Valve shipped its $400 handheld gaming console, the Steam Deck, before all its promised features were ready -- but one of the biggest is now here. From a report: You can now install Windows 10 on a Steam Deck and actually expect it to work because Valve has just released the all-important GPU, Wi-Fi and Bluetooth drivers you'll need to download and play games. Importantly, you'll need to wipe a Steam Deck to do this, there's no dual-boot yet, and Valve says you can only install Windows 10 since the Steam Deck's current BIOS apparently doesn't include firmware TPM support (which Microsoft infamously requires for Windows 11). Speakers and headphone jack don't work yet as there are no audio drivers.

Microsoft appears to be adding a tabbed interface to the top of File Explorer, as Insiders testing the latest Windows 11 preview build have discovered the feature in a hidden state. From a report: First spotted by Windows Insider Rafael Rivera on Twitter, once enabled, tabs will appear along the top of the File Explorer app, allowing users to have multiple folders open in one window. Tabs in File Explorer has been a highly requested feature among the Windows community for years at this point. Microsoft almost delivered the feature via its canceled "Sets" UX, which saw the introduction of tabs in every app window, including File Explorer. But when Sets was killed off, so was the idea of tabs in File Explorer. But now, Tabs in File Explorer appears to be making a return, and it works exactly like you'd expect. This feature is yet to be officially announced by Microsoft, and since this is currently only in the Dev Channel, it's possible that Microsoft could cancel the feature before it ships, though we think that's unlikely.

Last week Nvidia confirmed that it had been the victim of an internal hack, though it claimed no customer information was compromised. Now we're seeing one of the first effects of the hack on end-users: Nvidia GPU driver packages with malware hidden inside. PCWorld: While it was always possible for malefactors to host links pretending to be drivers in the hopes of installing viruses, trojans, and other nasty stuff on a user's PC, this situation is more concerning. The hackers appear to have leaked Nvidia's official code signing certificates, a means by which users (and Microsoft) can verify that a downloaded program comes from the publisher it says it's from. That's allowing files containing a host of popular malware suites to be posted and downloaded, bypassing Windows Defender's built-in executable verification and slipping past anti-virus software. BleepingComputer reports that two now-expired (but still usable) verification codes have been compromised and used to deliver remote access trojans. Another example, using the Nvidia verification to sign a fake Windows driver, was also spotted.

Google appears to have built its own solution for running Windows games on Stadia. Google is planning to detail its Windows "emulator" for Linux next week at the company's Google for Games Developer Summit on March 15th. From a report: Reddit users have spotted a session at the summit that will detail "how to write a Windows emulator for Linux from scratch." The session will be led by Marcin Undak, on Google's Stadia porting platform team, and promises a "detailed overview of the technology behind Google's solution for running unmodified Windows games on Stadia." It appears that Google has built its own Windows emulator for Linux to help developers port games to the service without having to modify titles for Linux. If the emulator runs live on Stadia instead of just testing environments, this could open the door to a lot more games making their way to Stadia in the future

A research center housing a nuclear neutron source facility held at the Kharkiv Institute of Physics and Technology in eastern Ukraine was hit by Russian forces on Sunday, per a report from the state nuclear inspectorate. Motherboard reports: In a release published Sunday evening, the inspectorate called the blast "nuclear terrorism," spelling out a list of damages: a substation, which connects the plant to the electrical grid, on which the plant runs; cables within the facility's cooling system, which effectively prevent the plant from a meltdown; a heating line between structures in the facility; surface damages to the building that houses the structure; and windows across a number of buildings within the installation. "This list of damages is not complete so far. Currently, information on the consequences of the damages is being specified by the personnel," the report reads. An updated report following further inspection located no additional damage this morning.

The Security Service of Ukraine's Kharkiv branch said destruction of the facility could lead to "environmental disaster," the Kyiv Independent reported Sunday. Russian state-owned news agency TASS reported Sunday that the attacks were in fact brought on by Ukraine, a line that has since been debunked. The reactor, known as the NSA "Neutron Source" was built with support from the Illinois-based Argonne National Laboratory in service of an agreement signed between the U.S. and Ukraine at the 2010 Nuclear Security Summit in Washington, D.C. The U.S. invested $73 million in the project, which promised that the Kharkiv Institute of Physics and Technology would be "given the opportunity to build state-of-the-art technology in nuclear research that will contribute to "solving problems of nuclear power industry and extending technical lifetime of nuclear power plants,'" according to a report from the European Union Non-Proliferation Consortium.

