Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

NZ Health System Runs on Excel Spreadsheet, Blows $16B Budget

2025-03-11
NZ Health System Runs on Excel Spreadsheet, Blows $16B Budget

Health New Zealand (HNZ), managing a $16 billion budget, relies primarily on a single Excel spreadsheet for financial management. This led to budget overruns, and a Deloitte report revealed critical flaws: untraceable data, high error rates, and slow analysis. Despite possessing 6,000 applications and 100 digital networks, HNZ's senior leadership lacks coordination, holding only weekly in-person meetings. The Health Minister lacks a concrete improvement plan, raising serious concerns.

Read more
(www.theregister.com)
Tech Government Agency Budget Overrun Digital Transformation budget management healthcare system Healthcare System

Infosec Roundup: Malvertising, Exploited Vulnerabilities, and Data Breaches

2025-03-10
Infosec Roundup: Malvertising, Exploited Vulnerabilities, and Data Breaches

Microsoft uncovered a malvertising campaign distributing malware via GitHub, impacting nearly a million devices. The campaign used pirated video streaming sites embedding malicious redirects, ultimately leading to malware hosted on GitHub that stole system information and browser credentials. Meanwhile, Red Hat becomes a CVE numbering authority of last resort, while several critical vulnerabilities are actively exploited, including an RCE vulnerability in Progress Software WhatsUp Gold and security flaws in Hitachi Vantara Pentaho Business Analytics Server. Cisco warns of the exploitation of CVE-2023-20118 and recommends hardware replacement. Popular phone cleaning apps are revealed to be sharing user data, and the US House passed a bill requiring federal contractors to implement vulnerability disclosure policies. Finally, scammers used AI-generated videos impersonating YouTube CEO Neal Mohan for phishing attacks, while Singapore considers caning for cybercriminals.

Read more
(www.theregister.com)
Tech

Apple Secretly Bolsters iOS and macOS Security with 'Exclaves'

2025-03-09
Apple Secretly Bolsters iOS and macOS Security with 'Exclaves'

Apple is secretly developing a security feature called "exclaves" within its XNU kernel to enhance the security of iOS and macOS. This technology, resembling a microkernel approach, isolates critical functions, protecting the system even if the kernel is compromised. Leveraging new architecture and the Secure Page Table Monitor hardware security, sensitive services are compartmentalized, preventing a single vulnerability from compromising the entire kernel address space. This enhances security for growing on-device AI workloads and cloud interactions.

Read more
(www.theregister.com)
Tech XNU Kernel

Europe Launches €240M RISC-V Supercomputer Chip Project

2025-03-09
Europe Launches €240M RISC-V Supercomputer Chip Project

A consortium of 38 tech companies has launched DARE, a €240 million project to develop RISC-V based processors for Europe's supercomputers and high-performance computing systems. The project will create three chiplets: a vector math accelerator from Openchip, a next-gen inference chiplet from Axelera AI, and a general-purpose processor from Codasip. This initiative aims to bolster Europe's digital sovereignty and competitiveness in the global RISC-V landscape, particularly against the US and China.

Read more
(www.theregister.com)
Tech Supercomputers

Lightweight Pi-Hole 6: Effortlessly Block Ads on Your Home Network

2025-03-08
Lightweight Pi-Hole 6: Effortlessly Block Ads on Your Home Network

The newly released Pi-hole 6 is lighter and requires no PHP or external web server, reducing system resource demands. The article details the installation and configuration process, including choosing appropriate hardware (like a Raspberry Pi), setting a static IP address, and modifying router DHCP settings. The author successfully tested it on an old Raspberry Pi 3B, effectively blocking ads, increasing speed, and reducing data consumption. Compared to other ad-blocking methods, Pi-hole boasts simplicity, ease of use, and low system resource usage, but requires some network configuration knowledge.

Read more
(www.theregister.com)
Development ad blocking

Shoebox-Sized Edge Computing Node Headed to ISS

2025-03-08
Shoebox-Sized Edge Computing Node Headed to ISS

Axiom Space plans to send a shoebox-sized node running Red Hat Device Edge to the International Space Station (ISS). This prototype, AxDCU-1, will test applications in cloud computing, AI/ML, data fusion, and space cybersecurity. Due to limited ground connectivity in space, edge computing is crucial. AxDCU-1 utilizes Red Hat Enterprise Linux, Red Hat Ansible Platform, and MicroShift, and is planned to operate in orbit for at least two years. Launch is expected in Spring 2025, but potential delays exist due to cargo shipment issues.

