You are here

Agreguesi i feed

Frostbyte10 Bugs Put Thousands of Refrigerators At Major Grocery Chains At Risk

Slashdot - Mër, 03/09/2025 - 2:02pd
An anonymous reader quotes a report from The Register: Ten vulnerabilities in Copeland controllers, which are found in thousands of devices used by the world's largest supermarket chains and cold storage companies, could have allowed miscreants to manipulate temperatures and spoil food and medicine, leading to massive supply-chain disruptions. The flaws, collectively called Frostbyte10, affect Copeland E2 and E3 controllers, used to manage critical building and refrigeration systems, such as compressor groups, condensers, walk-in units, HVAC, and lighting systems. Three received critical-severity ratings. Operational technology security firm Armis found and reported the 10 bugs to Copeland, which has since issued firmware updates that fix the flaws in both the E3 and the E2 controllers. The E2s reached their official end-of-life in October, and affected customers are encouraged to move to the newer E3 platform. Upgrading to Copeland firmware version 2.31F01 mitigates all the security issues detailed here, and the vendor recommends patching promptly. In addition to the Copeland updates, the US Cybersecurity and Infrastructure Security Agency (CISA) is also scheduled to release advisories today, urging any organization that uses vulnerable controllers to patch immediately. Prior to these publications, Copeland and Armis execs spoke exclusively to The Register about Frostbyte10, and allowed us to preview an Armis report about the security issues. "When combined and exploited, these vulnerabilities can result in unauthenticated remote code execution with root privileges," it noted. [...] To be clear: there is no indication that any of these vulnerabilities were found and exploited in the wild before Copeland issued fixes. However, the manufacturer's ubiquitous reach across retail and cold storage makes it a prime target for all manner of miscreants, from nation-state attackers looking to disrupt the food supply chain to ransomware gangs looking for victims who will quickly pay extortion demands to avoid operational downtime and food spoilage.

Read more of this story at Slashdot.

Chrome Increases Its Overwhelming Market Share, Now Over 70%

Slashdot - Mër, 03/09/2025 - 1:20pd
Chrome has extended its dominance in the browser wars, surpassing 70% market share on desktops while Edge, Safari, Firefox, and Opera trail far behind. Neowin reports: According to [Statcounter], in August 2025, Chrome kept on increasing its overwhelming market share, which is now above the 70% mark (70.25%, to be precise) in the desktop browser market. The gap between Chrome and its closest competitor, Microsoft Edge, is immense, with Edge holding just 11.8% (+0.01 points over the previous month). Apple's Safari is third with 6.34% (+1.04 points); Firefox has 4.94% (-0.36 points); and Opera is fifth with a modest 2.06% market share (-0.13 points). Things look similar on the mobile side of the market, with Google Chrome having 69.15% (+1.92 points) and Safari being second with 20.32% (-2.2 points). Samsung Internet is third with 3.33% (-0.17 points). As for Microsoft Edge, its mobile share is only 0.59% (+0.06 points). The findings can be found here.

Read more of this story at Slashdot.

Linux Network Security 2025: Vital Role of VPNs and WireGuard Protocols

LinuxSecurity.com - Mar, 02/09/2025 - 5:49md
Why VPNs Still Matter for Linux UsersLinux has a reputation for strong security, but network security is where the gaps show. The OS gives you a solid base, yet the traffic leaving your machine can still be watched, intercepted, or abused. That's where a VPN comes in. It shields your activity, keeps communication private, strengthens data protection, and provides a way around the surveillance and restrictions built into the modern internet.

