Linux fréttir

An anonymous reader shares a report: California-based TP-Link says it may take a sales hit of more than $1 billion because of erroneous reports that the networking company's technology has been "infiltrated" by Beijing. In a lawsuit, TP-Link claims its competitor, Netgear, orchestrated a smear by planting false claims with journalists and internet influencers with the goal of scaring off customers. Closely held TP-Link, which makes wireless routers, alleges in a complaint filed Monday that Netgear's campaign "threatens injury to well over a billion dollars in sales" and violates a 2024 settlement of a patent fight. That accord, in which TP-Link agreed to pay Netgear $135 million, includes a provision that the public company promises not to disparage its rival, according to the suit in Delaware federal court. The suit comes as TP-Link faces growing scrutiny in Washington over national-security issues. US lawmakers from both parties have expressed concern that TP-Link's wireless equipment could be exploited by Chinese hackers following a series of attacks on its routers.

Read more of this story at Slashdot.

Two-day exploit opened up 3.5 billion users to myriad potential harms

Researchers in Austria used a flaw in WhatsApp to gather the personal data of more than 3.5 billion users in what they believe amounts to the "largest data leak in history."…

Event supposedly for IT pros doesn't have much to tell admins on the Windows front

The Copilot company kicked off its Ignite shindig this week with AI, AI, and more AI. Oh, and a lot of agents.…

Open source RDMS popularity offers devs 'something other than Oracle' as database standard, analyst says

Microsoft has announced a distributed PostgreSQL database service designed to rival other hyperscaler systems and third-party RDBMSes such as CockroachDB and YugabyteDB.…

Preliminary proposal is already provoking debate

The Python community is chewing over a new idea: allowing the C-based reference implementation, CPython, to incorporate Rust. It's only at the "pre-PEP" stage, but it's already sparked lively debate.…

B&Q owner resists the S/4HANA push, betting it can innovate around legacy ERP, but questions remain

In 2020, SAP's CFO told investors that its plans for customer upgrades, cloud migration, and a move to SaaS would give the German software vendor a greater "share of wallet."…

Researchers say attacks are laying the groundwork for stealthy espionage activity

Around 50,000 ASUS routers have been compromised in a sophisticated attack that researchers believe may be linked to China, according to findings released today by SecurityScorecard's STRIKE team.…

Nobody succeeds alone, and no community thrives without generosity

Opinion When I started coding for a living 43 years ago, I didn't know shit from Shinola. I'd written a lot of BASIC, some Z80 assembler, and knew my way around floppy drives and a disk operating system. I knew nothing at all about how to operate as a junior engineer in a professional environment.…

A Chinese man who cryogenically preserved his wife after her death has sparked a heated online debate after it emerged he began dating a new partner in 2020. Some argue it's natural for him to move on, while others say he's being selfish or disrespectful to both his late wife and his current partner. The BBC reports: As a sign of his devotion, Gui Junmin decided to freeze his wife Zhan Wenlian's body after she died from lung cancer in 2017, aged 49, making her China's first cryogenically preserved person. But after a November interview revealed he had been dating a different partner since 2020, Chinese social media has been torn on Mr Junmin's predicament. Whilst some asked why the 57-year-old didn't just "let go" another commenter remarked he appeared to be "most devoted to himself." After Zhan Wenlian was given months to live by doctors, Gui Junmin decided to use cryonics - which is scientifically unproven - to preserve her body once she died. Following her death, he signed a 30-year agreement to preserve his wife's frozen body with the Shandong Yinfeng Life Science Research Institute. Since then, Zhan's body has been stored in a 2,000-litre container at the institute in a vat of -190C liquid nitrogen. Chinese newspaper Southern Weekly revealed that although Mr Junmin lived alone for two years after the procedure, in 2020 he began dating again, despite his wife remaining in cryopreservation. He told the newspaper that a severe gout attack which left him unable to move for two days began to change his mind about the benefits of living alone. Soon after, he started seeing his current partner Wang Chunxia, although Mr Junmin suggested to the paper the love was only "utilitarian" and that she hadn't "entered" his heart.

