RSS 생중계

Security updates have been issued by AlmaLinux (kernel and kernel-rt), Debian (firefox-esr, libvpx, net-tools, php-twig, python-tornado, setuptools, varnish, webpy, yelp, and yelp-xsl), Fedora (xen), Mageia (cimg and ghostscript), Oracle (gstreamer1-plugins-bad-free, kernel, libsoup, thunderbird, and unbound), Red Hat (firefox, mingw-freetype and spice-client-win, pcs, and varnish:6), Slackware (curl and mozilla), SUSE (apparmor, containerd, dnsdist, go1.23-openssl, go1.24, gstreamer-plugins-bad, ImageMagick, jetty-minimal, python-tornado, python313-setuptools, s390-tools, thunderbird, tomcat10, ucode-intel, and wxWidgets-3_2), and Ubuntu (ffmpeg, krb5, libsoup3, libsoup2.4, linux-aws-5.4, linux-aws-fips, linux-fips, linux-oracle-6.8, net-tools, and python-setuptools, setuptools).

An anonymous reader quotes a report from TechCrunch: Researchers at SignalFire, a data-driven VC firm that tracks job movements of over 600 million employees and 80 million companies on LinkedIn, believe they may be seeing first signs of AI's impact on hiring. When analyzing hiring trends, SignalFire noticed that tech companies recruited fewer recent college graduates in 2024 than they did in 2023. Meanwhile, tech companies, especially the top 15 Big Tech businesses, ramped up their hiring of experienced professionals. Specifically, SignalFire found that Big Tech companies reduced the hiring of new graduates by 25% in 2024 compared to 2023. Meanwhile, graduate recruitment at startups decreased by 11% compared to the prior year. Although SignalFire wouldn't reveal exactly how many fewer grads were hired according to their data, a spokesperson told us it was thousands. While adoption of new AI tools might not fully explain the dip in recent grad hiring, Asher Bantock, SignalFire's head of research, says there's "convincing evidence" that AI is a significant contributing factor. Entry-level jobs are susceptible to automation because they often involve routine, low-risk tasks that generative AI handles well. AI's new coding, debugging, financial research, and software installation abilities could mean companies need fewer people to do that type of work. AI's ability to handle certain entry-level tasks means some jobs for new graduates could soon be obsolete. [...] Although AI's threat to low-skilled jobs is real, tech companies' need for experienced professionals is still rising. According to SignalFire's report, Big Tech companies increased hiring by 27% for professionals with two to five years of experience, while startups hired 14% more individuals in that same seniority range. A frustrating paradox emerges for recent graduates: They can't get hired without experience, but they can't get experience without being hired. While this dilemma is not new, Heather Doshay, SignalFire's people and talent partner, says it is considerably exacerbated by AI. Doshay's advice to new grads: master AI tools. "AI won't take your job if you're the one who's best at using it," she said.

Read more of this story at Slashdot.

The world is facing a new form of climate denial -- not the dismissal of climate science, but a concerted attack on the idea that the economy can be reorganised to fight the crisis, the president of global climate talks has warned. The Guardian reports: Andre Correa do Lago, the veteran Brazilian diplomat who will direct this year's UN summit, Cop30, believes his biggest job will be to counter the attempt from some vested interests to prevent climate policies aimed at shifting the global economy to a low-carbon footing. "There is a new kind of opposition to climate action. We are facing a discredit of climate policies. I don't think we are facing climate denial," he said, referring to the increasingly desperate attempts to pretend there is no consensus on climate science that have plagued climate action for the past 30 years. "It's not a scientific denial, it's an economic denial." This economic denial could be just as dangerous and cause as much delay as repeated attempts to deny climate science in previous years, he warned in an exclusive interview with the Guardian.

Read more of this story at Slashdot.

