RSS 생중계

Security updates have been issued by Debian (mercurial and opensaml), Fedora (augeas, mingw-libxslt, and nodejs-nodemon), Mageia (chromium-browser-stable), Red Hat (grafana, kernel, kernel-rt, opentelemetry-collector, and podman), SUSE (apache-commons-vfs2, python3, and python36), and Ubuntu (ghostscript, linux, linux-aws, linux-azure, linux-gcp, linux-gke, linux-gkeop, linux-ibm, linux-intel-iotg, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15, linux-raspi, linux, linux-aws, linux-azure, linux-gcp, linux-hwe-6.11, linux-oracle, linux-realtime, linux, linux-aws, linux-gcp, linux-gcp-6.8, linux-gke, linux-gkeop, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oracle, linux-oracle-6.8, linux-aws-5.15, linux-kvm, linux-azure, linux-ibm, linux-lowlatency, linux-lowlatency-hwe-6.11, linux-oem-6.11, linux-oem-6.8, linux-realtime, smarty, and snakeyaml).

uninet writes: The same year Apple launched the iPhone, it unveiled a massive upgrade to Mac OS X known as Leopard, sporting "300 New Features." Two years later, it did something almost unheard of: it released Snow Leopard, an upgrade all about how little it added and how much it took away. Apple needs to make it snow again. Current releases of MacOS Sequoia and iOS/iPadOS 18 are riddled with easily reproducible bugs in high-traffic areas, the author argues, suggesting Apple's engineers aren't using their own software. Messages can't reliably copy text, email connections randomly fail, and Safari frequently jams up. Even worse are the baffling design decisions, like burying display arrangement settings and redesigning Photos with needless margins and inconsistent navigation. Apple's focus on the Vision Pro while AI advances raced ahead has left them scrambling to catch up, the author argues, with Apple Intelligence features now indefinitely delayed. The author insists that Apple's products still remain better than Windows or Android alternatives -- but "least bad" isn't the premium experience Apple loyalists expect. With its enormous resources, Apple could easily have teams focus on cleaning up existing software while simultaneously developing AI features. Further reading: 'Something Is Rotten in the State of Cupertino' .

Read more of this story at Slashdot.

The Register: Following our report last week on IBM's ongoing layoffs, current and former employees got in touch to confirm what many suspected: The US cuts run deeper than reported, and the jobs are heading to India. IBM's own careers site numbers back that up. On January 7, 2024, Big Blue listed just 173 open positions in India. On November 23, 2024, there were 2,946 jobs available in the nation. At the time of writing, the IT titan listed 3,866 roles in India. American jobs listed for these three periods are 192, 376, and 333, respectively, though at least among those being laid off, there's doubt those roles will be filled with job seekers in the States. A current IBMer who won't be there much longer said that after being told to teach recently hired workers in India "everything I know," the reward was a resource action, or RA -- Big Blue's euphemism for a layoff. After receiving an RA notification, employees typically have a set period of time to apply for open roles elsewhere in the mega-corporation. But just because there are open positions listed in the US doesn't mean IBM is making much of an effort to fill them, we are told.

Read more of this story at Slashdot.

As NASA faces potential budget cuts, China is unveiling an ambitious series of deep space missions -- including Mars sample returns, outer planet exploration, and a future Mars base. While some of China's plans are aspirational, their track record of successful missions lends credibility to their expanding role in space. Ars Technica reports: China created a new entity called the "Deep Space Exploration Laboratory" three years ago to strengthen the country's approach to exploring the Solar System. Located in eastern China, not far from Shanghai, the new laboratory represented a partnership between China's national space agency and a local public college, the University of Science and Technology of China. Not much is known outside of China about the laboratory, but it has recently revealed some very ambitious plans to explore the Solar System, including the outer planets. This week, as part of a presentation, Chinese officials shared some public dates about future missions. Space journalist Andrew Jones, who tracks China's space program, shared some images with a few details. Among the planned missions are: - 2028: Tianwen-3 mission to collect samples of Martian soil and rocks and return them to Earth - 2029: Tianwen-4 mission to explore Jupiter and its moon Callisto - 2030: Development of a large, ground-based habitat to simulate long-duration human spaceflight - 2033: Mission to Venus that will return samples of its atmosphere to Earth - 2038: Establishment of an autonomous Mars research station to study in-situ resource utilization - 2039: Mission to Triton, Neptune's largest moon, with a subsurface explorer for its ocean

Read more of this story at Slashdot.