Read more of this story at Slashdot.

MI5 sounds the alarm about attempts to source sensitive information

Chinese spies are using social media and fake recruitment agents to recruit sources with access to sensitive information in the UK.…

And a cloud PC that's for AI agents only

Microsoft has created a new type of AI PC – the “Windows 365 AI-enabled Cloud PC”.…

An anonymous reader quotes a report from CNBC: The Trump administration will provide Constellation Energy with a $1 billion loan to restart the Crane Clean Energy Center nuclear plant in Pennsylvania, Department of Energy officials said Tuesday. Previously known as Three Mile Island Unit 1, the plant is expected to start generating power again in 2027. Constellation unveiled plans to rename and restart the reactor in Sept. 2024 through a power purchase agreement with Microsoft to support the tech company's data center demand in the region. Three Mile Island Unit 1 ceased operations in 2019, one of a dozen reactors that closed in recent years as nuclear struggled to compete against cheap natural gas. It sits on the same site as Three Mile Island Unit 2, the reactor that partially melted down in 1979 in the worst nuclear accident in U.S. history. The loan would cover the majority to the project's estimated cost of $1.6 billion. The first advance to Constellation is expected in the first quarter of 2026, said Greg Beard, senior advisor to the Energy Department's Loan Programs Office, in a call with reporters. The loan comes with a guarantee from Constellation that it will protect taxpayer money, Beard said.

Read more of this story at Slashdot.

MI5 has warned U.K. lawmakers that Chinese intelligence operatives are using LinkedIn and recruitment fronts to target them for information gathering and long-term cultivation. PBS reports: Writing to lawmakers, House of Commons Speaker Lindsay Hoyle said a new MI5 "espionage alert" warned that Chinese nationals were "using LinkedIn profiles to conduct outreach at scale" on behalf of the Chinese Ministry of State Security. "Their aim is to collect information and lay the groundwork for long-term relationships, using professional networking sites, recruitment agents and consultants acting on their behalf," he said. MI5 issued the alert because the activity was "targeted and widespread," he added. The MI5 alert cited LinkedIn profiles of two women, Amanda Qiu and Shirly Shen, and said other similar recruiters' profiles were acting as fronts for espionage. Home Office Minister Dan Jarvis said that apart from parliamentary staff, others including economists, think tank consultants and government officials have been similarly targeted. Jarvis said the government is rolling out a series of measures to tackle the risk, including investing 170 million pounds ($224 million) to renew encrypted technology used by civil servants to safeguard sensitive work. Opposition parties say authorities are not doing enough and are too wary of jeopardizing trade ties with China.

Read more of this story at Slashdot.

Thought it was the victim of a ‘hyper-scale DDoS attack’ before finding the fix

Cloudflare CEO Matthew Prince has admitted that the cause of its massive Tuesday outage was a change to database permissions, and that the company initially thought the symptoms of that adjustment indicated it was the target of a “hyper-scale DDoS attack,” before figuring out the real problem.…

Mexico has finally lifted its long-running Tor ban for the main government portal, allowing privacy-focused users, journalists, and activists to access gob.mx again after more than a decade of blocking. That said, the open data portal and the former Tor-compatible whistleblower system remain inaccessible. CyberInsider reports: The development follows a long period of digital censorship that spanned two full six-year presidential terms, those of Enrique Pena Nieto and Andres Manuel Lopez Obrador, and continued into the early months of Claudia Sheinbaum Pardo's current administration. Research conducted by Jacobo Najera and Miguel Trujillo, published in October 2023, documented that 21 federal government agencies were blocking traffic from the Tor network, effectively excluding privacy-conscious users from vital public resources and services.

Read more of this story at Slashdot.