Astronomers have discovered a mysterious cosmic object, ASKAP J1832-0911, that emits both radio waves and X-rays in precise 44-minute cycles, making it unlike anything observed before. Space.com reports: This is the first time an object like this, a so-called "long-period transient" or "LPT," has been seen in high-energy X-ray light as well as low-energy radio wave light. The team behind this discovery hopes the finding could help reveal what these flashing objects actually are and how they launch their mystery signals. However, not only is there no explanation for how the signals from LPTs are generated yet, but astronomers also don't know why these signals "switch on" and "switch off" at long, regular and unusual intervals. "This object is unlike anything we have seen before," team leader and Curtin University researcher Zieng (Andy) Wang said in a statement. [...] The team believes the true nature of ASKAP J1832-0911 is a dead star, they just don't quite know what form that star takes. A highly magnetic neutron star, or "magnetar," is one option, and a a white dwarf -- the kind of stellar remnant the sun will leave behind when it dies in over 5 billion years -- is another. "ASKAP J1831- 0911 could be a magnetar, the core of a dead star with powerful magnetic fields, or it could be a pair of stars in a binary system where one of the two is a highly magnetized white dwarf, a low-mass star at the end of its evolution," Wang said. "However, even those theories do not fully explain what we are observing. "This discovery could indicate a new type of physics or new models of stellar evolution." The research has been published in the journal Nature.

Read more of this story at Slashdot.

Inside this week's LWN.net Weekly Edition:

• Front: Glibc security; How we lost the Internet; Encrypted DNS; 6.15 Development statistics; Filesystem stress-testing; BPF verifier; Network access from BPF; OSPM 2025.
• Briefs: AlmaLinux 10.0; FESCo decision overturned; NixOS 25.05; Pocket, Launchpad retired; Quotes; ...
• Announcements: Newsletters, conferences, security updates, patches, and more.

An anonymous reader quotes a report from TechCrunch: LexisNexis Risk Solutions, a data broker that collects and uses consumers' personal data to help its paying corporate customers detect possible risk and fraud, has disclosed a data breach affecting more than 364,000 people. The company said in a filing with Maine's attorney general that the breach, dating back to December 25, 2024, allowed a hacker to obtain consumers' sensitive personal data from a third-party platform used by the company for software development. Jennifer Richman, a spokesperson for LexisNexis, told TechCrunch that an unknown hacker accessed the company's GitHub account. The stolen data varies, but includes names, dates of birth, phone numbers, postal and email addresses, Social Security numbers, and driver license numbers. It's not immediately clear what circumstances led to the breach. Richman said LexisNexis received a report on April 1, 2025 "from an unknown third party claiming to have accessed certain information." The company would not say if it had received a ransom demand from the hacker.

Read more of this story at Slashdot.

Microsoft is previewing a new Windows Update orchestration platform that lets third-party apps schedule and manage updates alongside system updates, "aiming to centralize update scheduling across Windows 11 devices," reports The Register. From the report: On Tuesday, Redmond announced it's allowing a select group of developers and product teams to hook into the Windows 11 update framework. The system doesn't push updates itself but allows apps to register their own update logic via WinRT APIs and PowerShell, enabling centralized scheduling, logging, and policy enforcement. "Updates across the Windows ecosystem can feel like a fragmented experience," wrote Angie Chen, a product manager at the Borg, in a blog post. "To solve this, we're building a vision for a unified, intelligent update orchestration platform capable of supporting any update (apps, drivers, etc.) to be orchestrated alongside Windows updates." As with other Windows updates, the end user or admin will be able to benefit from intelligent scheduling, with updates deferred based on user activity, system performance, AC power status, and other environmental factors. For example, updates may install when the device is idle or plugged in, to minimize disruption. All update actions will be logged and surfaced through a unified diagnostic system, helping streamline troubleshooting. Microsoft says the platform will support MSIX/APPX apps, as well as Win32 apps that include custom installation logic, provided developers integrate with the offered Windows Runtime (WinRT) APIs and PowerShell commands. At the moment, the orchestration platform is available only as a private preview. Developers must contact unifiedorchestrator@service.microsoft.com to request access. Redmond is taking a cautious approach, given the risk of update conflicts, but may broaden availability depending on how the preview performs. Meanwhile, Windows Backup for Organizations, first unveiled at Microsoft Ignite in November 2024, has entered limited public preview. Redmond touts the service as a way to back up Windows 10 and 11 devices and restore them with the same settings in place. It's saying it'll be a big help in migrating systems to the more recent operating systems after Windows 10 goes end of life in October. "With Windows Backup for Organizations, get your users up and running as quickly as possible with their familiar Windows settings already in place," Redmond wrote in a blog post on Tuesday. "It doesn't matter if they're experiencing a device reimage or reset."

