutionizing the car's role in American society, transforming it from an enabler of a carbon-intensive existence into a key step in the nation's transition into renewable energy.
Some crucial context from the article:

• Since 2000, the number of major outages in America's power grid "has risen from less than two dozen to more than 180 per year, based on federal data, the Wall Street Journal reports... Residential electricity prices, which have risen 21 percent since 2008, are predicted to keep climbing as utilities spend more than $1 trillion upgrading infrastructure, erecting transmission lines for renewable energy and protecting against extreme weather."

• About 8% of U.S. homeowners have installed solar panels, and "an increasing number are adding home batteries from companies such as LG, Tesla and Panasonic... capable of storing energy and discharging electricity."

• Ford's "Lightning" electrified F-150 "doubles as a generator... Instead of plugging appliances into the truck, the truck plugs into the house, replacing the grid."

• "The idea is companies like Sunrun, along with utilities, will recruit vehicles like the F-150 Lightning to form virtual power plants. These networks of thousands or millions of devices can supply electricity during critical times."

"The United States on Friday called off the search for two of the unidentified flying objects that the military shot out of the sky this month," reports the New York Times.

NBC News adds that "The end of recovery efforts could mean the country may never know what, exactly, the objects were, how they were propelled, and where they came from." The conclusion applies to airborne objects shot down by U.S. fighter jets Feb. 10 near Deadhorse, Alaska, and Feb. 12 over Lake Huron, off the coast of Michigan. "The U.S. military, federal agencies, and Canadian partners conducted systematic searches of each area using a variety of capabilities, including airborne imagery and sensors, surface sensors and inspections, and subsurface scans, and did not locate debris," the command said. Efforts in Deadhorse were hampered by Arctic conditions and sea ice instability, it said.

The recommendation does not cover the Feb. 4 takedown of what the United States has described as a Chinese spy balloon off the coast of South Carolina. Military officials said recovery efforts in the Atlantic, which ended Thursday, were successful, and recovered items were taken to an FBI lab "for counterintelligence exploitation," according to the statement Friday.... One other incident involving the takedown of an airborne object took place in Canadian airspace Feb. 11 and is the purview of Canadian authorities.

The Biden administration announced Monday it was forming an interagency group to address the recent cluster and future unidentified objects.
The New York Times includes this response from National Security Council spokesman John F. Kirby: Asked if the Biden administration overreacted in shooting down the objects or had any regrets, Mr. Kirby said the craft were at altitudes that could affect civilian aircraft and could have flown over military spaces.

Scientists from China's Hebei University of Science and Technology have developed an ice-melting additive for asphalt that could remain active for years. New Atlas reports: [The researchers started] out by developing a chloride-free acetate-based salt. Such salts are considerably less environmentally harmful than chlorides, they're less corrosive to steel and other materials, plus they work at lower temperatures. The researchers proceeded to mix the salt with a surfactant, silicon dioxide, sodium bicarbonate and blast furnace slag (which has also been used in salt-proof concrete), resulting in a fine powder. Particles of that powder were then coated with a polymer solution, producing microcapsules. Finally, the scientists replaced some of the mineral filler in a conventional asphalt mixture with those capsules.

When the special asphalt was tested on the off-ramp of a highway, it was found not only to continuously melt the snow that fell upon it, but also to lower the freezing point of water from 0C (32F) down to -21C (-6F). What's more, based on lab tests, the researchers estimate that a 5-cm (2-in)-thick slab of the pavement would continue to release its salt capsules for seven to eight years, keeping the road clear that whole time. The study was recently published in the journal ACS Omega.

According to The Register, Google has been paying Apple a portion of search revenue generated by people using Google Chrome on iOS. From the report: This is one of the aspects of the relationship between the two tech goliaths that currently concerns the UK's Competition and Markets Authority (CMA). Though everyone knows Google pays Apple, Samsung, and other manufacturers billions of dollars to make its web search engine the default on devices, it has not been reported until now that the CMA has been looking into Chrome on iOS and its role in a search revenue sharing deal Google has with Apple. The British competition watchdog is worried that Google's payments to Apple discourage the iPhone maker from competing with Google. Substantial payments for doing nothing incentivize more of the same, it's argued. This perhaps explains why Apple, though hugely profitable, has not launched a rival search engine or invested in the development of its Safari browser to the point that it could become a credible challenger to Chrome.

