news aggregator

BrianFagioli writes: Logitech has confirmed a cybersecurity breach after an intruder exploited a zero-day in a third-party software platform and copied internal data. The company says the incident did not affect its products, manufacturing or business operations, and it does not believe sensitive personal information like national ID numbers or credit card data were stored in the impacted system. The attacker still managed to pull limited information tied to employees, consumers, customers and suppliers, raising fair questions about how long the zero-day existed before being patched. Logitech brought in outside cybersecurity firms, notified regulators and says the incident will not materially affect its financial results. The company expects its cybersecurity insurance policy to cover investigation costs and any potential legal or regulatory issues. Still, with zero-day attacks increasing across the tech world, even established hardware brands are being forced to acknowledge uncomfortable weaknesses in their internal systems.

Read more of this story at Slashdot.

According to CNBC, JPMorgan Chase has secured deals ensuring it will get paid by the fintech firms responsible for nearly all the data requests made by third-party apps connected to customer bank accounts. From the report: The bank has signed updated contracts with the fintech middlemen that make up more than 95% of the data pulls on its systems, including Plaid, Yodlee, Morningstar and Akoya, according to JPMorgan spokesman Drew Pusateri. "We've come to agreements that will make the open banking ecosystem safer and more sustainable and allow customers to continue reliably and securely accessing their favorite financial products," Pusateri said in a statement. "The free market worked." The milestone is the latest twist in a long-running dispute between traditional banks and the fintech industry over access to customer accounts. For years, middlemen like Plaid paid nothing to tap bank systems when a customer wanted to use a fintech app like Robinhood to draw funds or check balances. [...] After weeks of negotiations between JPMorgan and the middlemen, the bank agreed to lower pricing than it originally proposed, and the fintech middlemen won concessions regarding the servicing of data requests, according to people with knowledge of the talks. Fintech firms preferred the certainty of locking in data-sharing rates because it is unclear whether the current CFPB, which is in the process of revising the open-banking rule, will favor banks or fintech companies, according to a venture capital investor who asked for anonymity to discuss his portfolio companies. The bank and the fintech firms declined to disclose details about their contracts, including how much the middlemen agreed to pay and how long the deals are in force.

Read more of this story at Slashdot.

Leaving buyers to cry, AI AI AI

If you haven't noticed, DRAM memory has gotten a lot more expensive in recent weeks. …

An anonymous reader quotes a report from Ars Technica: On Thursday evening, OpenAI CEO Sam Altman posted on X that ChatGPT has started following custom instructions to avoid using em dashes. "Small-but-happy win: If you tell ChatGPT not to use em-dashes in your custom instructions, it finally does what it's supposed to do!" he wrote. The post, which came two days after the release of OpenAI's new GPT-5.1 AI model, received mixed reactions from users who have struggled for years with getting the chatbot to follow specific formatting preferences. And this "small win" raises a very big question: If the world's most valuable AI company has struggled with controlling something as simple as punctuation use after years of trying, perhaps what people call artificial general intelligence (AGI) is farther off than some in the industry claim. "The fact that it's been 3 years since ChatGPT first launched, and you've only just now managed to make it obey this simple requirement, says a lot about how little control you have over it, and your understanding of its inner workings," wrote one X user in a reply. "Not a good sign for the future."

Read more of this story at Slashdot.

Who guards the guardrails? Often the same shoddy security as the rest of the AI stack

Large language models frequently ship with "guardrails" designed to catch malicious input and harmful output. But if you use the right word or phrase in your prompt, you can defeat these restrictions.…

More than a month after PoC made public

Fortinet finally published a security advisory on Friday for a critical FortiWeb path traversal vulnerability under active exploitation – but it appears digital intruders got a month's head start.…

Enterprise Linux vendors keep jostling to see who can prop up geriatric distros the longest

Last year, Canonical increased its paid extended support lifespan to 12 years. Now, it's increasing it again, to 15 years ... for a price.…

Amazon spilled the TEA

Yet another supply chain attack has hit the npm registry in what Amazon describes as "one of the largest package flooding incidents in open source registry history" - but with a twist. Instead of injecting credential-stealing code or ransomware into the packages, this one is a token farming campaign.…

An anonymous reader shares a report: Executives are turning to a novel structure to fund crypto accumulation vehicles as investor appetite thins. They're called in-kind contributions, and they now account for a growing share of digital-asset treasury, or DAT, deals. Instead of raising cash to buy tokens in the open market, DAT sponsors contribute large slugs of their own crypto, often unlisted and hard to value. Digital-asset treasuries are a new breed of public company built to hold concentrated crypto positions. The structure surged in 2025 as small-cap firms, especially in biotech and mining, reinvented themselves as digital-asset proxies. Sponsors provide tokens or raise money to buy them, and the stock then trades as a kind of listed bet on crypto. For insiders, it's a shortcut to liquidity. For investors, a wager on upside. But not all DATs carry the same level of risk. Earlier deals raised money to buy tokens through regular markets, which offered at least some independent price check. In-kind contributions skip that step -- letting insiders decide what their tokens are worth, sometimes before the token even trades publicly. That shift means pricing and trading risks land more squarely on shareholders, many of them retail investors. Investor faith is already wobbling. Many DATs that once traded above the value of their holdings now trade below it. As insiders supply the tokens and set their price, it's becoming harder for investors to tell what these deals are really worth, or when to get out. The in-kind structure was on full display in a recent $545 million private placement by Tharimmune Inc., a biotech firm-turned-crypto proxy, to set up a buyer of Canton Coins. About 80% of the raise came in the form of unlisted Canton tokens, priced at 20 cents each, according to an investor presentation seen by Bloomberg News. The token began trading on exchanges Nov. 10 and is now around 11 cents, CoinGecko data show. More deals are following the same template. In these placements, insiders contribute tokens -- sometimes illiquid or unlisted -- to form a treasury, lock in valuations and seed the perception of market demand. But when tokens list below deal price, public shareholders absorb the difference. [...] Then there's Flora Growth Corp., a Nasdaq-listed company that announced a $401 million deal to start acquiring Zero Gravity tokens in September. On closer inspection, the firm had raised just $35 million in cash to pair with a $366 million in-kind contribution of then-unlisted 0G tokens. Those tokens were priced at around $3 a piece; they subsequently listed, and are now trading at about $1.20.