Read more
(www.theregister.com)
Tech Space Edge Computing

Senior Software Engineer Sentenced for Sabotaging Employer's Systems

2025-03-08
Senior Software Engineer Sentenced for Sabotaging Employer's Systems

Davis Lu, a 55-year-old senior software developer, was found guilty of sabotaging his former employer Eaton Corporation's systems and faces up to 10 years in prison. Before his departure, Lu developed malicious software that locked thousands of employees out of the network, causing significant financial damage. Investigators discovered Lu created malware named "Hakai" (Japanese for destruction) and "HunShui" (Chinese for sleep), along with a "kill switch" that locked all accounts upon his access revocation. He also attempted to delete company data and operating system directories. Despite admitting to the actions, the jury found Lu guilty of intentionally damaging a protected computer.

Read more
(www.theregister.com)
Development

Broadcom's VMware Acquisition: A Resounding Success Fueled by AI

2025-03-07
Broadcom's VMware Acquisition: A Resounding Success Fueled by AI

Broadcom announced stellar Q1 2025 results, boasting a 25% year-over-year revenue increase to $14.92 billion and a staggering 315% surge in net income to $5.5 billion. The integration of VMware proved highly successful, with its infrastructure software business reaching $6.7 billion in revenue. This growth is attributed to the successful upselling of VMware Cloud Foundation (VCF) to a majority of its top 10,000 customers and strategic pricing adjustments. Furthermore, Broadcom secured two new hyperscale clients for its custom AI accelerators, driving AI-related revenue to $4.1 billion—a 77% year-over-year increase. Despite market fluctuations and tariff concerns, Broadcom's stock price rebounded, and CEO Hock Tan confirmed no immediate plans for further acquisitions.

Read more
(www.theregister.com)
Tech Broadcom

USCIS Expands Social Media Monitoring to Non-Citizens Already in the US

2025-03-07
USCIS Expands Social Media Monitoring to Non-Citizens Already in the US

The US Citizenship and Immigration Services (USCIS) is proposing to expand its social media monitoring program to include non-citizens already in the US who are applying for immigration benefits. This expansion, stemming from a 2020 executive order, aims to enhance vetting processes. The proposed rule would require applicants for permanent residency, citizenship, or refugee/asylum status to submit their social media information for review, potentially adding hundreds of thousands of hours of work annually. The proposal is open for public comment for 60 days.

Read more
(www.theregister.com)
Misc social media monitoring

Apple Challenges UK Government's Demand to Break iCloud Encryption

2025-03-05
Apple Challenges UK Government's Demand to Break iCloud Encryption

Apple has filed a legal challenge with the UK's Investigatory Powers Tribunal (IPT) against a government order to forcibly decrypt iCloud data. This is the first appeal of its kind to the IPT. The UK government argues it needs a backdoor for law enforcement investigations, while Apple refused and disabled its Advanced Data Protection (ADP) feature for UK users in response. The move sparked controversy, with concerns that it could drive encrypted messaging underground, accessible only to criminals. The US also expressed concern, fearing violation of the Cloud Act Agreement and the collection of US citizen data.

Read more
(www.theregister.com)
Tech

Opera's New AI Browser Assistant: Helpful, But Don't Get Your Hopes Up

2025-03-05
Opera's New AI Browser Assistant: Helpful, But Don't Get Your Hopes Up

Opera's new browser feature, "Browser Operator," is an AI assistant designed to perform multi-step tasks within the browser. While impressive in demos (like finding and adding socks to a shopping cart), it's often slower than doing it manually. The feature is currently in preview and not universally available. Opera cautions against using it for legal, medical, or advisory purposes. It's more of a technological showcase than a fully-fledged productivity tool for now.

Read more
(www.theregister.com)
Tech Opera browser web browsing

Android's Secret Tracking: Google's Data Collection Without Consent

2025-03-04
Android's Secret Tracking: Google's Data Collection Without Consent

Research by Doug Leith, Professor and Chair of Computer Systems at Trinity College Dublin, reveals that Android secretly collects user data, including advertising cookies, before users even open their first app. This data collection, facilitated by pre-installed apps like Google Play Services and the Google Play Store, occurs without user consent and lacks an opt-out mechanism. Key trackers include the DSID cookie and the Google Android ID, which continues sending data even after logout. Leith argues this may violate data protection laws like GDPR. Google responded by stating their commitment to privacy laws but didn't directly address the specific issues. This discovery, coupled with the recent controversy surrounding the consent-less installation of Android System SafetyCore, fuels concerns about Google's data collection practices.

