Linux fréttir

Shadowserver claims miscreants were already poking at a critical hole in early July, long before Switchzilla patched it

Threat actors have actively exploited a newly patched vulnerability in Cisco's Identity Services Engine (ISE) software since early July, weeks before the networking giant got around to issuing a fix.…

Microsoft CEO Satya Nadella addressed growing internal unease at the company Thursday morning in a company-wide memo that acknowledged the "uncertainty and seeming incongruence" of conducting layoffs while achieving record profits and AI investments. The tech giant has eliminated more than 15,000 positions in 2025, including 9,000 cuts in early July alone, marking one of the most aggressive periods of job reductions in Microsoft's history. Nadella described this as the "enigma of success in an industry that has no franchise value," noting that Microsoft is thriving by "every objective measure" with strong market performance and record capital investments. "Progress isn't linear. It's dynamic, sometimes dissonant, and always demanding. But it's also a new opportunity for us to shape, lead through, and have greater impact than ever before," he added. Microsoft President Brad Smith said that an estimated $80 billion in capital expenditures over the past year created pressure to reduce operating costs.

Read more of this story at Slashdot.

Boffins insist your deepfake tracking tech won't work

Computer scientists with the University of Waterloo in Ontario, Canada, say they've developed a way to remove watermarks embedded in AI-generated images.…

A Chinese inventor with no medical training is charging cancer patients $20,000 to inject highly concentrated chlorine dioxide -- a toxic bleach solution -- directly into their tumors, and is working with a former pharmaceutical executive to bring the unproven treatment to the United States, Wired reports. Xuewu Liu uses injections containing 20,000 parts per million of chlorine dioxide, significantly higher than the 3,000 ppm concentrations typically found in oral bleach solutions peddled by pseudoscience promoters. One patient told WIRED her tumor grew faster after Liu's injections and suspects the treatment caused her cancer to spread to her skin.

Read more of this story at Slashdot.

Verizon and AT&T customers can now buy D2C connections à la carte from the magenta monster

T-Mobile's Starlink-to-cellphone service is now out of beta – and the company is using the opportunity to woo customers from other providers by offering à la carte satellite services to AT&T and Verizon customers.…

Let the games begin

Ransomware has officially entered the Microsoft SharePoint exploitation ring.…

An anonymous reader shares a report: Surveys show that the increasing number of extreme climate events, including floods, wildfires and hurricanes, has not raised awareness of the threats posed by climate change. Instead, people change their idea of what they see as normal. This so-called "boiling frog effect" makes gradual change difficult to spot. Researchers at Carnegie Mellon University in Pennsylvania wondered if climate change could be made more obvious by presenting it in binary terms. Local newspaper archives describing ice skating on Lake Carnegie when it froze in winter inspired a simple experiment. Some test subjects were shown temperature graphs of a fictional town's winter conditions; others had a chart showing whether or not a fictional lake froze each year. The result, published in Nature, showed those who receiving the second graphic consistently saw climate change as more real and imminent. Binary data gives a clearer impression of the "before" and "after." The disappearing ice is more vivid and dramatic than a temperature trace, even though the underlying data is the same. "We are literally showing them the same trend, just in different formats," says Rachit Dubey, a co-author of the study. These results should help drive more effective ways of communicating the impact of climate change in future by finding simple binary, black-and-white examples of its effects.

Read more of this story at Slashdot.

So says a study by boffins at Carnegie Mellon University

Researchers at Carnegie Mellon University have likened today's large language model (LLM) chatbots to "that friend who swears they're great at pool but never makes a shot" - having found that their virtual self-confidence grew, rather than shrank, after getting answers wrong.…

Massive mobile device tracking data has exposed the interconnected network of Myanmar's expanding scam centers, revealing how trafficked workers circulate between compounds despite February crackdowns. Analysis of 4.9 million location records from 11,930 mobile devices between January 2024 and May 2025 showed five devices visited all three major compounds -- Yatai New City, Apolo Park, and Yulong Bay Park -- plus the raided KK Park and Huanya Park facilities. Workers are forced into romance scams, deceiving victims into believing they're in romantic relationships before extracting money. A South Asian man held six months at KK Park worked 16 hours daily conducting these online deceptions while enduring beatings and electric shocks for poor performance. Nikkei's investigation combined satellite imagery analysis, social media posts from Chinese platform Douyin, and open-source intelligence techniques to document continued construction at eight of 16 suspected sites. Myanmar authorities deported over 66,000 foreign nationals involved in these online fraud operations between October 2023 and June 2025.