Read more of this story at Slashdot.

Electronic Arts has canceled its in-development Black Panther game and shut down Cliffhanger Games, marking its third round of layoffs this year. IGN reports: In an email sent to staff from EA Entertainment president Laura Miele, Miele said that these changes, alongside other recent cancellations and layoffs, are being done to "sharpen our focus and put our creative energy behind the most significant growth opportunities." In addition to closing Cliffhanger and canceling Black Panther, EA is also laying off some individuals on both its mobile and central teams. [...] As with past rounds of layoffs, EA is endeavoring to place affected individuals in other roles across the company. [...] To that end, Miele's email continues, the company is focusing on a small handful of franchises going forward: Battlefield, The Sims, Skate, and Apex Legends. Miele also reassures EA will continue to invest in its Iron Man game at Motive and the third Star Wars: Jedi game, as well as it maintain its mobile business despite today's cuts, while Bioware works on the next Mass Effect. Additionally, last year, CEO Andrew Wilson announced the company would be "moving away from development of future licensed IP that we do not believe will be successful in our changing industry." The email doesn't mention EA Sports, but this is due to Miele running EA Entertainment, while EA Sports is a separate division. IGN understands that the sports division is unaffected by these changes for now. Notably, Marvel and EA's agreement for Black Panther was part of a three-game deal that included Iron Man and a third, unannounced title. IGN understands this partnership will continue, with Motive Studios leading future Marvel titles. EA provided the following statement regarding the deal with Marvel to IGN, attributed to Miele: "Our partnership with Marvel remains strong and our multi-title, long-term collaboration continues."

Read more of this story at Slashdot.

Discord is testing "Discord Orbs," a new in-app currency that rewards users for engaging with interactive ads and promotional Quests. The Verge reports: In addition to spending Orbs on regular items on the Discord Shop, users can exchange the digital tokens for Orb exclusives like special badges or 3-day passes to try out Discord's subscription service, Discord Nitro. Discord says Orbs are rolling out globally to a "small number" of its users to start before a wider rollout. If you're part of the beta test for Orbs, you will get a notification like the one below. Before this, publishers or brands that offered Quests had to provide their own rewards -- things like avatar decorations or in-game bonuses. They can still do that if they want, Discord spokesperson Bradley Sheets tells The Verge in an email; awarding Orbs is simply an alternative option.

Read more of this story at Slashdot.

A security researcher has discovered an exposed database containing 184 million login credentials for major services including Apple, Facebook, and Google accounts, along with credentials linked to government agencies across 29 countries. Jeremiah Fowler found the 47-gigabyte trove in early May, but the database contained no identifying information about its owner or origins. The records included plaintext passwords and usernames for accounts spanning Netflix, PayPal, Discord, and other major platforms. A sample analysis revealed 220 email addresses with government domains from countries including the United States, China, and Israel. Fowler told Wired he suspects the data was compiled by cybercriminals using infostealer malware. World Host Group, which hosted the database, shut down access after Fowler's report and described it as content uploaded by a "fraudulent user." The company said it would cooperate with law enforcement authorities.

Read more of this story at Slashdot.

CD Projekt Red's (CDPR) sequel to Cyberpunk 2077, which the studio is now calling Cyberpunk 2, has moved from a "conceptual phase" into preproduction, according to an earnings report released on Wednesday. The Verge: Cyberpunk 2 isn't the official title, CDPR senior PR manager Ola Sondej tells The Verge. "'Cyberpunk 2' just means it's another game in the Cyberpunk universe." The game has had the codename of "Project Orion" since it was announced in 2022. CDPR hasn't shared many details about the game, but did describe it on Wednesday as "the next big game set in the Cyberpunk universe." There are 96 developers working on the title as of April 30th, according to a slide deck. There's no official release date, either, though on an investor call, joint chief executive officer Michal Nowakowski said that the company would deliver the game "in due time."

