Linux fréttir

The Washington Post reports that after months of polar darkness, the extent of sea ice blanketing the Arctic this winter "fell to the lowest level on record, researchers announced this week... the smallest maximum extent in the 47-year satellite record, according to the National Snow and Ice Data Center. "Since then, the ice has already begun to melt again." "Sea ice is acting like the old canary in the coal mine," Dartmouth University geophysicist Don Perovich said. "It's saying loud and clear that warming is occurring...." In the summer, when the sun's radiation shines down on the Arctic for 24 hours a day, the ice acts as a shield, reflecting more than half of the light that hits it back into space.... With so little sea ice in the Arctic this year, more sunlight will be able to reach the open ocean, which absorbs more than 90 percent of the radiation that hits it. This will further warm the region, accelerating ice melt and exposing even more water to the light. This feedback loop helps explain the rapid warming of the Arctic, and it is expected to lead to a complete lack of summer sea ice in the region within decades, [said explained Melinda Webster, a sea ice scientist at the University of Washington]. The consequences would be dire for seals, polar bears and other wildlife, which depend on a stable sea ice platform to birth their young and hunt for food. It would also expose miles of coastline to pounding ocean waves, accelerating the erosion that threatens to tip some communities into the sea. But the effects will also be felt in places far from the poles, Perovich said. Studies suggest that a complete loss of Arctic sea ice would raise global temperatures as much as adding a trillion tons of carbon dioxide to the atmosphere. Changes in the Arctic could also affect the jet stream, the river of winds that flows through the upper atmosphere, contributing to more extreme weather around the globe. "What happens in the Arctic doesn't stay in the Arctic," Perovich said. Earlier this year sea ice also fell 30% below the amount typical in the Antarctic prior to 2010, the researchers report. The total amount of sea ice on earth has now reached an all-time low, declining by more than a million square miles (2.5 million square kilometers) below the pre-2010 average. "Altogether, Earth is missing an area of sea ice large enough to cover the entire continental United States east of the Mississippi."

Read more of this story at Slashdot.

An anonymous reader shared this report from BleepingComputer: Three security bypasses have been discovered in Ubuntu Linux's unprivileged user namespace restrictions, which could be enable a local attacker to exploit vulnerabilities in kernel components. The issues allow local unprivileged users to create user namespaces with full administrative capabilities and impact Ubuntu versions 23.10, where unprivileged user namespaces restrictions are enabled, and 24.04 which has them active by default... Ubuntu added AppArmor-based restrictions in version 23.10 and enabled them by default in 24.04 to limit the risk of namespace misuse. Researchers at cloud security and compliance company Qualys found that these restrictions can be bypassed in three different ways... The researchers note that these bypasses are dangerous when combined with kernel-related vulnerabilities, and they are not enough to obtain complete control of the system... Qualys notified the Ubuntu security team of their findings on January 15 and agreed to a coordinated release. However, the busybox bypass was discovered independently by vulnerability researcher Roddux, who published the details on March 21. Canonical, the organization behind Ubuntu Linux, has acknowledged Qualys' findings and confirmed to BleepingComputer that they are developing improvements to the AppArmor protections. A spokesperson told us that they are not treating these findings as vulnerabilities per se but as limitations of a defense-in-depth mechanism. Hence, protections will be released according to standard release schedules and not as urgent security fixes. Canonical shared hardening steps that administrators should consider in a bulletin published on their official "Ubuntu Discourse" discussion forum.

Read more of this story at Slashdot.

More silicon, more power, more pain for datacenter operators

Comment As Jensen Huang is fond of saying, Moore's Law is dead – and at Nvidia GTC this month, the GPU-slinger's chief exec let slip just how deep in the ground the computational scaling law really is.…