Exploring Open Source Intelligence (OSINT) Techniques And Tools For Cybersecurity Applications

LinuxSecurity.com - Mar, 02/09/2025 - 1:38md
Open Source Intelligence (OSINT) is the practice of collecting information from published or publicly available sources for intelligence purposes.

next-20250902: linux-next

Kernel Linux - Mar, 02/09/2025 - 7:29pd
Version:next-20250902 (linux-next) Released:2025-09-02

85% of College Students Report AI Use

Slashdot - Mar, 02/09/2025 - 4:00pd
College students have integrated generative AI into their academic routines at an unprecedented scale as 85% report usage for coursework in the past year, according to new Inside Higher Ed survey data. The majority employ AI tools for brainstorming ideas, seeking tutoring assistance, and exam preparation rather than wholesale academic outsourcing. Only 25% admitted using AI to complete assignments entirely, while 19% generated full essays. Students overwhelmingly reject institutional policing approaches, with 53% favoring education on ethical AI use over detection software deployment. Despite widespread adoption, 35% of respondents report no change in their perception of college value, while 23% view their degrees as more valuable in the AI era.

Read more of this story at Slashdot.

US Tourism Suffers 8.2% Decline

Slashdot - Mar, 02/09/2025 - 2:15pd
International tourism to the United States faces an unprecedented 8.2% decline in 2025, with the World Travel and Tourism Council projecting a $12.5 billion loss in visitor spending -- the only decline among 184 economies analyzed. Canadian visitors, traditionally comprising 28% of international arrivals, have dropped by approximately 25% through July. Seattle tour operators report 30-50% fewer Canadian customers with many explicitly citing recent tariff policies and political rhetoric as deterrents. The newly implemented $250 "visa integrity fee" for certain countries compounds existing concerns about immigration policies and National Guard deployments in major cities. Tourism Economics now projects full recovery to pre-pandemic levels won't occur until 2029, three years later than initially forecast.

Read more of this story at Slashdot.

Salesforce CEO Says AI Enabled Him To Cut 4,000 Jobs

Slashdot - Mar, 02/09/2025 - 1:13pd
An anonymous reader shares a report: Speaking to The Logan Bartlett Show on Friday, Salesforce CEO Marc Benioff said the use of AI agents had enabled him to "rebalance" his headcount in the customer support division by trimming 4,000 jobs. "I've reduced it from 9,000 head to about 5,000 because I need less heads," Benioff said. Benioff called the first eight months of 2025, during which an estimated 10,000 jobs have been lost to AI, "eight of the most exciting months of my career." "There were more than 100 million leads that we have not called back at Salesforce in the last 26 years because we have not had enough people," Benioff said. "We just couldn't call them back. But we now have an agentic sales that is calling back every person that contacts us."

Read more of this story at Slashdot.

EU To Boost Satellite Defences Against GPS Jamming, Defence Commissioner Says

Slashdot - Hën, 01/09/2025 - 9:15md
An anonymous reader shares a report: The European Union will deploy additional satellites in low Earth orbit to strengthen resilience against GPS interferences and will improve capabilities to detect it, EU Defence Commissioner Andrius Kubilius said on Monday. His remarks followed an incident on Sunday in which the GPS system aboard European Commission President Ursula von der Leyen's aircraft was jammed en route to Bulgaria. Bulgarian authorities suspect the jamming was due to due to interference by Russia, an EU spokesperson said.

Read more of this story at Slashdot.

The Age of Cheap Online Shopping is Ending

Slashdot - Hën, 01/09/2025 - 8:18md
The century-old duty-free import exemption that transformed American online shopping has ended, The Atlantic argues, closing a loophole that allowed packages valued under $800 to enter the United States without tariffs. The de minimis threshold, raised from $200 in 2016, processed millions of daily shipments directly from overseas sellers to American consumers. China lost access earlier this year; the exemption now terminates for all countries. Platforms including Shein, Temu, and marketplace sellers on Amazon, Etsy, and eBay built business models around direct shipping from manufacturing hubs in Asia and elsewhere. Import duties will apply to all international packages regardless of value, with tariffs reaching 50% for some countries. The policy shift affects everything from $30 specialty faucet parts shipped from Britain to handmade crafts from India, fundamentally altering the economics of cross-border e-commerce that emerged over the past decade.