Read more
(www.theregister.com)
Tech Android Privacy Data Tracking

SAP's Ex-CTO Paid €7.1M After Sexual Harassment Allegations

2025-03-03
SAP's Ex-CTO Paid €7.1M After Sexual Harassment Allegations

Former SAP CTO Jürgen Müller received a €7.1 million severance package after leaving the company following allegations of sexual harassment. The incident occurred at a company event, and Müller admitted to inappropriate behavior and apologized. The investigation concluded, resulting in a mutual agreement for his departure. Meanwhile, other executives, Scott Russell and Julia White, received severance payments of €12.6 million and €9 million respectively. Despite these high-profile departures and significant payouts, SAP reported strong 2024 results, with cloud and software revenue reaching €29.96 billion and operating profit exceeding expectations. SAP's share price has also increased by approximately 50 percent in the past year.

Read more
(www.theregister.com)
Tech sexual harassment executive departures severance packages

Mozilla's Updated Firefox Terms Spark Data Ownership Backlash

2025-03-02
Mozilla's Updated Firefox Terms Spark Data Ownership Backlash

Mozilla's recent update to Firefox's terms of use and privacy policy sparked user concerns about data ownership. Initial wording suggested Mozilla might claim ownership of user data, prompting a swift clarification and revised terms. However, changes in wording raised questions about Mozilla's commitment to not selling user data to advertisers, fueling concerns about a shift in its business model. The incident highlights the communication challenges surrounding data privacy in tech companies and growing user anxieties about data security and autonomy. The changes followed recent high-level appointments at Mozilla, leading to speculation about the company's future direction.

Read more
(www.theregister.com)
Tech

Neo4j's License Modification Case Threatens Open Source

2025-02-28
Neo4j's License Modification Case Threatens Open Source

The Ninth Circuit Court of Appeals will soon rule on Neo4j's attempt to modify the GNU AGPLv3 license, adding restrictive clauses that users cannot remove, contradicting the license's core principle. This case's outcome will significantly impact the enforceability of all open-source licenses, potentially eroding the trust that underpins open source. The Software Freedom Conservancy filed an amicus brief, but the Free Software Foundation's (FSF) non-involvement sparks controversy. The central question is whether licensors can add irremovable restrictions. The ruling will have far-reaching consequences for the open-source community and may even impact Neo4j forks like ONgDB and DozerDB.

Read more
(www.theregister.com)
Development open-source license

Microsoft Locks Out Older Intel CPUs from Windows 11 24H2

2025-02-25
Microsoft Locks Out Older Intel CPUs from Windows 11 24H2

Microsoft's published CPU support list for Windows 11 24H2 confirms that only 11th-generation Intel CPUs and later are supported. This means OEMs can no longer build new PCs with older Intel chips for Windows 11 24H2. While the restriction applies to OEMs, it has sparked concerns among users about future hardware compatibility. Although Microsoft's official hardware compatibility list currently supports older CPUs (e.g., 8th, 9th, and 10th gen Intel chips), this change could signal further tightening of hardware requirements in the future.

Read more
(www.theregister.com)
Hardware Hardware Compatibility

Meta's Executive Bonus Bonanza: Massive Raises After Layoffs Spark Outrage

2025-02-22
Meta's Executive Bonus Bonanza: Massive Raises After Layoffs Spark Outrage

Meta has significantly increased executive bonuses to 200% of base salary, following recent layoffs affecting 3,700 employees. While Meta justifies the move by claiming it aligns with industry compensation, the timing, shortly after reducing stock options for remaining staff, has fueled criticism. This comes as CEO Mark Zuckerberg announced a massive $60 billion investment in AI infrastructure for 2025, potentially explaining the increased executive compensation but raising questions about its long-term success.

Read more
(www.theregister.com)
Tech Executive Bonuses

STOP AI: Radical Protest Against AGI Development

2025-02-21
STOP AI: Radical Protest Against AGI Development

A radical group called STOP AI is actively protesting the development of Artificial General Intelligence (AGI) by companies like OpenAI. They believe AGI poses an existential threat to humanity and are calling for governments to ban its development and even destroy existing models. The group's members have diverse backgrounds, ranging from engineers to physicists, and they're employing various methods, including protests and civil disobedience, aiming to rally 3.5% of the US population to effect change. The case also involves the death of former OpenAI employee Suchir Balaji, with STOP AI demanding a thorough investigation. Despite the immense challenges, they remain determined in their fight to halt AGI development.