Business Insider reports: Serhiy Storchaka, a Ukrainian developer, is the second-most prolific recent contributor to Python and tenth-most prolific of all time, according to Lukasz Langa, the Python Software Foundation's developer in residence, based in Poznan, Poland... Storchaka faced an impossible choice as Russia invaded his country. Like many young male programmers in Ukraine, he decided to stay....

Storchaka lives outside of Konotop, a city in northeastern Ukraine which is occupied by Russian forces. He tweeted on February 26, "Russian tanks were on the road 2km from my house, and Russian armored vehicles were passing by my windows. Most likely, I will find myself in the occupied zone, where the law does not apply...."

Insider was unable to contact Storchaka, but spoke with Langa... [A]s the military crisis worsened on Friday and over the weekend, the Python developer community rallied to help Storchaka's younger family members. Communicating with Storchaka's family through Google Translate, Langa managed to secure temporary housing for Storchaka's niece and best friend, aged 11. They crossed the border to Poland via bus with their mother, and met Langa, who drove over 300km to Warsaw to pick up keys and secure basic necessities for the family.
"Two little 11-year-old girls (my niece and her best friend) are now safe thanks to @llanga," Storchaka tweeted last Monday, adding "My sister and I are immensely grateful." (He'd been especially worried because their town was near one of Ukraine's nuclear power plants, "a strategic target".)

Business Insider points out Storchaka is just one of many Python core developers from Ukraine, and one of many Ukrainians working in its tech sector. Andrew Svetlov, another influential Python developer who specializes in asynchronous networking support, also remains in Ukraine.... Svetlov is in Kyiv, where Russian troops have surrounded the city....

"Neither of them wanted to leave their country, even in the face of the great risk this poses for them," Langa told Insider.

Long-time Slashdot reader theodp writes: Microsoft on Wednesday announced Reading Coach (video), software that allows children to practice reading out loud and receive personalized feedback. Reading Coach will be integrated into Word Online, OneNote, Teams, Forms, and many other places in M365 later this summer.

The Reading Coach announcement comes 15 years after a 2007 paper from Microsoft Research employees that described an Automatic Children's Reading Tutor, which could track children's oral reading against story texts, detect reading miscues, measure the level of reading fluency, diagnose the nature of the miscues, and provide feedback to improve reading skills. The same Microsoft team described in a 2008 paper an implementation of the Automatic Reading Tutor software on a PDA running Windows Mobile 6, which they dubbed 'Reading Coach'.

Microsoft's 2022 Reading Coach comes after the release of read-aloud helper software from other tech giants — Amazon's Reading Sidekick and Google's Read Along. Efforts to use software to help develop early reading skills are hardly new — in 1994, CMU researchers described a NeXT implementation of A Prototype Reading Coach that Listens as part of Project LISTEN — although widespread adoption has proved elusive. But with advances in tech, schools seeking ways to help students catch up on unfinished learning from the pandemic, and 1:1 computing for most students, could things truly be different this time? When the 2022-23 school year comes around, will Microsoft's Reading Coach be a 15-year 'overnight success' with teachers and parents?

Microsoft's latest Windows 11 test build is another substantial one, adding two important features: payment information, and a new security feature called Smart App Control that will watch over new apps and games that you add to your PC. PCWorld reports: Microsoft released Windows 11 Insider Preview Build 22567 for the Dev Channel on Wednesday with other changes, tooâ"including a tweak to Windows Update, so that now you can configure your PC to turn on an update when renewable energy is at its most plentiful. (Remember, code that Microsoft tests within the Dev Channel may make its way to your PC eventually -- or not.)

