Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

Cybercriminals Use Modified Salesforce Data Loader for Data Theft

2025-06-04
Cybercriminals Use Modified Salesforce Data Loader for Data Theft

The Google Threat Intelligence Group (GTIG) has uncovered a cybercriminal group, tracked as UNC6040, that uses sophisticated voice phishing to trick employees into installing a modified Salesforce Data Loader. This allows them to steal large amounts of sensitive data from approximately 20 organizations across various sectors in the Americas and Europe. The attackers convincingly impersonate IT support, guiding victims through the connection process to link the malicious Data Loader. Following data exfiltration from Salesforce, UNC6040 often laterally moves through the network, accessing and stealing data from other platforms like Okta, Workplace, and Microsoft 365. In some cases, extortion attempts followed months later, suggesting potential partnerships with other threat actors. Salesforce has issued guidance to help customers protect themselves against similar attacks.

Read more
(www.theregister.com)
Tech

Windows Kernel Address Leak: A Race Against Time

2025-09-12
Windows Kernel Address Leak: A Race Against Time

While analyzing the patch for CVE-2024-43511, a security researcher discovered a new Windows kernel address leak vulnerability. This vulnerability exploits a race condition in the RtlSidHashInitialize() function, allowing attackers to read a kernel address within a small time window. While requiring a race condition, the success rate is high, easily chaining with other vulnerabilities for complete privilege escalation. This vulnerability specifically targets Windows 11/Windows Server 2022 24H2 and later, bypassing Microsoft's previous measures to prevent kernel address leaks. The researcher reported the vulnerability to Microsoft, ultimately assigned CVE-2025-53136.

Read more
(www.crowdfense.com)
Tech race condition

Lyon Ditches Microsoft, Embraces Open Source for Digital Sovereignty

2025-06-25
Lyon Ditches Microsoft, Embraces Open Source for Digital Sovereignty

The city of Lyon is phasing out Microsoft software, opting for open-source alternatives like OnlyOffice, Linux, and PostgreSQL to reduce reliance on US tech and strengthen digital sovereignty. This move utilizes the 'Territoire Numérique Ouvert' suite, developed with SITIV and Lyon Metropolis, already used by thousands across nine local governments. Lyon joins Copenhagen and Aarhus in this trend, highlighting a growing push for public-sector tech autonomy in Europe.

Read more
(digitrendz.blog)
Tech Lyon

HTTPX Fiber Concurrency Plugin: Seamlessly Share Connections Across Fibers

2025-09-05

The HTTPX :fiber_concurrency plugin allows a single session's connections to be used across fibers managed by a fiber scheduler, ideal for long-lived connections. It's required by default when using the :persistent plugin. Example code shows launching multiple fibers within a thread, each concurrently using `http.get()` to access a URL. This plugin is essential for programs using fiber schedulers, such as those built with the async gem.

Read more
(honeyryderchuck.gitlab.io)
Development

Ne Zha 2 Shatters Box Office Records, Ushering in a New Era for Chinese Animation

2025-02-12
Ne Zha 2 Shatters Box Office Records, Ushering in a New Era for Chinese Animation

The Chinese animated film "Ne Zha 2" has taken the Chinese box office by storm, becoming the first film to surpass $1 billion in a single market and the first non-Hollywood title to join the coveted billion-dollar club. In just eight days and five hours, it shattered the box office record previously held by "The Battle at Lake Changjin," becoming China's highest-grossing film of all time. The next day, it surpassed "Star Wars: The Force Awakens" to become the highest-grossing film ever in a single market. Its success stems from its stunning visuals, captivating storytelling, and deep cultural resonance, resonating with audiences on a profound level. This triumph injects a much-needed boost into the Chinese film industry and sets a new benchmark for Chinese animation on the global stage.

Read more
(www.globaltimes.cn)
Game Ne Zha 2 Chinese Animation Box Office Chinese animation Box Office Record

The Layoff Lie: Why Companies Keep Doing It Despite the Evidence

2025-03-09
The Layoff Lie: Why Companies Keep Doing It Despite the Evidence

From the airline industry's post-9/11 layoffs to the 2023 tech sector bloodbath, corporate downsizing has become commonplace. Yet, research consistently shows layoffs damage company culture, morale, and productivity, often failing to deliver promised financial gains and even increasing bankruptcy risk. This article traces the roots of this practice back to the 1980s, when shareholder value maximization became paramount, and aggressive CEO strategies popularized mass layoffs. The long-term consequences are overwhelmingly negative, highlighting the need for alternatives such as delaying purchases, reducing hours, or implementing furloughs.