Read more
(www.theregister.com)
AI civil protest

HP Scraps 15-Minute Phone Support Wait Time After Backlash

2025-02-21
HP Scraps 15-Minute Phone Support Wait Time After Backlash

HP abruptly reversed its controversial policy of imposing a 15-minute mandatory wait time for telephone support. The policy, implemented in several European countries, aimed to push customers towards online support channels. However, negative feedback from both customers and internal staff led to its swift cancellation. HP stated that timely access to live agents is paramount and they will prioritize quick phone support.

Read more
(www.theregister.com)
Tech phone support

Ghost Ransomware: FBI and CISA Issue Joint Warning

2025-02-21
Ghost Ransomware: FBI and CISA Issue Joint Warning

The FBI and CISA have issued a joint advisory warning of the Ghost ransomware, active since 2021 and impacting critical infrastructure across various sectors in over 70 countries. The attackers exploit known vulnerabilities, using tools like Cobalt Strike to move laterally, steal data, and encrypt files for ransom. Effective defenses include patching vulnerabilities, regular backups, and monitoring for unauthorized activities, such as PowerShell usage. Victims with unaffected backups often restored operations without paying.

Read more
(www.theregister.com)
Tech

Dark Mode's Energy-Saving Myth Busted: BBC Research Reveals Unexpected Findings

2025-02-20
Dark Mode's Energy-Saving Myth Busted: BBC Research Reveals Unexpected Findings

Contrary to popular belief, using dark mode on apps and websites may not save energy. A BBC Research & Development study found that users often increase screen brightness when using dark mode, negating its potential energy savings and potentially increasing consumption. In their experiment, 80% of participants boosted brightness in dark mode. Furthermore, website responsiveness and data transfer showed little correlation with energy usage. The researchers conclude that relying solely on dark mode or website optimization for energy efficiency is misguided; lowering screen brightness is a more effective approach.

Read more
(www.theregister.com)
Tech

HP's 15-Minute Phone Wait: Forcing Customers Online?

2025-02-20
HP's 15-Minute Phone Wait: Forcing Customers Online?

HP Inc. is implementing a minimum 15-minute wait time for phone support in several European countries for consumer PC and print customers. This is a deliberate strategy to drive customers towards online support channels and reduce warranty costs. Internal sources express concern, highlighting the disconnect between decision-makers and the impacted customers. While HP claims to monitor customer satisfaction metrics, the move is likely to push some customers towards alternative support methods like social media or live chat.

Read more
(www.theregister.com)
Tech customer service online support

Microsoft's Valentine's Day Surprise: Cortana Location History Axed, GDPR Compliance Efforts

2025-02-20
Microsoft's Valentine's Day Surprise: Cortana Location History Axed, GDPR Compliance Efforts

Microsoft released Windows 11 24H2 preview build 26120.3281 to Dev and Beta channels, removing the Location History API for Cortana and making changes to address European privacy concerns. The API, previously deprecated, allowed Cortana to access 24 hours of location data. The update also disables account-based content in File Explorer for Entra IDs in the EEA, impacting Recent, Favorites, and Recommended features. Additionally, the update includes one-click OneDrive file resuming and an upcoming Recall update that will delete all existing snapshots. The rollout to the general release of Windows 11 remains uncertain.

Read more
(www.theregister.com)
Tech

Urgent: Critical Palo Alto Networks Firewall Vulnerability Under Active Exploit

2025-02-19
Urgent: Critical Palo Alto Networks Firewall Vulnerability Under Active Exploit

Three vulnerabilities in Palo Alto Networks' PAN-OS software allow attackers to gain root access to affected systems. CVE-2025-0108 allows unauthenticated attackers to bypass authentication, CVE-2024-9474 allows privilege escalation, and CVE-2025-0111 enables reading files accessible to the "nobody" user. Attackers are actively chaining these vulnerabilities to gain full control. Palo Alto Networks has released patches and urges immediate upgrades, especially for systems with internet-facing management interfaces. Even with restricted access, patching is crucial.