Asking for credit-card information within Windows isn't that startling, as you've probably already entered payment information into the Microsoft ecosystem either for buying apps or movies on the Microsoft Store app or for making similar purchases via your Xbox. Still, those transactions are normally performed via your Microsoft Account web page, which manages all of that online and behind the scenes. (You can reach them via the Windows 11 Settings > Accounts > Your Microsoft account.) Microsoft considers the additional credit-card info as part of the subscription option it added last month. Now, if your subscription risks falling through because of an expired credit card, Microsoft will alert you. Conceptually, however, it implies that your PC is as much a tool to make purchases as it is to simply work and game.

Another interesting addition is what Microsoft calls Smart App Control, or SAC. Microsoft describes it as a "new security feature for Windows 11 that blocks untrusted or potentially dangerous applications." What those applications are, apparently, is up to Microsoft. And yes, there's always a concern that SAC would flag otherwise innocuous applications that it simply hasn't seen before. But Microsoft is gently easing SAC onto your PC. For one thing, you'll need to perform a clean install to enable it. For another, SAC won't immediately insert itself. Other tweaks and changes include the ability to have Windows update your PC when clean energy is more commonly available (via Microsoft's partners electricityMap or WattTime) and better integration between your Android phone and PC via Windows 11 OOBE (Out of the Box Experience).

Additionally, "Microsoft now offers wider availability of speech packs to improve transcription, the ability to choose a mic for dictation/ transcription, and the ability to mute your speakers by simply clicking the volume icon in the hardware indicator for volume," reports PCWorld.

An anonymous reader quotes a report from The Verge: When will Bungie let Destiny 2 come to Valve's Steam Deck handheld gaming PC? It's looking like the answer is never -- because the soon-to-be Sony subsidiary has published a help page that not only says the game's unsupported, but outright threatens to ban prospective Steam Deck players (via Wario64). The help page has a new section titled "Steam Deck and Destiny 2," which reads: "Destiny 2 is not supported for play on the Steam Deck or on any system utilizing Steam Play's Proton unless Windows is installed and running. Players who attempt to launch Destiny 2 on the Steam Deck through SteamOS or Proton will be unable to enter the game and will be returned to their game library after a short time. Players who attempt to bypass Destiny 2 incompatibility will be met with a game ban."

To be fair, Bungie isn't the only one to reject the Steam Deck without necessarily providing a satisfying explanation -- Epic Games CEO Tim Sweeney explained to me why Fortnite won't get updated for the Steam Deck last month, even though Epic's own Easy Anti-Cheat (EAC) claims game developers can enable it with "just a few clicks." And while both Apex Legends and Elden Ring now fully work on Deck despite using anti-cheat, it's also true that many other top multiplayer games have yet to fully arrive.

A year and a half later, Amazon's Luna cloud gaming service has formally launched in the U.S. for Android, iOS, Chrome OS, macOS and Windows. Engadget reports: The core Luna+ service with over 100 games will normally cost $10 per month, with the kid-friendly Family Channel and Ubisoft+ Channels available for a respective $6 and $18 per month. Amazon hopes to reel in newcomers by dropping the monthly fees of Luna+ and the Family channel to $6 and $3 for anyone who signs up during March. Existing users just have to maintain their subscriptions to lock in that pricing.

The official debut comes alongside some new channels. A Prime Gaming channel, as the name implies, gives Amazon Prime members a free, rotating mix of games. The March selection will include titles like Devil May Cry 5 and Flashback. Pay $5 per month for the Retro Channel and you'll get Capcom and SNK classics like Street Fighter II Hyper Fighting and Metal Slug 3, while a similar outlay for the Jackbox Games Channel provides access to all eight Jackbox Party Pack titles. Luna's latest update also makes it simpler to stream gameplay from a Fire TV device, Mac or Windows PC on Twitch.