Read more
(thehustle.co)
Startup corporate management

TapTrap Attack: Users Struggle to Detect Stealthy Permission Grabs

2025-07-23

A user study with 20 participants evaluated the detectability of TapTrap attacks during typical app interactions. Participants played KillTheBugs, a game embedding three TapTrap scenarios targeting location, camera, and device admin permissions. They played twice: once blind, once informed of potential attacks. Results showed low detection rates, even with visible indicators like a camera icon (only 4/20 noticed it initially). Location and device admin attacks went largely unnoticed even after being warned. The study highlights TapTrap's stealth and the need for improved security indicators.

Read more
(taptrap.click)
Tech user study

Meta Found Guilty of Accessing Sensitive Data from Women's Health App

2025-08-14
Meta Found Guilty of Accessing Sensitive Data from Women's Health App

A jury ruled that Meta accessed sensitive information from Flo Health, a women's reproductive health tracking app, without consent. Flo Health collected highly personal data, including menstrual cycles, mood swings, and sexual activity, sharing it with companies like Facebook and Google. This case highlights serious data privacy concerns, particularly after the overturning of abortion rights in the US, increasing risks to women's reproductive health information. The verdict raises concerns about other apps' data-sharing practices and the balance between technological convenience and potential dangers.

Read more
(www.malwarebytes.com)
Tech

OpenAI's AI Model Revolutionizes Stem Cell Reprogramming

2025-01-18
OpenAI's AI Model Revolutionizes Stem Cell Reprogramming

OpenAI, in collaboration with longevity research firm Retro Biosciences, has developed a fine-tuned language model, GPT-4b micro, that significantly improves stem cell reprogramming efficiency. By redesigning Yamanaka factor proteins, the model achieved over 50 times improvement in converting cells into stem cells. This groundbreaking research marks a milestone in AI's contribution to scientific discovery, offering new hope for anti-aging research and regenerative medicine. While the exact mechanism remains under investigation, the results are promising.

Read more
(www.technologyreview.com)
AI Stem Cells

Sheepdogs, Physics, and the Algorithmic Control of Unpredictable Swarms

2025-08-10
Sheepdogs, Physics, and the Algorithmic Control of Unpredictable Swarms

Two biophysicists studied how sheepdogs control sheep, discovering that they exploit, rather than suppress, the sheep's randomness. Through observation of trials and mathematical modeling, they found sheepdogs use a two-step process: nudging and then approaching. This inspired an algorithm predicting behavior in small, erratic groups, potentially applicable to robot and drone swarms. While the model has limitations, this research offers new perspectives on collective control strategies.

Read more
(nautil.us)
AI collective behavior

Running Steam on an Orange Pi 5 Plus: A Ludicrously Neat Experiment

2025-03-23
Running Steam on an Orange Pi 5 Plus: A Ludicrously Neat Experiment

The author details a six-step process for installing Steam on an Orange Pi 5 Plus, involving Armbian installation, adding Box86/64 repositories, installing dependencies, and further configuration. While successful, performance is inconsistent, with most tested games running at 720p and barely exceeding 30 FPS. The author concludes it's more a fun technical challenge than a practical gaming solution, although future improvements from Collabora and Valve's ARM initiatives might change that.

Read more
(interfacinglinux.com)
Hardware

EdaMagit: Magit for VSCode – Streamline Your Git Workflow

2025-05-29
EdaMagit: Magit for VSCode – Streamline Your Git Workflow

EdaMagit brings the power and efficiency of Magit to VSCode. This keyboard-driven Git interface lets you manage your repositories with ease, offering quick access to status, file operations, branching, committing, merging, and more. It even includes Forge support for viewing pull requests and issues. Highly customizable keybindings allow you to tailor the experience to your preferences, including mimicking Evil-Magit/Spacemacs styles. While some features are still under development, EdaMagit offers a compelling alternative for boosting your Git productivity within VSCode.