Vertical integration meets subscriptions

"We love moving packets," declared Anil Varanasi, CEO and co-founder of Meter, on a stage overlooking San Francisco Bay at the networking startup's annual networking event. He continued, "This crowd probably knows this intimately, but everything in the world is packets. Regardless of what type of work you do, it is just packets all the way down."…

A NordPass analysis found that Gen Z is actually worse at password security than older generations, with "12345" topping their list while "123456" dominates among everyone else. The Register reports: And while there were a few more "skibidis" among the Zoomer dataset compared to those who came before them, the trends were largely similar. Variants on the "123456" were among the most common for all age groups, with that exact string proving to be the most common among all users -- the sixth time in seven years it holds the undesirable crown. Some of the more adventurous would stretch to "1234567," while budding cryptologists shored up their accounts by adding an 8 or even a 9 to the mix. However, according to Security.org's password security checker, a computer could crack any of these instantly. Most attackers would not even need to expend the resources required to reveal the password, given how commonly used they are. They could just spray a list of known passwords at an authentication API and secure a quick win.

Read more of this story at Slashdot.

An anonymous reader quotes a report from ZDNet: At KubeCon North America 2025 in Atlanta, the Cloud Native Computing Foundation (CNCF)'s leaders predicted an enormous surge in cloud-native computing, driven by the explosive growth of AI inference workloads. How much growth? They're predicting hundreds of billions of dollars in spending over the next 18 months. [...] Where cloud-native computing and AI inference come together is when AI is no longer a separate track from cloud-native computing. Instead, AI workloads, particularly inference tasks, are fueling a new era where intelligent applications require scalable and reliable infrastructure. That era is unfolding because, said [CNCF Executive Director Jonathan Bryce], "AI is moving from a few 'Training supercomputers' to widespread 'Enterprise Inference.' This is fundamentally a cloud-native problem. You, the platform engineers, are the ones who will build the open-source platforms that unlock enterprise AI." "Cloud native and AI-native development are merging, and it's really an incredible place we're in right now," said CNCF CTO Chris Aniszczyk. The data backs up this opinion. For example, Google has reported that its internal inference jobs have processed 1.33 quadrillion tokens per month recently, up from 980 trillion just months before. [...] Aniszczyk added that cloud-native projects, especially Kubernetes, are adapting to serve inference workloads at scale: "Kubernetes is obviously one of the leading examples as of the last release the dynamic resource allocation feature enables GPU and TPU hardware abstraction in a Kubernetes context." To better meet the demand, the CNCF announced the Certified Kubernetes AI Conformance Program, which aims to make AI workloads as portable and reliable as traditional cloud-native applications. "As AI moves into production, teams need a consistent infrastructure they can rely on," Aniszczyk stated during his keynote. "This initiative will create shared guardrails to ensure AI workloads behave predictably across environments. It builds on the same community-driven standards process we've used with Kubernetes to help bring consistency as AI adoption scales." What all this effort means for business is that AI inference spending on cloud-native infrastructure and services will reach into the hundreds of billions within the next 18 months. That investment is because CNCF leaders predict that enterprises will race to stand up reliable, cost-effective AI services.

Read more of this story at Slashdot.

Another highly influential Linux kernel engineer, David Hildenbrand, is leaving Red Hat after a decade of major contributions to memory management, virtualization, and VirtIO. His recent kernel patch updates his maintainer info to a kernel.org address, signaling his departure. He hasn't yet said where he's headed next. Phoronix reports: David Hildenbrand serves as a reviewer for the HugeTLB code, s390 KVM code, and memory management reclaim code. He also serves as an upstream maintainer for the Linux kernel's core memory management code, Get User Pages (GUP) memory management code, kernel samepage merging (KSM), reverse mapping (RMAP), transparent hugepage (THP), memory advice (MADVISE), VirtIO memory driver, and VirtIO balloon driver. Hildenbrand had been employed by Red Hat the past decade in Munich working on QEMU/KVM virtualization, Linux kernel memory management, VirtIO, and related low-level areas. Just this year alone so far in 2025 he's authored or been mentioned on more than one thousand mainline Linux kernel patches.

Read more of this story at Slashdot.

BORK is borked

Microsoft has added a new Windows mode that blanks out the Blue Screen of Death on public displays after 15 seconds.…