An anonymous reader shares a report: Lenovo has dumped a whole bunch of new ThinkPads into the world, and there's some exciting stuff in there. We're getting a brand-new ThinkPad X13s powered by Snapdragon chips, a fifth-generation ThinkPad X1 Extreme with a WQXGA 165Hz screen option, and new additions to the P-series and T-series as well. The news I'm personally most excited about is the screen shape. A few months ago, Lenovo told me that much of its portfolio would be moving to the 16:10 aspect ratio this year. They appear to be keeping their word. Across the board, the new models are 16:10 -- taller and roomier than they were in their 16:9 eras. Some news that's a bit more... intriguing is the all-new ThinkPad X13s, which is the first laptop to feature the Snapdragon 8cx Gen 3 compute platform. Qualcomm made some lofty claims about this platform upon its release, including "60 percent greater performance per watt" over competing x86 platforms and "multi-day battery life." The ThinkPad X13s will run an Arm version of Windows 11, with its x64 app emulation support. The P-series models and Intel T-series models will all be here in April, with prices ranging from $1,399 to $1,419.

Disney World's "Star Wars: Galactic Starcruiser" hotel will be expensive and immersive, writes SFGate. ("For two adults, the starting price is about $5,000. For three adults and one child, it's nearly $6,000.")

And while the hotel doesn't open to paid guests until Tuesday, free previews have already been given to online influencers: Reviews so far are generally positive — particularly praised are the character actors who carry the experience — with a few caveats. Because the hotel itself, called the Halcyon, is supposed to be a luxury cruise ship in space, the biggest complaint is that rooms are small and cramped...

For some, the lack of windows may add to a sense of claustrophobia. Hotel rooms have a digital display showing outer space and no view of the real outside world. Folks needing some fresh air can, however, visit an outdoor communal space called a "climate simulator." Reporters from the YouTube channel Disney Food Blog, which has nearly 800,000 subscribers, were invited to the media preview. In their review of the hotel, they put it thusly: "Disney went all-in on an experience that seemingly puts only the wealthiest guests inside a windowless bunker for two full days."

But most reviewers agreed that guests will be spending minimal time in their room anyway. The two days are packed with lightsaber training, clandestine rendezvous, elaborate entertainment and exploration of the ship. Guests need to download an app for their smartphone to chat with characters on board, receive their missions and learn their storylines. This was the other major drawback: If you're an introvert, this may be the wrong trip for you.

An anonymous reader quotes a report from Ars Technica: [T]he last couple Windows 11 Insider Preview builds have augmented Windows 11's touchscreen capabilities. The build released to Dev channel users last week included new gestures, changes to how snapping windows works when in tablet mode, and a few other improvements. And a new build released today totally overhauls the taskbar for touchscreens.

Windows 11 in its current form adds more space between icons when you're using your device as a tablet, but the new preview goes further. When you're using apps, the taskbar will shrink to a narrow strip across the bottom of the screen: it's still tall enough to show the clock and your network, sound, and battery status icons, but all your pinned apps and other system tray icons are hidden. Swiping up from the bottom of the screen or closing an app window brings up a new, larger version of the taskbar with larger, more finger-friendly icons and spacing. The taskbar disappears again once you've launched your app. "Windows 11 still doesn't have a dedicated Tablet Mode toggle like Windows 10 did," notes Ars. "Instead, the OS relies on signals from your hardware to enable and disable the tablet-centric UI tweaks."

Microsoft MVP Rudy Ooms has discovered that the built-in Windows data wiping functions leave user data behind in the latest versions of Windows 10 and Windows 11. "This error applies to both local and remote wiping of PCs running Windows 10 version 21H2 and Windows 11 version 21H2," reports Tom's Hardware. From the report: Ooms first discovered that there were problems with the disk wipe functionality provided by Microsoft when doing a remote wipe via Microsoft Intune system management. However, he has tested several Windows versions and both local and remote wiping over the weekend to compile the following summary table [embedded in the article]. At the bottom of the table you can see that both Wipe and Fresh Start options appear to work as expected in Windows 10 and 11 version 21H1, but are ineffectual in versions 21H2. Ooms installed and tested these four OSes, with local and remote wipe operations, then checked the results. The most common issue was the leaving behind of user data in a folder called Windows.old on the "wiped" or "fresh start" disk. This is despite Microsoft warning users ahead of the action that "This removes all personal and company data and settings from this device."