An anonymous reader quotes a report from MIT Technology Review: The first clinical trial of a therapy bot that uses generative AI suggests it was as effective as human therapy for participants with depression, anxiety, or risk for developing eating disorders. Even so, it doesn't give a go-ahead to the dozens of companies hyping such technologies while operating in a regulatory gray area. A team led by psychiatric researchers and psychologists at the Geisel School of Medicine at Dartmouth College built the tool, called Therabot, and the results were published on March 27 in the New England Journal of Medicine. Many tech companies are building AI therapy bots to address the mental health care gap, offering more frequent and affordable access than traditional therapy. However, challenges persist: poorly worded bot responses can cause harm, and forming meaningful therapeutic relationships is hard to replicate in software. While many bots rely on general internet data, researchers at Dartmouth developed "Therabot" using custom, evidence-based datasets. Here's what they found: To test the bot, the researchers ran an eight-week clinical trial with 210 participants who had symptoms of depression or generalized anxiety disorder or were at high risk for eating disorders. About half had access to Therabot, and a control group did not. Participants responded to prompts from the AI and initiated conversations, averaging about 10 messages per day. Participants with depression experienced a 51% reduction in symptoms, the best result in the study. Those with anxiety experienced a 31% reduction, and those at risk for eating disorders saw a 19% reduction in concerns about body image and weight. These measurements are based on self-reporting through surveys, a method that's not perfect but remains one of the best tools researchers have. These results ... are about what one finds in randomized control trials of psychotherapy with 16 hours of human-provided treatment, but the Therabot trial accomplished it in about half the time. "I've been working in digital therapeutics for a long time, and I've never seen levels of engagement that are prolonged and sustained at this level," says [Michael Heinz, a research psychiatrist at Dartmouth College and Dartmouth Health and first author of the study].

Read more of this story at Slashdot.

Miscreants warming to Delphi, Haskell, and the like to evade detection

Malware authors looking to evade analysis are turning to less popular programming languages like Delphi or Haskell.…

Despite recent test failures, NASA has added SpaceX's Starship to its Launch Services Program contract, allowing it to compete for future science missions once it achieves a successful orbital flight. Florida Today reports: NASA announced the addition Friday to its current launch provider contract with SpaceX, which covers the Falcon 9 and Falcon Heavy. This opens the possibility of Starship flying future NASA science missions -- that is once Starship reaches a successful orbital flight. "NASA has awarded SpaceX of Starbase, Texas, a modification under the NASA Launch Services (NLS) II contract to add Starship to their existing Falcon 9 and Falcon Heavy launch service offerings," NASA's statement reads. Th announcement is simply an onboarding of Starship as an option, as the contract runs through 2032. However, SpaceX is under pressure to get Starship operational by next year as the company plans not only to send an uncrewed Starship to Mars by late 2026, but the NASA Artemis III moon landing is fast approaching. Should it remain the plan with the current administration, Starship will act as a human lander for NASA's Artemis III crew. "The NLS II contracts are multiple award, indefinite-delivery/indefinite-quantity, with an ordering period through June 2030 and an overall period of performance through December 2032. The contracts include an on-ramp provision that provides an opportunity annually for new launch service providers to add their launch service on an NLS II contract and compete for future missions and allows existing contractors to introduce launch services not currently on their NLS II contracts," NASA's statement reads.

Read more of this story at Slashdot.

Airbus UK wins £150M contract to revive long-delayed rover project

Airbus UK, a wholly-owned subsidairy of US aerospace giant, has won the £150 million contract to complete a landing system for the long-delayed ExoMars rover.…

A new study warns that toxic Martian dust contains fine particles and harmful substances like silica and metals that pose serious health risks to astronauts, making missions to Mars more dangerous than previously thought. The Guardian reports: During Apollo missions to the moon, astronauts suffered from exposure to lunar dust. It clung to spacesuits and seeped into the lunar landers, causing coughing, runny eyes and irritated throats. Studies showed that chronic health effects would result from prolonged exposure. Martian dust isn't as sharp and abrasive as lunar dust, but it does have the same tendency to stick to everything, and the fine particles (about 4% the width of a human hair) can penetrate deep into lungs and enter the bloodstream. Toxic substances in the dust include silica, gypsum and various metals. "A mission to Mars does not have the luxury of rapid return to Earth for treatment," the researchers write in the journal GeoHealth. And the 40-minute communication delay will limit the usefulness of remote medical support from Earth. Instead, the researchers stress that limiting exposure to dust is essential, requiring air filters, self-cleaning space suits and electrostatic repulsion devices, for example.

Read more of this story at Slashdot.