Read more of this story at Slashdot.

An anonymous reader quotes a report from The Verge: Secretary of State Marco Rubio announced Wednesday that the U.S. would restrict visas for "foreign nationals who are responsible for censorship of protected expression in the United States." He called it "unacceptable for foreign officials to issue or threaten arrest warrants on U.S. citizens or U.S. residents for social media posts on American platforms while physically present on U.S. soil" and "for foreign officials to demand that American tech platforms adopt global content moderation policies or engage in censorship activity that reaches beyond their authority and into the United States." It's not yet clear how or against whom the policy will be enforced, but seems to implicate Europe's Digital Services Act, a law that came into effect in 2023 with the goal of making online platforms safer by imposing requirements on the largest platforms around removing illegal content and providing transparency about their content moderation. Though it's not mentioned directly in the press release about the visa restrictions, the Trump administration has slammed the law on multiple occasions, including in remarks earlier this year by Vice President JD Vance. The State Department's homepage currently links to an article on its official Substack, where senior advisor for the Bureau of Democracy, Human Rights, and Labor Samuel Samson critiques the DSA as a tool to "silence dissident voices through Orwellian content moderation." He adds, "Independent regulators now police social media companies, including prominent American platforms like X, and threaten immense fines for non-compliance with their strict speech regulations." "We will not tolerate encroachments upon American sovereignty," Rubio says in the announcement, "especially when such encroachments undermine the exercise of our fundamental right to free speech."

Read more of this story at Slashdot.

According to Bloomberg's Mark Gurman (paywalled), this year's iOS update won't be called iOS 19. "Instead, Apple is planning to call it 'iOS 26' as part of a new year-based naming strategy," reports 9to5Mac. The new naming scheme will apply to all of Apple's software platforms. From the report: Bloomberg explains that Apple is making this change to "bring consistency to its branding and move away from an approach that can be confusing to customers and developers." The branding alignment comes as Apple is also reportedly planning dramatic redesigns for all of its platforms. The goal seems to be to unify everything both in terms of naming and design.

Read more of this story at Slashdot.

Telegram has partnered with xAI to integrate the Grok chatbot into its platform for one year, with xAI paying $300 million in cash and equity. Telegram will also receive 50% of subscription revenue from Grok. TechCrunch reports: Earlier this year, xAI made the Grok chatbot available to Telegram's premium users. It seems Grok might now be made available to all users. A video posted by [Telegram CEO Pavel Durov] on X suggested that Grok can be pinned on top of chats within the app, and users can also ask questions to Grok from the search bar. Notably, Meta has also integrated Meta AI into the search bar on Instagram and WhatsApp. The video also shows that you will be able to use Grok for writing suggestions, summarizing chats, links, and documents, and creating stickers. Grok will supposedly also help answer questions for businesses and assist with moderation.

Read more of this story at Slashdot.

An anonymous reader quotes a report from 9to5Google: Google Photos was announced at I/O 2015 and the company is now celebrating the app's 10th birthday with a redesign of the photo editor. Google is redesigning the Photos editor so that it "provides helpful suggestions and puts all our powerful editing tools in one place." It starts with a new fullscreen viewer that places the date, time, and location at the top of your screen. Meanwhile, it's now Share, Edit, Add to (instead of Lens), and Trash at the bottom. Once editing, Google Photos has moved controls for aspect ratio, flip, and rotate to be above the image. In the top-left corner, we have Auto Frame, which debuted in Magic Editor on the Pixel 9, to fill-in backgrounds and is now coming to more devices. Underneath, we get options for Enhance, Dynamic, and "AI Enhance" in the Auto tab. That's followed by Lighting, Color, and Composition, as well as a search shortcut: "You can use AI-powered suggestions that combine multiple effects for quick edits in a variety of tailored options, or you can tap specific parts of an image to get suggested tools for editing that area." The editor allows you to circle or "tap specific parts of an image to get suggested tools for editing that area." This includes the subject, background, or some other aspect. You then see the Blur background, Add portrait light, Sharpen, Move and Reimagine appear in the example below. We also see the redesigned sliders throughout this updated interface. This Google Photos editor redesign "will begin rolling out globally to Android devices next month, with iOS following later this year." We already know the app is set for a Material 3 Expressive redesign. Meanwhile, Google Photos is starting to roll out the ability to share albums with a QR code. This method makes for easy viewing and adding with people nearby. Google even suggests printing it out when in (physical) group settings. Google shared a few tips, tricks and tools for the new editor in a blog post.