Anthropic researchers have developed a breakthrough "cross-layer transcoder" (CLT) that functions like an fMRI for large language models, mapping how they process information internally. Testing on Claude 3.5 Haiku, researchers discovered the model performs longer-range planning for specific tasks -- such as selecting rhyming words before constructing poem sentences -- and processes multilingual concepts in a shared neural space before converting outputs to specific languages. The team also confirmed that LLMs can fabricate reasoning chains, either to please users with incorrect hints or to justify answers they derived instantly. The CLT identifies interpretable feature sets rather than individual neurons, allowing researchers to trace entire reasoning processes through network layers.

Read more of this story at Slashdot.

An anonymous reader shares a report: For decades, India's economic promise has rested on its demographic dividend -- the competitive edge of a massive, young, and increasingly educated workforce. Economists and policymakers have routinely cited the country's population profile as its ticket to economic superpower status, with projections of reaching $10 trillion in GDP and achieving high-income status by 2047. These forecasts depend heavily on a critical assumption: that roughly 500 million Indians currently aged 5-24 will find productive employment as they enter the workforce over the next two decades. But a sobering new analysis from Bernstein suggests this fundamental premise may be crumbling under the weight of rapid advances in AI. "The advent of AI threatens to erode all the advantages of India's rich demographic dividend," write Bernstein analysts Venugopal Garre and Nikhil Arela, who characterize their assessment as a potential "doomsday scenario" for a nation that has hitched its economic wagon to services-led growth. At stake is India's $350 billion services export sector -- a sprawling ecosystem of IT outsourcing, business process management, and offshore knowledge centers that employs over 10 million workers, mostly in jobs that place them in the top 25% of the country's income distribution. While India's IT giants have successfully navigated previous technological shifts -- from basic call centers in the late 1980s to cloud computing and data analytics more recently -- AI poses a fundamentally different challenge. Unlike earlier transitions that required human adaptation, today's AI systems threaten to replace rather than complement the workforce. "AI subscriptions that come at a fraction of the costs of India's entry level engineers can be deployed to perform tasks at higher precision and speed," the report note.

Read more of this story at Slashdot.

An anonymous reader quotes a report from the Washington Post: Virginia is set to become the first state in the country to require some reckless drivers to put devices on their cars that make it impossible to drive too fast. D.C. passed similar legislation last year. Several other states, including Maryland, are considering joining them. It's an embrace of a technological solution to a human problem: Speeding contributes to more than 10,000 deaths a year. Under the Virginia legislation, a judge can decide to order drivers to install the speed limiters in their vehicles in lieu of taking away their driving privileges or sending them to jail. It takes effect in July 2026. Del. Patrick A. Hope (D-Arlington) said various advocacy groups, including Mothers Against Drunk Driving and the National Safety Council, gave him the idea. He drove a car outfitted with the technology and was impressed. "It was easy to use, and once you're engaged it's impossible to go over the speed limit," he said. "It will make our streets safer." He thinks the device is preferable to suspending drivers' licenses, a punishment that people frequently ignore because they have no other way of getting to work or the store or taking their children to school. It's an approach similar to using an interlock device that requires a person convicted of drunken driving to pass a Breathalyzer test to start their car. Hope wanted anyone convicted of reckless driving after going 100 mph or more to be required to use a limiter for two to six months, but Gov. Glenn Youngkin (R) struck that part of the bill, leaving all use of the limiting technology up to the state courts. Hope expressed concern about the governor's amendment but will urge the General Assembly to accept it, as the legislature typically does when the bill's sponsor signals support. Drivers must pay for the speed limiters themselves. (As in D.C., indigent defendants are exempt from paying.) The limiters won't be used in Virginia on commercial vehicles. Attempting to evade the speed limiter by tampering with it or driving a different car is a misdemeanor punishable by up to a year in jail.

Read more of this story at Slashdot.

Following OpenAI's viral Studio Ghibli moment, CEO Sam Altman says it has temporarily limited image generation in ChatGPT due to the overwhelming demand on its GPU infrastructure. "It's super fun seeing people love images in ChatGPT, but our GPUs are melting," he posted on X today. The Verge reports: The demand crunch already caused the artificial intelligence company to push back availability of the built-in image generator for users on ChatGPT's free tier. But apparently that measure alone wasn't enough to ease the stress on OpenAI's infrastructure. (Altman said free users will "soon" be able to generate up to three images per day.)