Read more of this story at Slashdot.

Azure Budget Alerts Go Berserk After Microsoft Account Migration Misfire

Slashdot - Hën, 01/09/2025 - 7:15md
An anonymous reader shares a report: Some Microsoft Azure customers have had a worrying few days after a problematic account migration caused forecast costs for the cloud service to skyrocket, triggering budget alerts. An alarmed Register reader got in touch after receiving warnings from Azure's automated systems that they had significantly exceeded their budgets, and a glance at Microsoft's support forums indicates their issue was not isolated. The problem was that costs had suddenly ramped up. One user, with a budget threshold of $85, received an automated alert indicating that their spend was forecast to reach $1,027. Another said: "We're actively seeing the same issue, costs have blown up by a crazy amount. No official notice or announcement from Microsoft either, it's appalling."

Read more of this story at Slashdot.

Americans Are Having Less Sex Than Ever

Slashdot - Hën, 01/09/2025 - 6:15md
Americans are having a record low amount of sex -- even less than they did during the Covid-19 pandemic -- according to a new study led by researchers at the Institute for Family Studies. WSJ: This continues the downward shift in sexual activity that has been worrying sociologists and psychologists for decades. For the report, called "The Sex Recession," researchers at the IFS analyzed the data on sex and intimacy in the latest General Social Survey produced by NORC at the University of Chicago, which was collected in 2024 and released in May. They found that just 37% of people age 18-64 reported having sex at least once a week, down from 55% in 1990. The decline is even more striking for young adults: Almost a quarter of people age 18-29, or 24%, said they had not had sex in the past year; this is twice as many as in 2010. Much has been written in recent years about the trend of young people having less sex, attributed to everything from stunted social skills to a rise in internet pornography. Yet the IFS study shows that the same trend holds true for people up to the age of 64, of all sexual orientations, both married and single. (After age 64, there was no significant change in the amount of sex people have, largely because this group reports having sex less frequently to begin with, the researchers said.)

Read more of this story at Slashdot.

'Why Do Waymos Keep Loitering in Front of My House?'

Slashdot - Hën, 01/09/2025 - 5:12md
Waymo robotaxis are repeatedly selecting identical parking spots in front of specific Los Angeles and Arizona homes between rides, puzzling residents who document the same vehicles returning to precise locations daily. The company states its vehicles choose parking based on local regulations, existing vehicle distribution, and proximity to high-demand areas but cannot explain the algorithmic specificity. Carnegie Mellon autonomous vehicle expert Phil Koopman attributes the behavior to machine learning systems optimizing for specific spots without variation. Waymo said it had received neighbor complaints and has designated certain locations as no-parking zones for its fleet. The vehicles comply with three-hour parking limits, according to Los Angeles Department of Transportation regulations, governing commercial passenger vehicles under 22 feet.

Read more of this story at Slashdot.

Our Preoccupation With Protein Intake

Slashdot - Hën, 01/09/2025 - 4:03md
A review of published meta-analyses examining protein supplementation found no evidence supporting intake beyond 1.6 grams per kilogram of body weight daily, according to an analysis by cardiologist Eric Topol. The review examined multiple randomized controlled trials encompassing thousands of participants. The most widely cited Morton study, which included 1,863 participants across 49 trials, showed no statistically significant benefit at higher protein levels, with a p-value of 0.079. Recent research from Washington University identified the essential amino acid leucine as activating mTOR in macrophages, promoting atherosclerosis progression. The mechanism was demonstrated in both mouse models and human studies measuring circulating monocyte changes following acute high-protein challenges increasing dietary protein from 22% to 50% of energy intake. Current USDA data indicates 55% of American men and 35% of women already exceed the 0.8 g/kg/day recommendation from the National Academy of Medicine. The protein supplement industry, exemplified by David bars containing 28 grams of protein in 150 calories using a modified plant fat called EPG, projects $180 million in 2025 sales.

Read more of this story at Slashdot.