Read more
(github.com)
Development

Shocking Link Found Between ADHD and Shorter Lifespan

2025-01-23
Shocking Link Found Between ADHD and Shorter Lifespan

A new study of over 30,000 UK adults with ADHD reveals a startling connection: a significantly shorter life expectancy and increased risk of mental health issues. Men with ADHD experienced a life expectancy reduction of 4.5 to 9 years, while women saw a decrease of 6.5 to 11 years. Researchers suggest this could be due to inadequate support and treatment, or potentially factors predating birth or early childhood. The findings highlight the urgent need for improved healthcare and interventions for individuals with ADHD to enhance their quality of life and lifespan.

Read more
(edition.cnn.com)
Tech lifespan

Mazda's CX-5 Goes Touchscreen: Balancing Tech and Safety

2025-07-11
Mazda's CX-5 Goes Touchscreen: Balancing Tech and Safety

Mazda, a long-time holdout against touchscreen infotainment, is finally embracing the technology in its redesigned CX-5. This isn't just a skin-deep change; it's a ground-up redesign powered by Google's built-in technology, integrating Google Maps, the Play Store, and the Google Assistant. However, Mazda remains committed to its 'hands on the wheel, eyes on the road' philosophy. A redesigned steering wheel features physical buttons for critical functions, aiming to balance the convenience of a large touchscreen with driver safety.

Read more
(www.thedrive.com)
Tech Mazda Touchscreen Infotainment

Simplifying LLM-Kafka Interaction with a Multiplexing MCP Tool

2025-04-21

This post details `kafka-mcp-server`, an LLM interface for Apache Kafka built using the Model Context Protocol (MCP). The author found that simple actions often required multiple MCP tool calls, leading to the development of a multiplexing tool. This tool allows for the simultaneous execution of multiple tools, using PROMPT_ARGUMENTs to pass results from earlier tools as arguments to later ones. This simplifies workflows involving sequential tool calls, such as listing Kafka topics, reading messages, and creating topic duplicates. Future plans include adding Lua interpretation and branching logic for enhanced functionality.

Read more
(cefboud.com)
Development

Lyme Disease Breakthrough: New Antibiotic and Understanding Chronic Symptoms

2025-05-06
Lyme Disease Breakthrough: New Antibiotic and Understanding Chronic Symptoms

Northwestern University researchers have identified piperacillin, an antibiotic significantly outperforming doxycycline, the current gold standard for Lyme disease treatment. Piperacillin cured Lyme disease in mice at a dosage 100 times lower than doxycycline, with minimal impact on gut microbiota. Furthermore, the research uncovered a potential cause for Post-Treatment Lyme Disease (PTLD): lingering Borrelia cell wall remnants in the liver triggering an immune response. This discovery paves the way for more precise Lyme disease diagnostics, treatments, and strategies to prevent chronic symptoms.

Read more
(news.northwestern.edu)
Tech Lyme Disease Antibiotic Chronic Illness

How Ideas Shape Historical Change: A Century-Spanning Ideological Struggle

2025-03-13
How Ideas Shape Historical Change: A Century-Spanning Ideological Struggle

This essay explores the role of ideas in major historical transformations. From religion to the Enlightenment and neoliberalism, the author analyzes how different ideologies have emerged, evolved, and impacted historical processes. Some ideologies, like Marxism, have exerted immense mobilizing power due to their rigorous theoretical frameworks during specific historical periods; others, such as neoliberalism, have achieved global influence through their control over economic foundations. The author argues that the Left needs to develop a systematic and uncompromising ideology capable of challenging the existing order to effectively participate in future historical changes.

Read more
(newleftreview.org)
Misc historical change political thought

Singaporean Urban Design: Where Structure Meets Spirit

2025-06-13
Singaporean Urban Design: Where Structure Meets Spirit

This interview features Calvin Chua, founder of Spatial Anatomy in Singapore, discussing how he integrates design, research, and advocacy into challenging global contexts. Chua's work focuses on the hidden forces shaping urban development, such as the unique ownership structures of Singapore's "strata malls" and a replicated North Korean apartment project revealing everyday life realities. He highlights different models of adaptive reuse, from large-capital projects to community-led efforts, emphasizing that successful adaptive reuse requires understanding both the structure and spirit of a building—neither can be neglected. Chua's experience ranges from urban planning training in North Korea to curating Singapore Archifest 2023, showcasing his profound insights into urban development.

