Linux fréttir

joshuark shares a report from BleepingComputer: A new malicious campaign is targeting macOS developers with fake Homebrew, LogMeIn, and TradingView platforms that deliver infostealing malware like AMOS (Atomic macOS Stealer) and Odyssey. The campaign employs "ClickFix" techniques where targets are tricked into executing commands in Terminal, infecting themselves with malware. Researchers at threat hunting company Hunt.io identified more than 85 domains impersonating the three platforms in this campaign [...]. When checking some of the domains, BleepingComputer discovered that in some cases the traffic to the sites was driven via Google Ads, indicating that the threat actor promoted them to appear in Google Search results. The malicious sites feature convincing download portals for the fake apps and instruct users to copy a curl command in their Terminal to install them, the researchers say. In other cases, like for TradingView, the malicious commands are presented as a "connection security confirmation step." However, if the user clicks on the 'copy' button, a base64-encoded installation command is delivered to the clipboard instead of the displayed Cloudflare verification ID.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: AI content has proliferated across the Internet over the past few years, but those early confabulations with mutated hands have evolved into synthetic images and videos that can be hard to differentiate from reality. Having helped to create this problem, Google has some responsibility to keep AI video in check on YouTube. To that end, the company has started rolling out its promised likeness detection system for creators. [...] The likeness detection tool, which is similar to the site's copyright detection system, has now expanded beyond the initial small group of testers. YouTube says the first batch of eligible creators have been notified that they can use likeness detection, but interested parties will need to hand Google even more personal information to get protection from AI fakes. Currently, likeness detection is a beta feature in limited testing, so not all creators will see it as an option in YouTube Studio. When it does appear, it will be tucked into the existing "Content detection" menu. In YouTube's demo video, the setup flow appears to assume the channel has only a single host whose likeness needs protection. That person must verify their identity, which requires a photo of a government ID and a video of their face. It's unclear why YouTube needs this data in addition to the videos people have already posted with their oh-so stealable faces, but rules are rules. After signing up, YouTube will flag videos from other channels that appear to have the user's face. YouTube's algorithm can't know for sure what is and is not an AI video. So some of the face match results may be false positives from channels that have used a short clip under fair use guidelines. If creators do spot an AI fake, they can add some details and submit a report in a few minutes. If the video includes content copied from the creator's channel that does not adhere to fair use guidelines, YouTube suggests also submitting a copyright removal request. However, just because a person's likeness appears in an AI video does not necessarily mean YouTube will remove it.

Read more of this story at Slashdot.

Why experience the web for yourself when there's so much privacy to surrender?

In a bid to grab even more eyeballs, OpenAI has finally released Atlas, its long-teased, ChatGPT-powered web browser. Surfing the web may never be the same now that a bot is doing it for you – while training itself at the same time.…

U.S. regulators have opened a new investigation into about 2,000 Waymo self-driving cars after reports that one of the company's robotaxis illegally passed a stopped school bus with flashing lights and children disembarking. Waymo says it's "already developed and implemented improvements related to stopping for school buses and will land additional software updates in our next software release." The company added "driving safely around children has always been one of Waymo's highest priorities. ... [Waymo] approached the school bus from an angle where the flashing lights and stop sign were not visible and drove slowly around the front of the bus before driving past it, keeping a safe distance from children." Reuters reports: NHTSA opened the investigation after a recent media report aired video of an incident in Georgia in which a Waymo did not remain stationary when approaching a school bus with its red lights flashing and stop arm deployed. The report said the Waymo vehicle initially stopped then maneuvered around the bus, passing the extended stop arm while students were disembarking. Waymo's automated driving system surpassed 100 million miles of driving in July and is logging 2 million miles per week, the agency said. "Based on NHTSA's engagement with Waymo on this incident and the accumulation of operational miles, the likelihood of other prior similar incidents is high," the agency said. NHTSA said the vehicle involved was equipped with Waymo's fifth-generation Automated Driving System and was operating without a human safety driver at the time of the incident.

Read more of this story at Slashdot.

The German Koblenz Regional Court has banned the internet service provider 1&1 from marketing its fiber-to-the-curb service as fiber-optic DSL. The court found that the company misled customers because its network uses copper cables for the final stage of connections, sometimes extending up to a mile from the distribution box to subscribers' homes. Customers who visited the ISP's website and checked connection availability received a notification stating that a "1&1 fiber optic DSL connection" was available, even though fiber optic cables terminate at street-level distribution boxes or building service rooms. The company pairs the copper lines with vectoring technology to boost DSL speeds to 100 megabits per second. The Federation of German Consumer Organizations filed the lawsuit. Ramona Pop, the organization's chairperson, said that anyone who promises fiber optics but delivers only DSL is deceiving customers.