In his blog post, Oooms notes that some users might feel assured that their personal data was always stored on a Bitlocker drive. However, when a device is wiped, Bitlocker is removed, and he discovered that the Windows.old folder contained previously encrypted data, now non-encrypted. It was also noted that OneDrive files, which had been marked as "Always Keep on this device" in Windows previously, remained in Windows.old too. Ooms has kindly put together a PowerShell Script to fix this security blunder by Microsoft. One needs to run the script ahead of wiping/resetting your old device. Hopefully Microsoft will step up and fix this faulty behavior in the coming weeks, so you don't need to remember to run third party scripts.

From Mike Melanson's "This Week in Programming" column: The 20th anniversary of .NET is upon us this week and with it, Microsoft is pulling out all the stops in celebration of what it says is "the most loved framework by developers for three years in a row now — 2019, 2020, 2021, according to Stack Overflow's developer survey."

First launched in 2002, .NET is, in some ways, something that Microsoft can roll out as evidence of its changed ways over the years. It went from a company embroiled in a monopoly case just a year before this release, to one that later decided to turn around, mend its former ways, and open source .NET Core. "When Microsoft made another major transformation, this time towards open source, .NET was also at the forefront," Microsoft writes in this week's celebratory blog post. "By 2012, we had fully open-sourced the ASP.NET MVC web framework and were accepting contributions. It was one of Microsoft's first major open-source projects at the time. In 2014, we started to build a cross-platform and open-source .NET on GitHub and were floored at the incredible support and contributions from the open-source community...."

Certainly, in comparison to the Microsoft we once knew, there has been a massive shift in its approach to open source software and openness in general. Indeed, these days, Microsoft is also synonymous with another giant in the world of open source, its now-subsidiary GitHub — as well as the npm Registry and countless other projects. Microsoft has transformed from a company that was once led by a man who said that "Linux is a cancer" to one that has more recently welcomed Linux to the Windows desktop, among numerous other open source endeavors.
The column ends by remembering what it calls "Microsoft 'hot reload' drama" last year — Microsoft's removal of the feature from the .NET SDK repo (and its subsequent return, with an apology). "All that's to say, perhaps all's well that ends well, and we should indeed celebrate 20 years of success with a now open source framework. In the same breath, vigilance may be necessary should we want to celebrate another such anniversary in the future."

An anonymous reader quotes a report from Ars Technica: Hackers aligned with the government of Iran are exploiting the critical Log4j vulnerability to infect unpatched VMware users with ransomware, researchers said on Thursday. Security firm SentinelOne has dubbed the group TunnelVision. The name is meant to emphasize TunnelVision's heavy reliance on tunneling tools and the unique way it deploys them. In the past, TunnelVision has exploited so-called 1-day vulnerabilities -- meaning vulnerabilities that have been recently patched -- to hack organizations that have yet to install the fix. Vulnerabilities in Fortinet FortiOS (CVE-2018-13379) and Microsoft Exchange (ProxyShell) are two of the group's better-known targets. [...] The SentinelOne research shows that the targeting continues and that this time the target is organizations running VMware Horizon, a desktop and app virtualization product that runs on Windows, macOS, and Linux.

Apache Tomcat is an open source Web server that VMware and other enterprise software use to deploy and serve Java-based Web apps. Once installed, a shell allows the hackers to remotely execute commands of their choice on exploited networks. The PowerShell used here appears to be a variant of this publicly available one. Once it's installed, TunnelVision members use it to: Execute reconnaissance commands; Create a backdoor user and adding it to the network administrators group; Harvest credentials using ProcDump, SAM hive dumps, and comsvcs MiniDump; and Download and run tunneling tools, including Plink and Ngrok, which are used to tunnel remote desktop protocol traffic.

The hackers use multiple legitimate services to achieve and obscure their activities. Those services include: transfer.sh, pastebin.com, webhook.site, ufile.io, and raw.githubusercontent.com. People who are trying to determine if their organization is affected should look for unexplained outgoing connections to these legitimate public services.

An anonymous reader quotes a report from Ars Technica: Now that Windows 11's first major post-release update has been issued, Microsoft has started testing a huge collection of new features, UI changes, and redesigned apps in the latest Windows Insider preview for Dev channel users. By and large, the changes are significant and useful -- there's an overhauled Task Manager, folders for pinned apps in the Start menu, the renewed ability to drag items into the Taskbar (as you could in Windows 10), improvements to the Do Not Disturb and Focus modes, new touchscreen gestures, and a long list of other fixes and enhancements.