Read more
(www.governance.fyi)
Design adaptive reuse

Racket Library for Elegant HTML5 Generation

2025-01-12

The `html-printer` library for Racket provides an elegant way to generate well-formatted HTML5 code. Its core function, `xexpr->html5`, converts X-expressions to HTML5 strings with automatic indentation and line wrapping, allowing customization of column width. It's Unicode-aware, correctly handling character lengths, and optionally adds line breaks between tags for improved readability and maintainability. Ideal for creating semantically clean and structurally sound HTML5.

Read more
(joeldueck.com)
Development

Open Source PebbleOS Smartwatches Are Back: Core 2 Duo and Core Time 2 Pre-orders Open

2025-03-18
Open Source PebbleOS Smartwatches Are Back: Core 2 Duo and Core Time 2 Pre-orders Open

rePebble has announced two new smartwatches running open-source PebbleOS: the Core 2 Duo and the Core Time 2. The Core 2 Duo features an ultra-crisp black and white display, a polycarbonate frame, costs $149, and starts shipping in July. The Core Time 2 boasts a larger 64-color display, a metal frame, costs $225, and begins shipping in December. Both watches are inspired by the classic Pebble design, offering long battery life, a simple and beautiful aesthetic, and compatibility with thousands of existing Pebble apps. Available exclusively for pre-order on the rePebble website, quantities are limited.

Read more
(ericmigi.com)
Hardware

XLibre: A Rebellious Fork of X11 Challenges Wayland's Dominance

2025-06-29
XLibre: A Rebellious Fork of X11 Challenges Wayland's Dominance

Frustrated by Wayland's slow progress and shortcomings, developer Enrico Weigelt launched XLibre, a deep improvement of X11. XLibre isn't just a simple branch; it's a complete overhaul aimed at fixing Wayland's flaws and offering superior performance and security. Weigelt claims he was ousted from the Xorg project by Red Hat, sparking industry debate about Red Hat's control over Linux development. Surprisingly, Fedora, a Red Hat derivative, is considering replacing X11 with XLibre. XLibre's future remains uncertain, but it's undeniably injected new variables into the Linux desktop world.

Read more
(www.webpronews.com)
Development

Windows 11's Blue Screen of Death Gets a Makeover

2025-03-31
Windows 11's Blue Screen of Death Gets a Makeover

Microsoft is revamping the Blue Screen of Death (BSOD) in Windows 11. The new design ditches the classic blue screen, sad face, and QR code for a simpler, black screen reminiscent of Windows update screens. Currently appearing as green in test builds, the final color remains unclear. Microsoft aims for faster user recovery while retaining technical details. This is the first major redesign since the sad face addition in Windows 8. The new BSOD simply states, "Your device ran into a problem and needs to restart."

Read more
(www.theverge.com)
Development BSOD UI redesign

Making Unsafe Rust Safer: Verification Tools for Unsafe Code

2024-12-17
Making Unsafe Rust Safer: Verification Tools for Unsafe Code

Rust's popularity stems from its ability to eliminate memory and concurrency errors at compile time, but its `unsafe` code blocks can bypass these checks. This article explores tools for verifying unsafe Rust code, including code called from C or C++ libraries. It introduces runtime error detection tools—sanitizers—and Miri, an interpreter that deterministically finds undefined behavior. Sanitizers detect out-of-bounds memory access, data races, and more, while Miri provides more precise error reporting with code snippets. However, Miri currently doesn't support code called via FFI from C/C++, necessitating the use of C/C++ compiler sanitizers in such cases. These tools enhance the safety and reliability of Rust code, even when dealing with `unsafe` code or interacting with C/C++ libraries.

Read more
(blog.colinbreck.com)
Development Safety Memory Errors

Who Owns AI-Generated Code? Legal Experts Weigh In

2024-12-24
Who Owns AI-Generated Code? Legal Experts Weigh In

The ownership of code generated by AI like ChatGPT is a complex legal grey area. Experts consulted highlight a lack of clear legal precedent, with ownership hinging on both contract and copyright law. While OpenAI disclaims ownership of generated content, in practice, ownership could fall to the user, the AI developer, or even the providers of the training data. Further complicating matters, the copyrightability of AI-generated code itself is debated; the US Copyright Office suggests the code isn't protectable, but the application incorporating it might be. The situation is legally murky and developers are urged to proceed cautiously.