An anonymous reader quotes a report from The Verge: A concert on Monday night at New York's Radio City Music Hall was a special occasion for Frank Miller: his parents' wedding anniversary. He didn't end up seeing the show -- and before he could even get past security, he was informed that he was in fact banned for life from the venue and all other properties owned by Madison Square Garden (MSG). After scanning his ticket and promptly being pulled aside by security, Miller was told by staff that he was barred from the MSG properties for an incident at the Garden in 2021. But Miller says he hasn't been to the venue in nearly two decades. "They hand me a piece of paper letting me know that I've been added to a ban list," Miller says. "There's a trespass notice if I ever show up on any MSG property ever again," which includes venues like Radio City, the Beacon Theatre, the Sphere, and the Chicago Theatre. He was baffled at first. Then it dawned on him: this was probably about a T-shirt he designed years ago. MSG Entertainment won't say what happened with Miller or how he was picked out of the crowd, but he suspects he was identified via controversial facial recognition systems that the company deploys at its venues. In 2017, 1990s New York Knicks star Charles Oakley was forcibly removed from his seat near Knicks owner and Madison Square Garden CEO James Dolan. The high-profile incident later spiraled into an ongoing legal battle. For Miller, Oakley was an "integral" part of the '90s Knicks, he says. With his background in graphic design, he made a shirt in the style of the old team logo that read, "Ban Dolan" -- a reference to the infamous scuffle. A few years later, in 2021, a friend of Miller's wore a Ban Dolan shirt to a Knicks game and was kicked out and banned from future events. That incident spawned ESPN segments and news articles and validated what many fans saw as a pettiness on Dolan and MSG's part for going after individual fans who criticized team ownership. "Frank Miller Jr. made threats against an MSG executive on social media and produced and sold merchandise that was offensive in nature," Mikyl Cordova, executive vice president of communications and marketing for the company, said in an emailed statement. "His behavior was disrespectful and disruptive and in violation of our code of conduct." Miller responded to the ban, saying: "I just found it comical, until I was told that my mom was crying [in the lobby]. I was like, 'Oh man, I ruined their anniversary with my shit talk on the internet. Memes are powerful, and so is the surveillance state. It's something that we all have to be aware of -- the panopticon. We're [being] surveilled at all times, and it's always framed as a safety thing, when rarely is that the case. It's more of a deterrent and a fear tactic to try to keep people in line."

Read more of this story at Slashdot.

New research suggests that Prototaxites, once believed to be a giant fungus, may actually represent an entirely extinct and previously unknown branch of complex life, distinct from fungi, plants, animals, and protists. Live Science reports: The researchers studied the fossilized remains of one Prototaxites species named Prototaxites taiti, found preserved in the Rhynie chert, a sedimentary deposit of exceptionally well-preserved fossils of early land plants and animals in Scotland. This species was much smaller than many other species of Prototaxites, only growing up to a few inches tall, but it is still the largest Prototaxites specimen found in this region. Upon examining the internal structure of the fossilized Prototaxites, the researchers found that its interior was made up of a series of tubes, similar to those within a fungus. But these tubes branched off and reconnected in ways very unlike those seen in modern fungi. "We report that Prototaxites taiti was the largest organism in the Rhynie ecosystem and its anatomy was fundamentally distinct from all known extant or extinct fungi," the researchers wrote in the paper. "We therefore conclude that Prototaxites was not a fungus, and instead propose it is best assigned to a now entirely extinct terrestrial lineage." True fungi from the same period have also been preserved in the Rhynie chert, enabling the researchers to chemically compare them to Prototaxites. In addition to their unique structural characteristics, the team found that the Prototaxites fossils left completely different chemical signatures to the fungi fossils, indicating that the Prototaxites did not contain chitin, a major building block of fungal cell walls and a hallmark of the fungal kingdom. The Prototaxites fossils instead appeared to contain chemicals similar to lignin, which is found in the wood and bark of plants. "We conclude that the morphology and molecular fingerprint of P. taiti is clearly distinct from that of the fungi and other organism preserved alongside it in the Rhynie chert, and we suggest that it is best considered a member of a previously undescribed, entirely extinct group of eukaryotes," the researchers wrote. The research has been published on the preprint server bioRxiv.

Read more of this story at Slashdot.

