Linux, open source, and security news from across the web.
Comments
The day started out with Arch Linux's AUR user-contributed repository seeing more than 400 packages compromised with malware. Now in ending out the day they believe all affected commits have been addressed. But it ended up being more than 1,500 affected packages...
Comments
OpenZFS 2.4.3 is out today as the newest stable point release to this open-source ZFS file-system implementation as well as point releases for the OpenZFS 2.3 and 2.2 series too...
Comments
AI agents can't be trusted, so don't give them dangerous powers
Jeff Bezos says his new AI startup, Prometheus, is working toward an "artificial general engineer" capable of helping design complex physical products such as robots, drugs, manufacturing systems, and rocket engines. The Verge reports: The NYT first reported on Prometheus last No…
Comments
Comments
Better orchestration, fewer handoffs, faster progress, without a single new knob. The post How we made GitHub Copilot CLI more selective about delegation appeared first on The GitHub Blog.
Comments
Comments
Comments
The Justice Department has approved Paramount Skydance's $111 billion acquisition of Warner Bros. Discovery without requiring divestitures or other concessions. The deal still faces scrutiny from state attorneys general. Politico reports: The decision, expected to be announced Fr…
Comments
ShinyHunters claims it exploited a critical Oracle PeopleSoft zero-day to compromise more than 100 organizations, including the University of Nottingham, where it says it stole 40GB of student and billing data. "ShinyHunters posted the UK university on its data leak site on Tuesd…
Alexandre Julliard just released Wine 11.11 as the newest bi-weekly development release of this open-source software that powers Valve's Steam Play (Proton) and allows for running Windows games and applications under Linux as well as other platforms...
Comments
submitted by /u/dx7r__ [link] [comments]
Comments
Comments
Comments
GitHub caught off guard by customers actually using the AI being evangelized
An anonymous reader quotes a report from TechCrunch: Google is suing to dismantle the infrastructure behind an alleged massive AI-powered cybercrime operation. On Friday, the tech giant announced a lawsuit against an alleged Chinese cybercrime network called Outsider Enterprise, …
Comments
In a shortened session in the filesystem track at the 2026 Linux Storage, Filesystem, Memory Management, and BPF Summit, Amir Goldstein gave an update on the overlayfs union filesystem. There are some new features over the last few years that he wanted to mention, along with look…
AMD today announced the opening of pre-orders for their Ryzen AI Halo petite PC powered by AMD Ryzen AI Max+ "Strix Halo" and working with either Microsoft Windows or Linux...
Maine has taken its public data breach reporting portal offline after fraudulent breach disclosures were published on the state's website, prompting a review of procedures to prevent abuse in the future. [...]
Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any machine that built them. The malware is a Rust binary built to harvest developer secrets. When it lands with root, it can …
Vulnerability in the Oracle-owned PeopleSoft software is about as critical as they come.
Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any machine that built them. The malware is a Rust binary built to harvest developer secrets. When it lands with root, it can …
Plus, Raspberry Pi edition finally catches up
A leaker with a strong Apple rumor track record says a touchscreen MacBook is "100% confirmed. If true, it would mark a major reversal for Apple, which has long argued that the Mac is built for indirect input rather than reaching up to touch a vertical screen. MacRumors reports: …
Google on Friday said it's pursuing legal action against a Chinese cybercrime network, accusing it of using its Gemini artificial intelligence (AI) agent to send phishing text messages targeting Americans. The network is said to be behind the development and management of a phish…
Comments
Comments
Comments
Longtime Slashdot reader Dotnaught shares a report from The Register: For the past 90 days, Microsoft has been quietly patching a firmware flaw in Surface devices that allowed the hardware to be bricked with a single packet, though only for those who have disabled Secure Core and…
Iowan’s scheme undone after misplacing trust in former coworker
Comments
A 10-year-old authentication bypass vulnerability discovered in the phpBB forum software allows an attacker to log in as any user, including administrators. [...]
Instead of hiding on the laptops and servers defenders watch most closely, a China-nexus group spent close to a decade hidden inside the Linux login system itself. Sygnia, which tracks the group as Velvet Ant, says it backdoored the PAM and OpenSSH components that decide who is a…
Comments
A Ukrainian national extradited from Ireland to the United States last year has pleaded guilty to conspiracy charges tied to the Conti ransomware operation. [...]
Comments
Comments
Comments
Sam Bankman-Fried lost his appeal to overturn his FTX fraud conviction and 25-year sentence. Reuters reports: In a unanimous decision, a three-judge panel of the Manhattan-based 2nd U.S. Circuit Court of Appeals said prosecutors' evidence against Bankman-Fried "was, conservativel…
Comments
Comments
Comments
Comments
More than 400 packages in the Arch User Repository (AUR) are distributing a Linux rootkit and infostealer malware targeting credentials and access tokens. [...]
Comments
Comments
Linux 7.1 stable is expected to be released this Sunday with its many new features. Immediately following the Linux v7.1 tagging, the Linux 7.2 merge window will open and a lot of new feature material is expected to be merged over the next two weeks...
Comments
Comments
Comments
Comments