Blizzard's 'Diablo' Devs Unionize. There's Now 3,500 Unionized Microsoft Workers

Slashdot - Hën, 01/09/2025 - 1:34md
PC Gamer reports: The Diablo team is the next in line to unionize at Blizzard. Over 450 developers across multiple disciplines have voted to form a union under the Communications Workers of America (CWA), and they're now the fourth major Blizzard team to do so... A wave of unions have formed at Blizzard in the last year, including the World of Warcraft, Overwatch, and Story and Franchise Development teams. Elsewhere at Microsoft, Bethesda, ZeniMax Online Studios and ZeniMax QA testers have also unionized... The CWA says over 3,500 Microsoft workers have now organized to fight for fair compensation, job security, and improved working conditions. CWA is America's largest communications and media labor union, and in a statement, local 9510 president Jason Justice called the successful vote "part of a much larger story about turning the tide in an industry that has long overlooked its labor. Entertainment workers across film, television, music, and now video games are standing together to have a seat at the table. The strength of our movement comes from that solidarity." And CWA local 6215 president Ron Swaggerty said "Each new organizing effort adds momentum to the nationwide movement for video game worker power." "What began as a trickle has turned into an avalanche," writes the gaming news site Aftermath, calling the latest vote "a direct result of the union neutrality deal Microsoft struck with CWA in 2022 when it was facing regulatory scrutiny over its $68.7 billion purchase of Activision Blizzard." We've come a long way since small units at Raven and Blizzard Albany fended off Activision Blizzard's pre-acquisition attempts at union busting in 2022 and 2023, and not a moment too soon: Microsoft's penchant for mass layoffs has cut some teams to the bone and left others warily counting down the days until their heads land on the chopping block. This new union, workers hope, will act as a bulwark... [B]ased on preliminary conversations with prospective members, they can already hazard a few guesses as to what they'll be arm-wrestling management over at the bargaining table: pay equity, AI, crediting, and remote work.

Read more of this story at Slashdot.

Linux Rootkits: Detecting, Preventing, and Surviving an Attack

LinuxSecurity.com - Hën, 01/09/2025 - 1:00md
Let's talk about a threat that's smart, sneaky, and dangerous to your Linux systems: rootkits. If you've ever heard the term tossed around and wondered what a rootkit is and why it's such a headache, you're in the right place. These are not your usual malware nuisances ''they're tools that let attackers dig into a system, stay hidden for the long game, and potentially wreak havoc without leaving many breadcrumbs. For Linux admins and infosec pros, rootkits aren't just pests; they're an adversary that requires awareness, vigilance, and a specific approach to deal with.

Lawsuit Says Amazon Prime Video Misleads When You 'Buy' a Long-Term Streaming Rental

Slashdot - Hën, 01/09/2025 - 9:34pd
"Typically when something is available to "buy," ownership of that good or access to that service is offered in exchange for money," writes Ars Technica. "That's not really the case, though, when it comes to digital content." Often, streaming services like Amazon Prime Video offer customers the options to "rent" digital content for a few days or to "buy" it. Some might think that picking "buy" means that they can view the content indefinitely. But these purchases are really just long-term licenses to watch the content for as long as the streaming service has the right to distribute it — which could be for years, months, or days after the transaction. A lawsuit recently filed against Prime Video challenges this practice and accuses the streaming service of misleading customers by labeling long-term rentals as purchases. The conclusion of the case could have implications for how streaming services frame digital content... [The plaintiff's] complaint stands a better chance due to a California law that took effect in January banning the selling of a "digital good to a purchaser with the terms 'buy,' 'purchase,' or any other term which a reasonable person would understand to confer an unrestricted ownership interest in the digital good, or alongside an option for a time-limited rental." There are some instances where the law allows digital content providers to use words like "buy." One example is if, at the time of transaction, the seller receives acknowledgement from the customer that the customer is receiving a license to access the digital content; that they received a complete list of the license's conditions; and that they know that access to the digital content may be "unilaterally revoked...." The case is likely to hinge on whether or not fine print and lengthy terms of use are appropriate and sufficient communication. [The plaintiff]'s complaint acknowledges that Prime Video shows relevant fine print below its "buy" buttons but says that the notice is "far below the 'buy movie' button, buried at the very bottom" of the page and is not visible until "the very last stage of the transaction," after a user has already clicked "buy." Amazon is sure to argue that "If plaintiff didn't want to read her contract, including the small print, that's on her," says consumer attorney Danny Karon. But he tells Ars Technica "I like plaintiff's chances. A normal consumer, after whom the California statute at issue is fashioned, would consider 'buy' or 'purchase' to involve a permanent transaction, not a mere rental... If the facts are as plaintiff alleges, Amazon's behavior would likely constitute a breach of contract or statutory fraud."

