news aggregator

ByBit attack doing some seriously heavy lifting

North Korea's yearly cryptocurrency thefts have accelerated, with Kim's state-backed cybercriminals plundering just over $2 billion worth of tokens in 2025.…

The UK Met Office projects that 2026 will see global temperatures rise between 1.34C and 1.58C above preindustrial levels, placing it among the four hottest years since records began in 1850 and continuing a streak of extreme warming that has pushed the planet into unprecedented territory. The central forecast is slightly cooler than the 1.55C recorded in 2024, the warmest year on record. But climate scientist Adam Scaife, who led the forecast, noted that "the last three years are all likely to have exceeded 1.4C" and 2026 would be the fourth consecutive year to do so. "Prior to this surge, the previous global temperature had not exceeded 1.3C," he said. The forecast suggests another temporary exceedance of the 1.5C threshold set by the Paris Agreement is possible in 2026, following the first such breach in 2024. The 1.5C target is measured as a 30-year average, so it remains technically achievable even as individual years cross the line. EU scientists said last week that 2025 is "virtually certain" to rank as the second or third-hottest year on record.

Read more of this story at Slashdot.

Apple has announced a sweeping set of changes to iOS in Japan that will allow alternative app marketplaces, third-party payment processing, and non-WebKit browser engines -- all to comply with Japan's Mobile Software Competition Act, which takes effect December 18. The changes, now available in iOS 26.2, bear a strong resemblance to Apple's compliance measures for the European Union's Digital Markets Act but differ in key ways. Japanese developers who want to offer alternative payment options must display them alongside Apple's in-app purchase system, giving users a choice at checkout rather than replacing Apple's option entirely. Apps cannot be distributed directly from websites as they can in the EU; they must go through an authorized marketplace. Apple has established a tiered fee structure for the new arrangements. Apps distributed through the App Store using in-app purchase will pay between 15 and 26% depending on whether developers qualify for the Small Business Program. Alternative payment processing drops the 5% payment fee but keeps the base commission. Apps distributed outside the App Store pay a flat 5% Core Technology Commission on digital goods and services. The company introduced several user-facing changes beyond app distribution. iPhone users in Japan will see browser and search engine choice screens during device setup, can assign third-party voice assistants to the side button, and can select alternative default navigation apps. Apple said it worked closely with Japanese regulators on protections for younger users. Apps in the Kids category cannot link to external websites for purchases, and users under 13 cannot access web links for transactions in any app. An Apple spokesperson told Bloomberg that the company has no plans to extend these changes to other markets.

Read more of this story at Slashdot.

The world's best-performing stock is turning into a cautionary tale for investors chasing outsized returns from the AI boom. From a report: Little-known until recently even within its home market of India, RRP Semiconductor Ltd. became a social-media obsession as its shares surged more than 55,000% in the 20 months through Dec. 17 -- by far the biggest gain worldwide among companies with a market value above $1 billion. That's despite posting negative revenue in its latest financial results, reporting just two full-time employees in its latest annual report, and boasting only a tenuous link to the semiconductor spending boom after shifting away from real estate in early 2024. A mix of online hype, a tiny free float and India's swelling base of retail investors drove 149 straight limit-up sessions, even as exchange officials and the company itself cautioned investors. The rally is now showing signs of strain -- and regulators are taking a closer look. The Securities and Exchange Board of India has begun examining the surge in RRP's shares for potential wrongdoing, according to a person familiar with the matter who asked not to be identified discussing confidential information. The $1.7 billion stock, recently restricted by its exchange to trading just once a week, has fallen by 6% from its Nov. 7 peak.

Read more of this story at Slashdot.

Micron, one of the world's three largest memory suppliers, expects the global shortage of DRAM and NAND flash memory to "persist through and beyond" 2026 as AI-driven demand continues to outstrip supply. CEO Sanjay Mehrotra made the forecast during the company's latest earnings call on Wednesday, saying that "supply will remain substantially short of the demand for the foreseeable future." The company posted record quarterly revenue of $13.64 billion, up from $8.71 billion in the same period last year. Micron recently shuttered Crucial, its consumer-facing brand, to focus on high-bandwidth memory for AI data centers. HBM technology requires three times the silicon wafers of standard DRAM, leaving fewer resources for the chips that go into PCs, smartphones and cars. Micron plans to boost DRAM and NAND shipments by 20 percent next year but acknowledged this won't meet demand. New facilities in Idaho and New York are slated for 2027 and 2030 respectively.