Having Google pay Apple "a significant share of revenue from Google Search traffic" passing through its own Chrome browser on iOS is difficult to explain. Apple does not provide any obvious value to people seeking to use Google Search within Google Chrome. One attempt to explain the arrangement can be found in an antitrust lawsuit filed on December 27, 2021, and subsequently amended [PDF] on March 29, 2022. The complaint, filed by the Alioto Law Firm in San Francisco, claims Apple has been paid for the profits it would have made if it had competed with Google, without the cost and challenge of doing so. "Because more than half of Google's search business was conducted through Apple devices, Apple was a major potential threat to Google, and that threat was designated by Google as 'Code Red,'" the complaint contends. "Google paid billions of dollars to Apple and agreed to share its profits with Apple to eliminate the threat and fear of Apple as a competitor."

These alleged revenue sharing arrangements -- which are known in detail only to a limited number of people and have yet to be fully disclosed -- have been noted by the UK CMA as well as the US Justice Department, which along with eleven US States, filed an antitrust complaint against Google on October 20, 2020. Reached by phone, attorney Joseph M. Alioto, who filed the private antitrust lawsuit, told The Register it would not surprise him to learn that Google has been paying Apple for search revenue derived from Chrome. He said Google's deal with Apple, which began at $1 billion per year, reached as high as $15 billion annually in 2021. "The division of the market is per se illegal under the antitrust laws," said Alioto. Apple and Google are currently trying to have the case dismissed citing lack of evidence of a horizontal agreement between the two companies, and other supposed deficiencies.

An anonymous reader quotes a report from TechCrunch: Australian software giant Atlassian and Envoy, a startup that provides workplace management services, were at loggerheads on Thursday over a data breach that exposed the data of thousands of Atlassian employees. As first reported by Cyberscoop, a hacking group known as SiegedSec leaked data on Telegram this week that it claimed to have stolen from Atlassian. This data includes the names, email addresses, work departments and phone numbers of approximately 13,200 Atlassian employees, along with floor plans of Atlassian offices located in San Francisco and Sydney, Australia.

Atlassian was quick to point the finger of blame for the breach at Envoy, which the Sydney-headquartered company uses to organize its office spaces. "On February 15, 2023, we learned that data from Envoy, a third-party app that Atlassian uses to coordinate in-office resources, was compromised and published," Atlassian spokesperson Megan Sutton said in a statement shared with TechCrunch. "Atlassian product and customer data is not accessible via the Envoy app and therefore not at risk." Envoy, however, was just as quick to rebuff Atlassian's claims. Envoy spokesperson April Marks told TechCrunch that the startup is "not aware of any compromise to our systems," adding that initial research had shown that "a hacker gained access to an Atlassian employee's valid credentials to pivot and access the Atlassian employee directory and office floor plans held within Envoy's app."

Soon after the startup's denial, Atlassian changed its stance to align more closely with Envoy. Atlassian's Sutton told TechCrunch that the company's internal investigation since revealed that attackers had actually compromised Atlassian data from the Envoy app "using an Atlassian employee's credentials that had been mistakenly posted in a public repository by the employee." "As such, the hacking group had access to data visible via the employee account which included the published office floor plans and public Envoy profiles of other Atlassian employees and contractors," Sutton added. "The compromised employee's account was promptly disabled eliminating any further threat to Atlassian's Envoy data. Atlassian product and customer data is not accessible via the Envoy app and therefore not at risk." In a statement to TechCrunch, Envoy's Marks ruled out a breach on its end: "We found evidence in the logs of requests that confirms the hackers obtained valid user credentials from an Atlassian employee account and used that access to download the affected data from Envoy's app."