Read more of this story at Slashdot.

Just when you thought virtual collaboration couldn’t get worse, OpenAI stuffs a bot into your group conversations

Feel like your team's group chat is a bit lifeless? Remote coworkers not really collaborating as well as they should be? There's a new way to stir the pot now that OpenAI has piloted ChatGPT group chats: cram a chatbot into the conversation and let it chime in whenever it thinks it should.…

Pay television penetration in American households fell to 50.2% in the third quarter and is projected to drop to 50% or lower by December, according to Madison and Wall, a technology and media advisory firm. Fifteen years ago, nearly nine in ten households subscribed to pay television services. The decline has prompted major media companies to shed cable assets. Comcast, Warner Bros. Discovery, and A&E are seeking to sell or spin off their cable television operations. Paramount stated it would not divest its cable channels but acknowledged that "each quarter is accelerating decline."

Read more of this story at Slashdot.

Mercury Research blames stockpiling and low-end shortages for unusually flat CPU market

AMD continues to claw market share away from Intel in CPU shipments, growing faster than its rival in most segments. Meanwhile business in the x86 processor arena is unusually flat overall, likely due to stockpiling over tariff fears.…

Starlink challenger drops the codename, but full-blown service still years out

Amazon has rebranded its satellite broadband plan from Project Kuiper to Amazon Leo. And no, Leo doesn't stand for "Late Entrants Only," even though the project is years behind Starlink and still not ready for anyone to use.…

TV manufacturers are abandoning their attempts to turn TVs into interactive social devices through smart cameras. Sky announced this month that it will discontinue Sky Live, a camera accessory for its Sky Glass televisions that brought video calls, body-tracked workouts, and motion games to the living room. The device will stop working at the beginning of December. Sky will brick the cameras and reimburse customers. Sky launched the product in mid-2023 as part of an effort to transform televisions from passive viewing devices into interactive platforms. That vision has not materialized across the industry. LG's Smart Cam, released in 2023, is out of stock at major retailers and appears discontinued. TCL's smart TV camera is no longer available. Samsung stopped integrating cameras directly into its television sets, though it still sells an external camera accessory.

Read more of this story at Slashdot.

Crooks spoof US insurers, threaten bogus extradition to pry loose personal data and cash

Chinese speakers in the US are being targeted as part of an aggressive health insurance scam campaign, the FBI warns.…

Cryptocurrency companies and fintech startups are applying to open banks in the United States. Ripple, Coinbase and the UK payments company Wise have submitted applications for national trust charters this year. Trust banks cannot take deposits or make loans but charge fees for safekeeping customer assets and are not FDIC insured. The applications have reached 12 so far this year, more than any of the preceding eight years, according to data compiled by Klaros Group. Comptroller of the Currency Jonathan Gould said last month that cryptocurrency activity should be done within the banking system if legally permissible and safe. His agency regulates nationally-chartered U.S. banks. The Bank Policy Institute and the Independent Community Bankers of America oppose the applications. BPI sent letters urging the Office of the Comptroller of the Currency to reject the Ripple, Wise, and Sony applications. The group said approving Coinbase could significantly increase risks to the U.S. financial system.

Read more of this story at Slashdot.

VDURA boss: Your x86 clusters are obsolete, metadata is eating 20% of I/O, and every idle GPU second burns cash

The supercomputing landscape is fracturing. What once was a relatively unified world of massive multi-processor x86 systems has splintered into competing architectures, each racing to serve radically different masters: traditional academic workloads, extreme-scale physics simulations, and the voracious appetite of AI training runs.…

An anonymous reader shares a report: In October, PUBG and Subnautica 2 publisher Krafton announced that it would be undergoing a "complete reorganization" to become an "AI-first" company, planning to invest over 130 billion won ($88 million) in agentic AI infrastructure and deployment beginning in 2026. This week, as it boasts record-breaking quarterly profits, the Korean publisher has followed that strategic shift by launching a voluntary resignation program for its domestic employees, according to Business Korea reporting. The program, announced internally, offers substantial buyouts for domestic Krafton employees based on their length of employment at the publisher. Severance packages range from 6 months' salary for employees with one year or less of service to 36 months' salary for employees who've worked at Krafton for over 11 years. The voluntary resignation program follows a November 4 earnings call in which Krafton announced a record quarterly profit of $717 million. During the call, Krafton CFO Bae Dong-geun indicated that Krafton had also halted hiring for new positions, telling investors that "excluding organizations developing original intellectual property and AI-related personnel, we have frozen hiring company-wide."

Read more of this story at Slashdot.

Advisory updated as leading cybercrime crew opens up its target pool

The US Cybersecurity and Infrastructure Security Agency (CISA) has issued new guidance to organizations on the Akira ransomware operation, which poses an imminent threat to critical sectors.…

Company behind THESPECTRUM brings the holiday season early for retro computing fans

Retro Games Ltd (RGL), the company behind THESPECTRUM and THEA500 Mini, has started accepting pre-orders for its full-size Amiga 1200 replica, THEA1200.…