Read more of this story at Slashdot.

Bruce66423 writes: A man boarded a flight at Heathrow without a ticket, boarding pass or passport. 'The unnamed individual walked onto the 7.20am British Airways (BA) flight to Oslo, Norway, on Saturday after tailgating other passengers through security and evading checks at the departure gate. An aviation expert described the incident as a "significant lapse in security", as a witness reported that cabin crew only detected the interloper because the flight was full and he kept sitting in passengers' assigned seats. Police arrested the unnamed man, airport sources said, adding that he had passed through "full security screening" before reaching the gate. Given that he did go through the security check, this is merely embarrassing. Compare and contrast with this episode.

Read more of this story at Slashdot.

Flaw in remote-access appliance lets attackers chain bugs for root-level takeover

SonicWall has warned customers of a zero-day flaw in its SMA 1000 remote-access appliance that's being actively exploited, potentially allowing attackers to escalate privileges and take over boxes.…

Chinese scientists have built a working prototype of an extreme ultraviolet lithography machine in a high-security Shenzhen laboratory, a development that represents exactly what Washington has spent years and multiple rounds of export controls trying to prevent: China's path toward semiconductor independence and an end to the West's monopoly on the technology that powers AI, smartphones and advanced weapons systems. The prototype, completed in early 2025 by former ASML engineers who reverse-engineered the Dutch company's machines, is operational and generating EUV light, though it has not yet produced working chips. The effort is part of a six-year secret government initiative that sources described to Reuters as China's version of the Manhattan Project. Huawei is coordinating thousands of engineers across companies and state research institutes, and recruits are working under false identities inside secure facilities. The Chinese government is targeting 2028 for producing working chips, though sources say 2030 is more realistic -- still years earlier than the decade analysts had predicted it would take China to match the West.

Read more of this story at Slashdot.

Justice Department claims unlicensed exchange funneled ransomware profits

US feds have dismantled a crypto laundering service that they say helped cybercrooks wash tens of millions of dollars in dirty digital cash, seizing its servers and unsealing charges against an alleged Russian operator.…

Billionaire space tourist inherits troubled agency facing budget chaos, workforce cuts, and a Moon race against China

NASA has a new administrator. Billionaire and space tourist Jared Isaacman was confirmed by the US Senate by a vote of 67 to 30.…

Around 2,000 GP practices use its products

An NHS tech supplier is investigating a cyberattack that affected its systems in the early hours of Sunday.…

An anonymous reader quotes a report from 404 Media: Doublespeed, a startup backed by Andreessen Horowitz (a16z) that uses a phone farm to manage at least hundreds of AI-generated social media accounts and promote products has been hacked. The hack reveals what products the AI-generated accounts are promoting, often without the required disclosure that these are advertisements, and allowed the hacker to take control of more than 1,000 smartphones that power the company. The hacker, who asked for anonymity because he feared retaliation from the company, said he reported the vulnerability to Doublespeed on October 31. At the time of writing, the hacker said he still has access to the company's backend, including the phone farm itself. "I could see the phones in use, which manager (the PCs controlling the phones) they had, which TikTok accounts they were assigned, proxies in use (and their passwords), and pending tasks. As well as the link to control devices for each manager," the hacker told me. "I could have used their phones for compute resources, or maybe spam. Even if they're just phones, there are around 1100 of them, with proxy access, for free. I think I could have used the linked accounts by puppeting the phones or adding tasks, but haven't tried." As I reported in October, Doublespeed raised $1 million from a16z as part of its "Speedrun" accelerator program, "a fastpaced, 12-week startup program that guides founders through every critical stage of their growth." Doublespeed uses generative AI to flood social media with accounts and posts to promote certain products on behalf of its clients. Social media companies attempt to detect and remove this type of astroturfing for violating their inauthentic behavior policies, which is why Doublespeed uses a bank of phones to emulate the behavior of real users. So-called "click farms" or "phone farms" often use hundreds of mobile phones to fake online engagement of reviews for the same reason. [...] I've seen TikTok accounts operated by Doublespeed promote language learning apps, dating apps, a Bible app, supplements, and a massager.

Read more of this story at Slashdot.

