Linux fréttir

A rare joint alert from all five spy agencies means serious business

The Five Eyes intelligence alliance is urgently warning defenders to patch two Cisco Catalyst SD-WAN vulnerabilities used in attacks.…

Analyst warns soaring DRAM and NAND costs could push entry-level devices out of reach

Ballooning memory prices are forecast to kill off entry-level PCs, leading to a decline in global shipments this year - and a similar effect is going to hit smartphones.…

Many dependent apps, including FreePascal and Lazarus, face the chop

Version 2 of the widely used Gtk toolkit will be dropped from the next Debian release. The problem is that many things still need it, including FreePascal and its Lazarus IDE.…

So say Oxford boffins who found 'bias' related to Apollo rock samples created false impression

Scientists at the University of Oxford say they may have cracked the puzzle of the Moon's magnetic field and settled a debate that has raged since the Apollo missions returned with rock samples.…

No pressure

GCHQ is looking to recruit a chief information security officer (CISO), a job it describes as "one of the most influential cybersecurity leadership roles in the UK," at a salary of £96,981 to £130,000.…

Ministry of Justice wowed by Ontario's paperless system, announces £12M for AI unit

The British government will expand the use of AI in courts in England and Wales as part of plans to make them work faster, justice minister David Lammy has told a Microsoft AI event.…

An anonymous reader shares a report: A Cloudflare engineer says he has implemented 94% of the Next.js API by directing Anthropic's Claude, spending about $1,100 on tokens. The purpose of the experimental project was not to show off AI coding, but to address an issue with Next.js, the popular React-based framework sponsored by Vercel. According to Cloudflare engineering director Steve Faulkner, the Next.js tooling is "entirely bespoke... If you want to deploy it to Cloudflare, Netlify, or AWS Lambda, you have to take that build output and reshape it into something the target platform can actually run." The Next.js team is addressing this following numerous complaints that deploying the framework with full features on platforms other than Vercel is too difficult, with a feature in progress called deployment adapters. "Vercel will use the same adapter API as every other partner," the company said when introducing the planned feature last year.

Read more of this story at Slashdot.

An anonymous reader shares a report: Some Uber employees have built an AI clone of CEO Dara Khosrowshahi -- internally dubbed "Dara AI" -- and have been using it to rehearse and fine-tune presentations before delivering them to the actual Khosrowshahi, he revealed on a recent podcast. Khosrowshahi said a team member told him that some teams "make the presentation to the Dara AI as a prep for making a presentation to me," and that the bot helps them adjust their slides and sharpen their delivery. Asked by the podcast host whether employees might eventually show Dara AI to the board, Khosrowshahi laughed but noted that AI models still can't process and act on new information the way executives do. "When the models can learn in real-time, that is the point at which I'm going to think that, yeah, we are all replaceable," he said.

Read more of this story at Slashdot.

Cloudy stack vendor says VMware refugees have started to arrive in large numbers, just in time to collide with supply chain woes

AMD has struck another chips’n’stock deal, this time with software-defined datacenter player Nutanix.…

It looks like the same cloudy software licenses that offend Europe may be in play

Microsoft ‘cooperating’ with Japanese antitrust probe Looks like the same cloudy software licenses that offend Europe may be in play Microsoft is “fully cooperating” with a probe by Japan’s Fair Trade Commission, which wants to know if the software giant has violated the nation’s anti-monopoly laws.…

Anthropic last week promoted Claude Code Security, a research preview capability that uses its Claude Opus 4.6 model to hunt for software vulnerabilities, claiming its red team had surfaced over 500 bugs in production open-source codebases -- but security researchers say the real bottleneck was never discovery. Guy Azari, a former security researcher at Microsoft and Palo Alto Networks, told The Register that only two to three of those 500 vulnerabilities have been fixed and none have received CVE assignments. The National Vulnerability Database already carried a backlog of roughly 30,000 CVE entries awaiting analysis in 2025, and nearly two-thirds of reported open-source vulnerabilities lacked an NVD severity score. The curl project closed its bug bounty program because maintainers could no longer handle the flood of poorly crafted reports from AI tools and humans alike. Feross Aboukhadijeh, CEO of security firm Socket, said discovery is becoming dramatically cheaper but validating findings, coordinating with maintainers, and developing architecture-aligned patches remains slow, human-intensive work.