Read more of this story at Slashdot.

First 'AI Music Creator' Signed by Record Label. More Ahead, or Just a Copyright Quandry?

Slashdot - Hën, 01/09/2025 - 5:34pd
"I have no musical talent at all," says Oliver McCann. "I can't sing, I can't play instruments, and I have no musical background at all!" But the Associated Press describes 37-year-old McCann as a British "AI music creator" — and last month McCann signed with an independent record label "after one of his tracks racked up 3 million streams, in what's billed as the first time a music label has inked a contract with an AI music creator." McCann is an example of how ChatGPT-style AI song generation tools like Suno and Udio have spawned a wave of synthetic music, a movement most notably highlighted by a fictitious group, Velvet Sundown, that went viral even though all its songs, lyrics and album art were created by AI. Experts say generative AI is set to transform the music world. However, there are scant details, so far, on how it's impacting the $29.6 billion global recorded music market, which includes about $20 billion from streaming. The most reliable figures come from music streaming service Deezer, which estimates that 18% of songs uploaded to its platform every day are purely AI generated, though they only account for a tiny amount of total streams, hinting that few people are actually listening. Other, bigger streaming platforms like Spotify haven't released any figures on AI music... "It's a total boom. It's a tsunami," said Josh Antonuccio, director of Ohio University's School of Media Arts and Studies. The amount of AI generated music "is just going to only exponentially increase" as young people grow up with AI and become more comfortable with it, he said. [Antonuccio says later the cost of making a hit record "just keeps winnowing down from a major studio to a laptop to a bedroom. And now it's like a text prompt — several text prompts." Though there's a lack of legal clarity over copyright issues.] Generative AI, with its ability to spit out seemingly unique content, has divided the music world, with musicians and industry groups complaining that recorded works are being exploited to train AI models that power song generation tools... Three major record companies, Sony Music Entertainment, Universal Music Group and Warner Records, filed lawsuits last year against Suno and Udio for copyright infringement. In June, the two sides also reportedly entered negotiations that could go beyond settling the lawsuits and set rules for how artists are paid when AI is used to remix their songs. GEMA, a German royalty collection society, has sued Suno, accusing it of generating music similar to songs like "Mambo No. 5" by Lou Bega and "Forever Young" by Alphaville. More than 1,000 musicians, including Kate Bush, Annie Lennox and Damon Albarn, released a silent album to protest proposed changes to U.K. laws on AI they fear would erode their creative control. Meanwhile, other artists, such as will.i.am, Timbaland and Imogen Heap, have embraced the technology. Some users say the debate is just a rehash of old arguments about once-new technology that eventually became widely used, such as AutoTune, drum machines and synthesizers.

Read more of this story at Slashdot.

