Linux fréttir

No details, no CVE, update your browser now

Google issued an emergency fix for a Chrome vulnerability already under exploitation, which marks the world's most popular browser's eighth zero-day bug of 2025.…

UK data regulator says failures were unacceptable for a company managing the world's passwords

The UK's Information Commissioner's Office (ICO) says LastPass must cough up £1.2 million ($1.6 million) after its two-part 2022 data breach compromised information from up to 1.6 million UK users.…

An anonymous reader shares a report: Growing support for far-right parties is pressuring European governments to introduce stricter controls on immigration. Switzerland is set to vote on a proposal that would take the idea to the next level -- imposing a cap on its population [non-paywalled link]. The initiative could lead eventually to a blanket ban on new arrivals if the number of residents rises from around 9 million currently to above 10 million, with little distinction made between refugees, skilled workers and top managers on six-figure salaries. Citizens will likely vote on the proposal next year under the country's unique system of plebiscites on constitutional amendments and policy, and polls suggest there's a chance they'll approve it. The risk is it could lead to shortages of critical skills that end up harming Switzerland's competitiveness. The outcome will show how far citizens are willing to go to preserve some of the traits that made their country such an appealing destination. [...] The right-wing Swiss People's Party, or SVP, won 28% of the vote in the last election with a campaign that presented Swiss citizenship as a privilege, not a right. It came up with the idea of a population limit in 2023, presenting it as a way to preserve the Swiss lifestyle and protect its environment from excessive human activity.

Read more of this story at Slashdot.

Stanford researchers spent much of the past year building an AI bot called Artemis that scans networks for software vulnerabilities, and when they pitted it against ten professional penetration testers on the university's own engineering network, the bot outperformed nine of them. The experiment offers a window into how rapidly AI hacking tools have improved after years of underwhelming performance. "We thought it would probably be below average," said Justin Lin, a Stanford cybersecurity researcher. Artemis found bugs at a fraction of human cost -- just under $60 per hour compared to the $2,000 to $2,500 per day that professional pen testers typically charge. But its performance wasn't flawless. About 18% of its bug reports were false positives, and it completely missed an obvious vulnerability on a webpage that most human testers caught. In one case, Artemis found a bug on an outdated page that didn't render in standard browsers; it used a command-line tool called Curl instead of Chrome or Firefox. Dan Boneh, a Stanford computer science professor who advised the researchers, noted that vast amounts of software shipped without being vetted by LLMs could now be at risk. "We're in this moment of time where many actors can increase their productivity to find bugs at an extreme scale," said Jacob Klein, head of threat intelligence at Anthropic.

Read more of this story at Slashdot.

Disney is investing $1 billion in OpenAI and has entered into a three-year licensing deal that will let users generate AI-powered short videos and images featuring more than 200 characters from its Disney, Marvel, Star Wars and Pixar franchises. The new features are expected to launch in 2026 through Sora, OpenAI's short-form video platform, and ChatGPT. A selection of user-generated short videos will also be available to stream on Disney+. The licensing agreement excludes any talent likenesses or voices. Disney will receive warrants to purchase additional OpenAI equity as part of the arrangement, and its employees will gain access to OpenAI tools including ChatGPT for building new products.

Read more of this story at Slashdot.