Security boffins warn flaw is now being used for ransomware attacks against live networks

Microsoft says attackers have already compromised "several hundred machines across a diverse set of organizations" via the React2Shell flaw, using the access to execute code, deploy malware, and, in some cases, deliver ransomware.…

Gov wants broadcaster to revive 1980s computer literacy magic – and maybe flog its archives to tech giants

The UK government wants the BBC to help Brits understand AI and develop basic technology skills as part of the public broadcaster's next charter period.…

U.S. video game hardware spending fell 27% year over year in November to $695 million, according to market analyst company Circana. "This is the lowest video game hardware spending total for a November month since the $455 million reached during the November 2005 tracking period," Circana says. Furthermore, only 1.6 million units of hardware were sold in the U.S. in November, which is "the lowest total for a November month since 1995 (1.4 million)." The Verge reports: The rising costs of consoles probably didn't help. The PlayStation 5 and Xbox Series of consoles both turned five in November, but customers looking to pick up one of the consoles brand new are having to grapple with higher prices following price hikes this year. Those hikes have led to an "all-time November high" for the average price paid for a new unit of video game hardware of $439, Circana says -- a number that's up 11 percent from 2024. (In November 2019, the average price was $235, according to Circana analyst Mat Piscatella.)

Read more of this story at Slashdot.

18-year-old platform crumbles under 94M daily requests while resellers flog £62 tests for £500

The UK's Driver and Vehicle Standards Agency (DVSA) has appointed a new chief exec to tackle spiraling waits for practical driving tests with bots overrunning its aging booking system.…

Investigatory Powers Commissioner says reforms have failed to close oversight gaps

The UK's Investigatory Powers Act 2016 (IPA) has several regulatory gaps that must be plugged in future legislative reforms, according to Investigatory Powers Commissioner (IPC) Sir Brian Leveson.…

MPs press minister for answers – and get few

If UK readers are perplexed by the country's seemingly shambolic state of broadband and telecoms, relative to other European nations, insight can be gleaned from a one-off evidence session conducted by Parliament.…

Longtime Slashdot reader schwit1 shares a report from Ars Technica: Every other week, it seems, a new Chinese launch company pops up with a rocket design and a plan to reach orbit within a few years. For a long time, the majority of these companies revealed designs that looked a lot like SpaceX's Falcon 9 rocket. The first of these copy cats, the medium-lift Zhuque-3 rocket built by LandSpace, launched earlier this month. Its primary mission was nominal, but the Zhuque-3 rocket failed its landing attempt, which is understandable for a first flight. Doubtless there will be more Chinese Falcon 9-like rockets making their debut in the near future. However, over the last year, there has been a distinct change in announcements from China when it comes to new launch technology. Just as SpaceX is seeking to transition from its workhorse Falcon 9 rocket -- which has now been flying for a decade and a half -- to the fully reusable Starship design, so too are Chinese companies modifying their visions. The trend began with the Chinese government. In November 2024 the government announced a significant shift in the design of its super-heavy lift rocket, the Long March 9. Instead of the previous design, a fully expendable rocket with three stages and solid rocket boosters strapped to the sides, the country's state-owned rocket maker revealed a vehicle that mimicked SpaceX's fully reusable Starship. Around the same time, a Chinese launch firm named Cosmoleap announced plans to develop a fully reusable "Leap" rocket within the next few years. An animated video that accompanied the funding announcement indicated that the company seeks to emulate the tower catch-with-chopsticks methodology that SpaceX has successfully employed. But wait, there's more. In June a company called Astronstone said it too was developing a stainless steel, methane-fueled rocket that would also use a chopstick-style system for first stage recovery. Astronstone didn't even pretend to not copy SpaceX, saying it was "fully aligning its technical approach with Elon Musk's SpaceX." And then, on Friday, the state-aligned China.com reported that a company called "Beijing Leading Rocket Technology" took things a step further. It has named its vehicle "Starship-1," adding that the new rocket will have enhancements from AI and is billed as a "fully reusable AI rocket."

Read more of this story at Slashdot.

World Summit on the Information Society resolves the world needs a permanent forum to discuss how we manage the 'Net

The United Nations General Assembly on Wednesday reached consensus on a review of the world’s internet governance arrangements and preserved the current multi-stakeholder model that means governments are just one of many voices that debate the future of the internet.…