Read more
(www.theregister.com)
Tech

NAND Flash Prices Plummet Amidst Oversupply

2025-02-18
NAND Flash Prices Plummet Amidst Oversupply

NAND flash prices are expected to fall due to oversupply, forcing memory chipmakers to cut production. Lower-than-expected demand from PC and smartphone manufacturers is contributing to the glut. TrendForce revised growth forecasts down to 10-15% for 2025. While prices are expected to remain weak in the first half of 2025, AI server demand for SSDs is projected to boost shipments in the second half. The market is adjusting, with experts predicting a price recovery in the latter half of the year driven by AI and the transition to advanced technologies.

Read more
(www.theregister.com)
Hardware Memory Chips Oversupply

Schneier's 'Data and Goliath' Prediction: A Decade Later, Privacy Lost?

2025-02-17
Schneier's 'Data and Goliath' Prediction: A Decade Later, Privacy Lost?

A decade after Bruce Schneier's book, 'Data and Goliath,' warned about government and tech giants exploiting personal data, his predictions ring eerily true. Data harvesting continues, especially for AI model training, leaving personal privacy almost completely compromised. Schneier advocates for comprehensive privacy laws and regulation of mass surveillance, but this remains unlikely in the short term. While some regions have implemented regulations, surveillance capitalism and the power of tech monopolies hinder meaningful change. Individual efforts to protect privacy are largely ineffective, and even companies like Apple offer limited protection. Schneier remains cautiously optimistic about long-term privacy, but acknowledges a long road ahead.

Read more
(www.theregister.com)
Tech

The Open Source Maintainer Crisis: Burnout, Pressure, and an Uncertain Future

2025-02-17
The Open Source Maintainer Crisis: Burnout, Pressure, and an Uncertain Future

The 2025 State Of Open conference highlighted the plight of open source maintainers: volunteers pour countless hours into projects with little support, leading many to quit or consider quitting. The resignation of Asahi Linux lead Hector Martin due to burnout and demanding users exemplifies this crisis. Maintainers face pressure from users, endless requests, and occasional negativity. Even with minimal corporate sponsorship, the demands far outweigh the support. Surveys reveal many maintainers considering quitting, and many projects may become unmaintained. The problem isn't solely financial; it also requires more contributors to share non-coding tasks like community management and fundraising. But change needs a catalyst—perhaps a major project collapse will finally convince people that paying open source maintainers is crucial.

Read more
(www.theregister.com)
Development open source maintenance community pressure

Improved Meetings, Lost Job: A Tale of Office Politics

2025-02-17
Improved Meetings, Lost Job: A Tale of Office Politics

Palmer, an IT engineer, couldn't stand his team's inefficient weekly meetings. He bravely suggested improvements: shortening the meeting to 30 minutes, limiting speaking time to two minutes, and adding one-on-one meetings. While his suggestions were well-received by the team and improved the meetings, he was subsequently rated 'Needs Improvement' in his annual review and accused of lacking teamwork. Palmer leveraged his skills to secure three job offers, and the team he left was reorganized a year later due to poor performance. This story highlights the complexities of office politics, where even doing the right thing can have unforeseen consequences.

Read more
(www.theregister.com)
Misc office politics meeting efficiency

Asahi Linux Lead Resigns Amidst Burnout and Community Conflict

2025-02-14
Asahi Linux Lead Resigns Amidst Burnout and Community Conflict

Hector Martin, project lead of Asahi Linux, resigned due to developer burnout, demanding users, and Linus Torvalds' handling of Rust integration into the Linux kernel. Martin criticized Torvalds' lack of support and accused the Linux community of hypocrisy and malicious attacks. He cited Torvalds' poor leadership in handling Rust integration, leading to abuse of power by maintainers. This highlights the growing issue of developer burnout and community conflict in open source, and the need for sustainable funding for open source projects.

Read more
(www.theregister.com)
Development developer burnout

Apple's Privacy Policy Under Fire: German Regulator Investigates Double Standard

2025-02-14
Apple's Privacy Policy Under Fire: German Regulator Investigates Double Standard

Germany's competition watchdog is investigating Apple's App Tracking Transparency framework (ATTF), alleging a double standard. While Apple enforces strict user data consent rules on third-party developers, the investigation suggests Apple exempts itself, leveraging its vast ecosystem (App Store, Apple ID, connected devices) to collect user data for advertising purposes with less stringent consent requirements. This disparity in treatment, along with simpler consent dialogues for Apple's own apps compared to third-party apps, could constitute unfair competition. Apple has yet to respond.

Read more
(www.theregister.com)
Tech
1 2 3 4 5 6 8 10