Read more
(www.zdnet.com)
AI AI code ownership copyright law legal risks

OpenAI Battles NYT Over 120 Million ChatGPT Logs in Copyright Dispute

2025-08-06
OpenAI Battles NYT Over 120 Million ChatGPT Logs in Copyright Dispute

OpenAI is embroiled in a legal battle with the New York Times and other news organizations over copyright infringement. The news organizations demand access to 120 million ChatGPT user conversation logs to prove unauthorized use of their content. OpenAI argues this request is excessive, violating user privacy and delaying the case. Microsoft, a co-defendant, is also involved, with its internal ChatGPT equivalent potentially adding fuel to the fire. The core issue revolves around balancing copyright protection with user privacy and defining fair use in the context of AI models.

Read more
(arstechnica.com)
Tech

Retrograde Planet Found Orbiting Binary Star System Defies Expectations

2025-05-23
Retrograde Planet Found Orbiting Binary Star System Defies Expectations

Years of observation have finally revealed the secrets of Nu Octantis, a binary star system harboring a planet roughly twice the size of Jupiter. This planet uniquely orbits both stars in a retrograde motion, moving against the orbit of one star. This unexpected configuration challenges traditional planetary system models and opens avenues for new research into planetary formation and evolution. The discovery was possible due to improved measurement technologies and years of consistent data confirming the planet's existence. The system further complicates things as one star is a white dwarf, suggesting the planet's current orbit may be a result of either a radical orbital shift following the star's transformation or formation from the star's ejected matter.

Read more
(www.newscientist.com)
Tech retrograde orbit

PlutoPrint: Lightweight Python Library for Generating PDFs and Images from HTML/XML

2025-08-21
PlutoPrint: Lightweight Python Library for Generating PDFs and Images from HTML/XML

PlutoPrint is a lightweight Python library for generating high-quality PDFs and images directly from HTML or XML. Based on PlutoBook's rendering engine, it offers a simple API for creating reports, invoices, or visual snapshots. Use it via command line or Python API; pre-built binaries are available for Windows and Linux 64-bit. It even integrates with Matplotlib for generating and embedding charts.

Read more
(github.com)
Development PDF generation Image generation

Amazon Kills Local Alexa Processing: Privacy Concerns Rise with AI Push

2025-03-18
Amazon Kills Local Alexa Processing: Privacy Concerns Rise with AI Push

Starting March 28, 2025, Amazon will eliminate the local voice processing option for some Echo devices, sending all voice requests to the cloud for analysis. Amazon claims this is necessary for new generative AI features, but the move has sparked privacy concerns. While users previously could choose not to send voice recordings, transcripts were still sent to Amazon's cloud even with this option enabled. This change forces users to choose between privacy and full Alexa functionality, as disabling recording storage disables many personalized features. Amazon assures users this doesn't compromise privacy, but its past record, including using voice data for targeted ads and security breaches, raises doubts.

Read more
(www.theregister.com)
Tech

Model Context Protocol (MCP): The Next Big Thing for LLM Integration—But With a Catch

2025-04-06
Model Context Protocol (MCP): The Next Big Thing for LLM Integration—But With a Catch

Model Context Protocol (MCP) is emerging as the standard for Large Language Model (LLM) integration with tools and data, dubbed the "USB-C for AI agents." It enables agents to connect to tools via standardized APIs, maintain persistent sessions, run commands, and share context across workflows. However, MCP isn't secure by default. Connecting agents to arbitrary servers without careful consideration can create security vulnerabilities, potentially exposing shell access, secrets, or infrastructure via side-channel attacks.

Read more
(elenacross7.medium.com)
AI MCP protocol

Google Tightens Android Sideloading, Sparking Debate on Privacy vs. Freedom

2025-06-05
Google Tightens Android Sideloading, Sparking Debate on Privacy vs. Freedom

Google has implemented new restrictions on sideloading Android apps in Singapore, citing security concerns. This blocks the installation of apps requesting sensitive permissions if downloaded outside the Play Store. While aimed at preventing fraud and malware, critics argue it strengthens Google's app distribution monopoly, limiting user freedom and innovation. In contrast, Purism offers Librem phones running PureOS, a privacy-focused OS emphasizing user autonomy and data sovereignty, providing an alternative to Big Tech's surveillance capitalism.

Read more
(puri.sm)
Tech Android sideloading Google monopoly
1 2 321 322 323 325 327 328 329 596 597