The Federal Deposit Insurance Corporation (FDIC) says banks no longer need prior approval before engaging in crypto-related activities, such as holding digital currency assets or partnering with companies in the industry. Axios reports: After publishing a general caution against banks participating in the industry just two years ago, the FDIC is the latest Trump administration regulator to change its tune entirely amid the president's warm embrace of crypto. "With today's action, the FDIC is turning the page on the flawed approach of the past three years," FDIC acting chairman Travis Hill said in a statement. The OCC was the first of those regulators to revise their guidance, telling banks it supervises earlier this month that they no longer need permission to engage in certain common cryptocurrency-related activities. The Fed as of Friday had not issued any update, though chair Jerome Powell told lawmakers during a congressional hearing last month that the central bank would take a fresh look at the guidance. The new policy clarifies that "FDIC-supervised institutions may engage in permissible activities, including ... digital assets, provided that they adequately manage the associated risks."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Imagine working with special cameras that capture light your eyes can't even see -- ultraviolet rays that cause sunburn, infrared heat signatures that reveal hidden writing, or specific wavelengths that plants use for photosynthesis. Or perhaps using a special camera designed to distinguish the subtle visible differences that make paint colors appear just right under specific lighting. Scientists and engineers do this every day, and they're drowning in the resulting data. A new compression format called Spectral JPEG XL might finally solve this growing problem in scientific visualization and computer graphics. Researchers Alban Fichet and Christoph Peters of Intel Corporation detailed the format in a recent paper published in the Journal of Computer Graphics Techniques (JCGT). It tackles a serious bottleneck for industries working with these specialized images. These spectral files can contain 30, 100, or more data points per pixel, causing file sizes to balloon into multi-gigabyte territory -- making them unwieldy to store and analyze. [...] The current standard format for storing this kind of data, OpenEXR, wasn't designed with these massive spectral requirements in mind. Even with built-in lossless compression methods like ZIP, the files remain unwieldy for practical work as these methods struggle with the large number of spectral channels. Spectral JPEG XL utilizes a technique used with human-visible images, a math trick called a discrete cosine transform (DCT), to make these massive files smaller. Instead of storing the exact light intensity at every single wavelength (which creates huge files), it transforms this information into a different form. [...] According to the researchers, the massive file sizes of spectral images have reportedly been a real barrier to adoption in industries that would benefit from their accuracy. Smaller files mean faster transfer times, reduced storage costs, and the ability to work with these images more interactively without specialized hardware. The results reported by the researchers seem impressive -- with their technique, spectral image files shrink by 10 to 60 times compared to standard OpenEXR lossless compression, bringing them down to sizes comparable to regular high-quality photos. They also preserve key OpenEXR features like metadata and high dynamic range support. The report notes that broader adoption "hinges on the continued development and refinement of the software tools that handle JPEG XL encoding and decoding." Some scientific applications may also see JPEG XL's lossy approach as a drawback. "Some researchers working with spectral data might readily accept the trade-off for the practical benefits of smaller files and faster processing," reports Ars. "Others handling particularly sensitive measurements might need to seek alternative methods of storage."

Read more of this story at Slashdot.

Longtime Slashdot reader frank_adrian314159 writes: According to an article in Wired, Elon Musk has appointed a team of technologists from DOGE to "rewrite the code that runs the SSA in months." This codebase has over 60 million lines of COBOL and handles record keeping for all American workers and payments for all Social Security recipients. Given that the code has to track the byzantine regulations dealing with Social Security, it's no wonder that the codebase is this large. What is in question though is whether a small team can rewrite this code "in months." After all, what could possibly go wrong? "The project is being organized by Elon Musk lieutenant Steve Davis ... and aims to migrate all SSA systems off COBOL ... and onto a more modern replacement like Java within a scheduled tight timeframe of a few months," notes Wired. "Under any circumstances, a migration of this size and scale would be a massive undertaking, experts tell WIRED, but the expedited deadline runs the risk of obstructing payments to the more than 65 million people in the US currently receiving Social Security benefits." In 2017, SSA announced a plan to modernize its core systems with a timeline of around five years. However, the work was "pivoted away" because of the pandemic.

Read more of this story at Slashdot.

A breach of legacy Cerner servers at Oracle Health exposed patient data from multiple U.S. hospitals and healthcare organizations, with threat actors using compromised customer credentials to steal the data before it had been migrated to Oracle Cloud. Despite confirming the breach privately, Oracle Health has yet to publicly acknowledge the incident. BleepingComputer reports: Oracle Health, formerly known as Cerner, is a healthcare software-as-a-service (SaaS) company offering Electronic Health Records (EHR) and business operations systems to hospitals and healthcare organizations. After being acquired by Oracle in 2022, Cerner was merged into Oracle Health, with its systems migrated to Oracle Cloud. In a notice sent to impacted customers and seen by BleepingComputer, Oracle Health said it became aware of a breach of legacy Cerner data migration servers on February 20, 2025. "We are writing to inform you that, on or around February 20, 2025, we became aware of a cybersecurity event involving unauthorized access to some amount of your Cerner data that was on an old legacy server not yet migrated to the Oracle Cloud," reads a notification sent to impacted Oracle Health customers. Oracle says that the threat actor used compromised customer credentials to breach the servers sometime after January 22, 2025, and copied data to a remote server. This stolen data "may" have included patient information from electronic health records. However, multiple sources told BleepingComputer that it was confirmed that patient data was stolen during the attack. Oracle Health is also telling hospitals that they will not notify patients directly and that it is their responsibility to determine if the stolen data violates HIPAA laws and whether they are required to send notifications. However, the company says they will help identify impacted individuals and provide templates to help with notifications.

Read more of this story at Slashdot.