Read more of this story at Slashdot.

Some coyotes hunt squirrels, this one hunts users' financial apps

A new variant of the Coyote banking trojan abuses Microsoft's UI Automation (UIA), making it the first reported malware to use UIA for credential theft.…

The Ninth Circuit Court of Appeals has ruled that NFTs qualify as "goods" under the Lanham Act, entitling them to trademark protection. The decision in Yuga Labs v. Ryder Ripps establishes that brand owners can sue NFT copycats with the same legal tools used against counterfeit sneakers or handbags.

Read more of this story at Slashdot.

Palantir, data brokers, and judicial overreach are all on the horizon, executive director Cindy Cohn warns

Interview In July 1990, before the World Wide Web even existed, an unusual alliance was formed to fight for the rights of the emerging online community.…

Board game crowdfunding platform Gamefound is acquiring Indiegogo, planning to integrate the latter's 38 million global members with its crowdfunding technology. Both platforms will continue operating separately, though Gamefound campaigns will appear on both sites for additional exposure. Indiegogo will immediately adopt Gamefound's flat 5% fee structure with no additional promotional charges, replacing its current pricing model. The platform will also implement Gamefound's tipping policy that directs 100% of tips to creators outside the checkout process.

Read more of this story at Slashdot.

Malicious actor reportedly sought to expose AWS 'security theater'

The official Amazon Q extension for Visual Studio Code (VS Code) was compromised to include a prompt to wipe the user's home directory and delete all their AWS resources.…

A cyber-espionage campaign exploiting vulnerable Microsoft server software has escalated to deploying ransomware against victims, Microsoft said, marking a significant shift from typical state-backed data theft operations to attacks designed to paralyze networks until payment is made. The campaign by a group Microsoft calls "Storm-2603" has compromised at least 400 organizations, according to Netherlands-based cybersecurity firm Eye Security, quadrupling from 100 victims cataloged over the weekend. The National Institutes of Health confirmed one server was breached and additional servers were isolated as a precaution, while reports indicate the Department of Homeland Security and multiple other federal agencies were also compromised.

Read more of this story at Slashdot.

Subsidy cliff edge and tariffs threaten Musk biz, but being caught between luxury and mass market may be a worse fate

Opinion Speaking to Tesla investors last night, CEO Elon Musk was optimistic about the future of his automotive manufacturer.…

If it passes, the law would redefine the boundaries of fair use

A bipartisan pair of US Senators introduced a bill this week that would protect copyrighted content from being used for AI training without the owner's permission. Content creators from large media companies to individual bloggers could effectively block Google, Meta, OpenAI, Anthropic, and others from appropriating their work.…

An anonymous reader quotes a report from The Register: Some customers of Broadcom's VMware business currently cannot access security patches, putting them at greater risk of attack. Customers in that perilous position hold perpetual licenses for VMware products but do not have a current support contract with Broadcom, which will not renew those contracts unless users sign up for software subscriptions. Yet many customers in this situation run products that Broadcom continues to support with patches and updates. In April 2024, Broadcom CEO Hock Tan promised "free access to zero-day security patches for supported versions of vSphere" so customers "are able to use perpetual licenses in a safe and secure fashion." VMware patches aren't freely available; users must log on to Broadcom's support portal to access the software. Some VMware users in this situation have told The Register that when they enter the portal they cannot download patches, and that VMware support staff have told them it may be 90 days before the software fixes become available. "Because our support portal requires validation of customer entitlements for software patches, only entitled customers have access to the patches at this time," a VMware spokesperson said. "A separate patch delivery cycle will also be available for non-entitled customers and will follow at a later date." The timing of that "later date" remains uncertain. The Register also notes that "users haven't had access to patches since May."

Read more of this story at Slashdot.

'Industry, national governments, and the EU' must pay for maintainers. El Reg says charity shouldn't start at home

GitHub, owned by money-bags Microsoft, has called upon the European Union to create a publicly funded "Sovereign Tech Fund" (EU-STF) to boost the open source software ecosystem.…

You don't become a 'superpower' overnight

Significant hurdles stand in the way of the UK government's push to become a global AI superpower, including energy constraints, planning difficulties and the datacenter investment required for it all.…