Read more of this story at Slashdot.

Selling so many agents they've cooked up a way to measure what they do

Even by the somewhat offbeat standards of the Salesforce Ohana, the CRM giant just delivered a strange earnings announcement.…

Kalshi, the prediction market platform regulated by the Commodity Futures Trading Commission, has for the first time publicly disclosed the results of an insider trading investigation, naming an editor for YouTube's biggest creator as the offender. The company identified Artem Kaptur, an editor for MrBeast, who it says traded around $4,000 on markets tied to the streamer and achieved "near-perfect trading success" on low-odds bets -- a pattern investigators flagged as suspicious. Kalshi froze Kaptur's account before he could withdraw any profits, fined him $20,000, suspended him for two years, and reported the case to the CFTC.

Read more of this story at Slashdot.

GPU giant sees yet more growth coming soon, most of it in the datacenter

Nearly three months after the Trump administration allowed Nvidia to sell its H200 accelerator in China, the GPU giant is still waiting for Beijing to allow them in and for any revenue to materialize.…

Anthropic fixed the flaws - but the AI-enabled attack surfaces remain

Security vulnerabilities in Claude Code could have allowed attackers to remotely execute code on users' machines and steal API keys by injecting malicious configurations into repositories, and then waiting for a developer to clone and open an untrustworthy project.…

You'll find these days that there's no hiding place

Add privacy to the list of potential casualties caused by the proliferation of AI, because researchers have found that large language models (LLMs) can be used to deanonymize internet users – even those who use pseudonyms – more efficiently than human sleuths.…

Tech companies ranging from 300-person startups to giants like Amazon, Google, Meta, Microsoft and Salesforce have moved beyond encouraging employees to use AI tools and are now actively tracking adoption and, in several cases, tying it to performance reviews. Google is factoring AI use into some software engineer reviews for the first time this year, and Meta's new performance review system will do the same -- it can track how many lines of code an engineer wrote with AI assistance. Amazon Web Services managers have dashboards showing individual engineer AI-tool usage and consider adoption when evaluating promotions. About 42% of tech-industry workers said their direct manager expects AI use in daily work as of last October, up from 32% eight months earlier, according to AI consulting firm Section. At software maker Autodesk, CEO Andrew Anagnost acknowledged that some employees had been using initially blocked coding tools like Cursor stealthily -- and warned that AI holdouts "probably won't survive long term."

Read more of this story at Slashdot.

Claude, ChatGPT, and Gemini all had different personalities and reasoning tactics, but the endgame was the same

Today's hottest bots have yet to learn that, when it comes to global thermonuclear war, the only way to win is not to play. So please don't hand them the codes. …

An anonymous reader shares a report: Brian Merchant, writing for Blood in the Machine, reports that people across the United States are dismantling and destroying Flock surveillance cameras, amid rising public anger that the license plate readers aid U.S. immigration authorities and deportations. Flock is the Atlanta-based surveillance startup valued at $7.5 billion a year ago and a maker of license plate readers. It has faced criticism for allowing federal authorities access to its massive network of nationwide license plate readers and databases at a time when U.S. Immigration and Customs Enforcement is increasingly relying on data to raid communities as part of the Trump administration's immigration crackdown. Flock cameras allow authorities to track where people go and when by taking photos of their license plates from thousands of cameras located across the United States. Flock claims it doesn't share data with ICE directly, but reports show that local police have shared their own access to Flock cameras and its databases with federal authorities. While some communities are calling on their cities to end their contracts with Flock, others are taking matters into their own hands.

Read more of this story at Slashdot.

UNC2814 historically targets governments and telcos

A China-linked crew found a unique formula for attacking telcos and government orgs across the Americas, Asia, and Africa in its latest round of intrusions. Google's threat intelligence, along with unnamed industry partners, disrupted the gang, which used the Chocolate Factory's own spreadsheet tools as part of its exploits.…