Read more of this story at Slashdot.

Japanese police referred five individuals and a company to prosecutors last week for allegedly operating a website that published detailed movie plots without permission from rights holders. The Miyagi Prefectural Police Headquarters and Minamisanriku Police Station sent the case to the Sendai District Public Prosecutors Office on suspicion of violating the Copyright Act. The Content Overseas Distribution Association described the case as having "very few precedents for a corporation being referred to the prosecutor's office on suspicion of violating the Copyright Act, making this an extremely rare case." The website posted detailed content from films including "Godzilla Minus One" and four others copyrighted by Toho, "Shin Kamen Rider" and two others by Toei, "Neck" and one other by KADOKAWA, and "Shin Ultraman" by Tsuburaya Productions. The site listed more than 8,000 films with complete storylines, character names, dialogue, and scene descriptions.

Read more of this story at Slashdot.

The world faces an 80% probability of breaking another annual temperature record within the next five years, according to a forecast released Wednesday by the World Meteorological Organization and the UK Meteorological Office. The projections, derived from more than 200 computer simulations run by 10 global scientific centers, indicate an 86% chance that one of the next five years will surpass the 1.5 degrees Celsius warming threshold established by the Paris climate accord, with a 70% chance that the entire five-year period will average above that milestone. For the first time, the agencies identified a slight possibility that global annual temperatures could reach the more alarming 2 degrees Celsius benchmark before the decade's end.

Read more of this story at Slashdot.

A fairly comprehensive look at the early personal computer culture reveals that from 1975 through early 1977, personal computers remained "almost exclusively the province of hobbyists who loved to play with computers and found them inherently fascinating," according to newly surfaced historical research. When BYTE magazine launched in 1975, its cover called computers "the world's greatest toy," reflecting the recreational rather than practical focus of early adopters. A BYTE magazine survey from late 1976 showed these pioneers were remarkably homogeneous: 72% held at least a bachelor's degree, had a median annual income of $20,000 ($123,000 in 2025 dollars), and were overwhelmingly male at 99%. Rather than developing practical software applications, early users gravitated toward games, particularly Star Trek simulations that appeared frequently in magazine advertisements and user group demonstrations. The hobbyist community organized around local clubs like the famous Homebrew Computer Club, retail stores, and specialized magazines that helped establish what one researcher calls "a mythology of the microcomputer." This narrative positioned hobbyists as democratizing heroes who "ripped the computer and the knowledge of how to use it from the hands of the priests, sharing freedom and power with the masses," challenging what they termed the "computer priesthood" of institutional gatekeepers. This self-contained hobbyist culture would soon be "subsumed by a larger phenomenon" as businessmen began targeting mass markets in 1977.

Read more of this story at Slashdot.

The GNU C Library (glibc) is the core C library for most Linux distributions, so it is a crucial part of the open-source ecosystem—and an attractive target for any attackers looking to carry out supply-chain attacks. With that being the case, securing the project's infrastructure using industry best practices and improving the security of its development practices are a frequent topic among glibc developers. A recent discussion suggests that improvements are not happening as quickly as some would like.

Japan Post has launched a "digital address" system that links seven-digit combinations of numbers and letters to physical addresses. From a report: Under the system, users can input these seven-digit codes on online shopping websites, and their addresses will automatically appear on the sites. People can obtain digital addresses by registering with Japan Post's Yu ID membership service. Their digital addresses will not change even if their physical addresses change. Their new addresses will be linked to the codes if they submit notices of address changes.

Read more of this story at Slashdot.