Linux fréttir

Or maybe 3 strikes, you're out?

SolarWinds on Tuesday released a hotfix - again - for a critical, 9.8-severity flaw in its Web Help Desk IT ticketing software that could allow a remote, unauthenticated attacker to run commands on a host machine. …

Customs and Border Protection collected DNA from nearly 2,000 US citizens between 2020 and 2024 and sent the samples to the FBI's CODIS crime database, according to Georgetown Law's Center on Privacy & Technology analysis of newly released government data. The collection included approximately 95 minors, some as young as 14, and travelers never charged with crimes. Congress never authorized DNA collection from citizens, children or civil detainees. DHS has contributed 2.6 million profiles to CODIS since 2020, with 97% collected under civil rather than criminal authority. The expansion followed a 2020 Justice Department rule that revoked DHS's waiver from DNA collection requirements. Former FBI director Christopher Wray testified in 2023 that monthly DNA submissions jumped from a few thousand to 92,000, creating a backlog of 650,000 unprocessed kits. Georgetown researchers project DHS could account for one-third of CODIS by 2034. The DHS Inspector General found in 2021 that the department lacked central oversight of DNA collection.

Read more of this story at Slashdot.

Rapid7 warns flaw could let any app peek at your SMS, but smartphone vendor won't pick up

Security researchers report that OnePlus smartphone users remain vulnerable to a critical bug that allows any application to read SMS and MMS data — a flaw that has persisted since late 2021.…

An anonymous reader shares a report: Battered by funding cuts, bombarded by the White House and braced for demographic changes set to send enrollment into a nosedive, America's colleges and universities have spent this year in flux. But one of higher education's rituals resurfaced again on Tuesday, when U.S. News & World Report published the college rankings that many administrators obsessively track and routinely malign. And, at least in the judgment of U.S. News, all of the headline-making upheaval has so far led to ... well, a lot of stability. Princeton University, the Massachusetts Institute of Technology and Harvard University retained the top three spots in the publisher's rankings of national universities. Stanford University kept its place at No. 4, though Yale University also joined it there. Williams College remained U.S. News's pick for the best national liberal arts college, just as Spelman College was again the top-ranked historically Black institution. In one notable change, the University of California, Berkeley, was deemed the country's top public university. But it simply switched places with its counterpart in Los Angeles.

Read more of this story at Slashdot.

Fancy a taste? The version based on Debian 'Trixie' is nearly ready, but not all the changes may be entirely welcome

The new Debian-13 version of MX Linux, version 25, is looking very close to ready for release. A big change may divide its audience, though.…

mrspoonsi writes: The US Secret Service says it has dismantled a network of more than 300 SIM servers and 100,000 SIM cards in the New York area that were capable of crippling telecom systems. The devices were "concentrated within 35 miles of the global meeting of the UN General Assembly now under way in New York City" and an investigation has been launched, it adds in a press statement. The Secret Service says the dangers posed included "disabling cell phone towers, enabling denial of services attacks, and facilitating anonymous, encrypted communication between potential threat actors and criminal enterprises."

Read more of this story at Slashdot.

Secret Service seizes 300-server network allegedly tied to nation-state hackers

The US Secret Service has dismantled a network of SIM farms in and around New York City it claims was behind multiple incidents targeting senior government officials and had enough power to disrupt entire cellular networks.…

Old hotel scam gets an AI facelift, leaving travellers’ card details even more at risk

Kaspersky has raised the alarm over the resurgence of hotel-hacking outfit "RevengeHotels," which it claims is now using artificial intelligence to supercharge its scams.…

40% of U.S. employees have received "workslop" -- AI-generated content that appears polished but lacks substance -- in the past month, according to research from BetterUp Labs and Stanford Social Media Lab. The survey of 1,150 full-time workers found recipients spend an average of one hour and 56 minutes addressing each incident of workslop, costing organizations an estimated $186 per employee monthly. For a 10,000-person company, lost productivity totals over $9 million annually. Professional services and technology sectors are disproportionately affected. Workers report that 15.4% of received content qualifies as workslop. The phenomenon occurs primarily between peers at 40%, though 18% flows from direct reports to managers and 16% moves down the hierarchy. Beyond financial costs, workslop damages workplace relationships -- half of recipients view senders as less creative, capable, and reliable, while 42% see them as less trustworthy.

Read more of this story at Slashdot.