But tucked away toward the bottom of the changelog is one unwelcome addition: like the Home edition of Windows 11, the Pro version will now require an Internet connection and a Microsoft account during setup. In the current version of Windows 11, you could still create a local user account during setup by not connecting your PC to the Internet -- something that also worked in the Home version of Windows 10 but was removed in 11. That workaround will no longer be available in either edition going forward, barring a change in Microsoft's plans. While most devices do require a sign-in to fully enable app stores, cloud storage, and cross-device sharing and syncing, Windows 11 will soon stand alone as the only major consumer OS that requires account sign-in to enable even basic functionality.

"The OS/2 community is getting close to obtaining a modern browser on their platform," writes Slashdot reader martiniturbide. In an announcement article on Monday, president of the OS/2 Voice community, Roderick Klein, revealed that a public beta of the new Chromium-based Otter Browser will arrive "in the last week of February or the first week of March." XDA Developers reports: OS/2 was the operating system developed jointly by IBM and Microsoft in the late 1980s and early 1990s, with the intended goal of replacing all DOS and Windows-based systems. However, Microsoft decided to focus on Windows after the immense popularity of Windows 3.0 and 3.1, leaving IBM to continue development on its own. IBM eventually stopped working on OS/2 in 2001, but two other companies licensed the operating system to continue where IBM left off -- first eComStation, and more recently, ArcaOS.

BitWise Works GmbH and the Dutch OS/2 Voice foundation started work on Otter Browser in 2017, as it was becoming increasingly difficult to keep an updated version of Firefox available on OS/2 and ArcaOS. Firefox 49 ESR from 2016 is the latest version available, because that's around the time Mozilla started rewriting significant parts of Firefox with Rust code, and there's no Rust compiler for OS/2. Since then, the main focus has been porting Qt 5.0 to OS/2, which includes the QtWebEngine (based on Chromium). This effort also has the side effect of making more cross-platform ports possible in the future.

Microsoft is bringing new touch gestures, Start menu folders, a redesigned Task Manager, and lots more improvements to Windows 11. From a report: A new build of Windows 11 is available to testers today, and it's full of new features that look like they will significantly improve the usability of Windows 11 overall. The new Start menu folders will allow Windows 11 users to customize the pinned section of the Start menu into folders. You drag an app on top of another to create a folder, and you can rearrange apps within folders and remove them. The ability to rename folders is coming in future test builds, but it's good to see more customization on the Start menu, given Windows 11 launched without many ways to tweak the menu design. If you've always been a fan of the gestures in Windows 8, Microsoft is bringing five new touch gestures to Windows 11 soon that will make using tablets a little easier. The first is the ability to swipe up on the taskbar to bring up the Start menu and swipe down to dismiss it again. You'll also be able to swipe between pinned, all apps, and recommended / more on the Start menu. [...] Last but not least, the Task Manager redesign in Windows 11 is now official. It includes a new command bar and a dark theme, alongside an efficiency mode that lets you limit apps from consuming system resources.

An anonymous reader quotes a report from Ars Technica: Here's a fun new feature of Android 13: working virtualization support. Google is building virtualization into Android for its own reasons, but Android developer kdrag0n has commandeered the feature to boot ARM Windows 11 and desktop Linux. The developer even got the Windows version of Doom running, all inside a VM on the Pixel 6. kdrag0n says that Android 13 has "full KVM functionality" at "near-native performance." You need root to enable the functionality, which doesn't support GPU acceleration. The functionality also doesn't support nested virtualization, so while you can now run Android on Windows and Windows on Android, making an infinitely nested OS turducken is out of the question.

This makes for a neat demo that's not at all what Google wants to do with Android's upcoming VM support. Esper's Mishaal Rahman has been meticulously tracking Android's virtualization progress for some time now, and the apparent plan is to someday (maybe in Android 13) use virtual machines as a security and privacy sandbox for various features. Imagine instead of processing sensitive data at the normal app permission level, the data could be processed in a separate OS, so any attackers would have to break through the app security model, then Android, then the hypervisor, then this other, private OS.