400 'Tech Utopian' Refuges Consider New Crypto-Friendly State

Slashdot - Hën, 01/09/2025 - 2:50pd
"Nearly 400 students, many of them entrepreneurs, have so far made the journey to Forest City to study everything from coding to unconventional theories on statehood," reports Bloomberg. "They're building crypto projects, fine-tuning their physiques and testing whether a shared ideology — rather than just shared territory — can bind a community." They have descended on Forest City to attend Network School, the brainchild of former Coinbase Inc. executive and "The Network State" author Balaji Srinivasan. In this troubled megaproject once envisaged to house some 50 times its current population, they're conducting a real-life experiment of sorts with Srinivasan's vision of "startup societies" defined less by historical territory than shared beliefs in technology, cryptocurrency and light regulation... Mornings are spent in product sprints and coding sessions; afternoons in seminars exploring topics from the Meiji Restoration to Singapore's statecraft and the mechanics of decentralized governance. Guest lectures double as both technological deep dives and ideological sermons, according to half a dozen students interviewed by Bloomberg. The campus also mirrors Silicon Valley's infatuation with longevity and health, right down to a commercial-grade gym and specially designed workout routines. Students follow a protein-heavy diet... After co-founding DNA testing startup Counsyl in 2008 and serving as its chief technology officer, Srinivasan spent five years at venture capital firm Andreessen Horowitz, first as general partner and then as board partner. He joined Coinbase as CTO in 2018 when the crypto exchange bought a portfolio company he oversaw and left after a little over a year, according to his LinkedIn profile. In a 2013 speech at Y Combinator's Startup School, Srinivasan brought his ideas about what he saw as a fundamental conflict between some modern nation-states and innovation to a wider audience. In the address, he advocated for Silicon Valley's "ultimate exit" from the U.S., which he argued was obsolete and hostile to innovators. In essence: If the society you live in is broken, why not just "opt out" and create a new one? "The Network State: How To Start a New Country," published in 2022, expanded on Srinivasan's "exit" concept to outline how online, ideologically aligned communities can use crypto and digital tools to form new, decentralized states. A network state can be geographically dispersed and bound together by the internet and blockchains, he says, and the aim is to gain diplomatic recognition... On the Moment of Zen podcast in September 2023, he outlined how the "Gray Tribe" — entrepreneurs, innovators and thinkers — can retake control of San Francisco from the Blues using a variety of tactics, like allying with local police. The effort would involve gaining control of territory, according to Srinivasan, who didn't advocate for violence. "Elections are just the cherry on the cake," he said. "Elections are just a reflection of your total control of the streets." The cost of attending Network School "starts at $1,500 per month, including lodging and food, for those who opt for a shared room."

Read more of this story at Slashdot.

OpenAI Is Scanning Users' ChatGPT Conversations and Reporting Content To Police

Slashdot - Hën, 01/09/2025 - 1:19pd
Futurism reports: Earlier this week, buried in the middle of a lengthy blog post addressing ChatGPT's propensity for severe mental health harms, OpenAI admitted that it's scanning users' conversations and reporting to police any interactions that a human reviewer deems sufficiently threatening. "When we detect users who are planning to harm others, we route their conversations to specialized pipelines where they are reviewed by a small team trained on our usage policies and who are authorized to take action, including banning accounts," it wrote. "If human reviewers determine that a case involves an imminent threat of serious physical harm to others, we may refer it to law enforcement." The announcement raised immediate questions. Don't human moderators judging tone, for instance, undercut the entire premise of an AI system that its creators say can solve broad, complex problems? How is OpenAI even figuring out users' precise locations in order to provide them to emergency responders? How is it protecting against abuse by so-called swatters, who could pretend to be someone else and then make violent threats to ChatGPT in order to get their targets raided by the cops...? The admission also seems to contradict remarks by OpenAI CEO Sam Altman, who recently called for privacy akin to a "therapist or a lawyer or a doctor" for users talking to ChatGPT. "Others argued that the AI industry is hastily pushing poorly-understood products to market, using real people as guinea pigs, and adopting increasingly haphazard solutions to real-world problems as they arise..." Thanks to long-time Slashdot reader schwit1 for sharing the news.

Read more of this story at Slashdot.

Faqet

Subscribe to AlbLinux agreguesi