Read more of this story at Slashdot.

And got arrested instead of earning a viral TikTok

A Maryland woman who allegedly used AI to fake a home invasion was arrested and charged with making false statements after telling police that the ersatz intruder was part of a prank gone wrong.…

JetBrains released its annual State of the Developer Ecosystem survey in late October, drawing more than twenty-four thousand responses from programmers worldwide. The survey declared that PHP and Ruby are in "long term decline" based on usage trends tracked over five years. Shortly after publication, JetBrains posted a separate statement asserting that "PHP remains a stable, professional, and evolving ecosystem." The company offered no explanation for the apparent contradiction, The Register reports. The survey's methodology involves weighting responses to account for bias toward JetBrains users and regional distribution factors. The company acknowledges some bias likely remains since its own customers are more inclined to respond. The survey also found that 85% of developers now use AI coding tools.

Read more of this story at Slashdot.

TikTok changed its policies earlier this year on sharing user data with governments as the company negotiated with the Trump Administration to continue operating in the United States. The company added language allowing data sharing with "regulatory authorities, where relevant" beyond law enforcement. Until April 25, 2025, TikTok's website stated the company would notify users before disclosing their data to law enforcement. The policy now says TikTok will inform users only where required by law and changed the timing from before disclosure to if disclosure occurs. The company also softened its language from stating it "rejects data requests from law enforcement authorities" to saying it "may reject" such requests. TikTok declined to answer repeated questions from Forbes about whether it has shared or is sharing private user information with the Department of Homeland Security or Immigration and Customs Enforcement. The timing difference prevents users from challenging subpoenas before their data is handed over.

Read more of this story at Slashdot.

Apple's effort to reinvent the iPad by adding a giant foldable screen has hit development hurdles, potentially delaying the planned launch. Bloomberg: The company has been working on the device -- projected to cost around $3,000 -- for several years and had most recently aimed for a 2028 release. But engineering challenges tied to weight, features and display technology have pushed its potential debut to 2029 or later, according to people familiar with the matter. Apple is working with Samsung Display Co. to develop the roughly 18-inch panel for the device, said the people, who asked not to be identified because the work isn't public. The screen minimizes the crease seen on foldable displays, matching an approach that Apple is also using with its upcoming foldable iPhone. The iPad project is part of a broader push to bring more innovative devices to market. Apple just introduced its first new iPhone design in years -- the ultrathin $999 Air model -- and is working on everything from smart glasses to a tabletop robot device.

Read more of this story at Slashdot.

Rise and grind, robot overlords demand

AI services like OpenAI's ChatGPT have been pitched for potential productivity gains, but their effect has been to make people work more while benefiting less from their labor.…

"Plasma is a popular desktop (and mobile) environment for GNU/Linux and other UNIX-like operating systems," writes longtime Slashdot reader jrepin. "Among other things, it also powers the desktop mode of the Steam Deck gaming handheld. The KDE community today announced the latest release: Plasma 6.5." From the announcement: This fresh new release is all about fine-tuning, fresh features, and a making everything smooth and sleek for everyone. The new version brings automatic light-to-dark theme switching based on the time of day. You can configure which global themes it switches between. You can also configure whether you want the wallpaper to switch between its light and dark versions based on the color scheme, the time of day, or be always light or dark. Next up is a "Pinned clipboard items" feature, which lets you save text you use regularly into the clipboard. Breeze-themed windows will now have the same level of roundness in all four corners, even the bottom one. Flatpak Permissions page has been transformed into a general Application Permissions page, where you can configure applications' ability to do things like take screenshots and accept remote control requests. The utility that reads the level of ink or toner from your printer now informs you when it's running low or empty. For the gamers out there, you can now see more relevant info about game controllers on System Settings' Game Controller page. Artists among you can now configure any rotary dials and touch rings on your drawing tablet. Users sensitive to color can now make use of a grayscale color filter, which desaturates or removes color systemwide. Plasma 6.5 implements support for an experimental version of the Wayland picture-in-picture protocol that promises to allow apps like Firefox to eventually display proper PiP windows that stay above others automatically. Support for "overlay planes" was added, which can reduce CPU usage and power draw when displaying full-screen content using a compatible GPU. You can read more about these and many other new features in the Plasma 6.5 release announcement and complete changelog.

Read more of this story at Slashdot.