Read more of this story at Slashdot.

U.S. robotics companies, including Tesla and Boston Dynamics, are urging lawmakers to establish a national robotics strategy to keep pace with China's aggressive investment in AI-driven robotics. The Associated Press reports: Jeff Cardenas, co-founder and CEO of humanoid startup Apptronik, of Austin, Texas, pointed out to lawmakers that it was American carmaker General Motors that deployed the first industrial robot at a New Jersey assembly plant in 1961. But the U.S. then ceded its early lead to Japan, which remains a powerhouse of industrial robotics, along with Europe. The next robotics race will be powered by artificial intelligence and will be "anybody's to win," Cardenas said in an interview after the closed-door meeting. "I think the U.S. has a great chance of winning. We're leading in AI, and I think we're building some of the best robots in the world. But we need a national strategy if we're going to continue to build and stay ahead." The Association for Advancing Automation said a national strategy would help U.S. companies scale production and drive the adoption of robots as the "physical manifestation" of AI. The group made it clear that China and several other countries already have a plan in place. Without that leadership, "the U.S. will not only lose the robotics race but also the AI race," the association said in a statement. The group also suggested tax incentives to help drive adoption, along with federally-funded training programs and funding for both academic research and commercial innovation. A new federal robotics office, the association argued, is necessary partly because of "the increasing global competition in the space" as well as the "growing sophistication" of the technology.

Read more of this story at Slashdot.

Ubisoft is launching a new subsidiary focused on Assassin's Creed, Far Cry, and Rainbow Six, backed by a 1.16 billion-euro investment from Tencent. "The as-yet-unnamed subsidiary will fold in the teams working on those three series, including Ubisoft studios in Montreal, Quebec, Sherbrooke, Saguenay, Barcelona and Sofia," reports Engadget. From the report: This new business will receive an investment of 1.16 billion-euro (roughly $1.25 billion) from its longstanding partner Tencent, granting the conglomerate a minority ownership stake. Following the transaction, Ubisoft will narrow focus to its other franchises, such as The Division and Tom Clancy's Ghost Recon. [...] There is some extra good news in the announcement. The description of the new subsidiary does specify that "it will drive further increases in quality of narrative solo experiences." So while we can expect to also see multiplayer and free-to-play offerings from the Ubisoft umbrella, they aren't giving up on single-player games. "Today Ubisoft is opening a new chapter in its history," CEO and Co-Founder Yves Guillemot said. "As we accelerate the company's transformation, this is a foundational step in changing Ubisoft's operating model that will enable us to be both agile and ambitious."

Read more of this story at Slashdot.

An anonymous reader quotes a report from the BBC: Fashion retailer H&M is to use artificial intelligence (AI) to create digital "twins" of 30 models. It says it will use the AI doppelgangers in some social media posts and marketing in the place of humans, if given permission by models. "We are curious to explore how to showcase our fashion in new creative ways -- and embrace the benefits of new technology -- while staying true to our commitment to personal style," said its chief creative officer Jorgen Andersson in a statement. The initiative was first reported by industry publication Business of Fashion. H&M told the outlet that models would retain rights over their digital replicas and their use by the company and other brands for purposes such as marketing. Its images are likely to be initially used in social media posts, with watermarks that make their AI use clear, it added. H&M also said models would be compensated for use of their digital twins in a similar way to current arrangements -- which sees them paid for use of their images based on rates agreed by their agent.

Read more of this story at Slashdot.

Google is rolling out new AI-powered features across Maps, Search, and Hotels to simplify travel planning, including a screenshot-detection tool in Maps that identifies and saves locations mentioned in image text. The Verge reports: Once the new screenshot list is enabled in Maps, the Gemini-powered feature will detect places that are mentioned in text within screenshots on the device, show users the locations on the map, and allow them to review and save locations to a sharable list. The screenshot list feature will start rolling out in English this week to iOS users in the US, with Android support "coming soon." AI Overviews for Google Search are also being updated to expand travel planning tools, with itinerary-building features rolling out in English to mobile and desktop devices in the US this week that can create trip ideas for "distinct regions or entire countries." Users can use terms like "create a vacation itinerary for Greece that focuses on history" to explore reviews and photos from other users alongside a map of location recommendations, which can be saved to Google Maps or exported to Docs or Gmail.

Read more of this story at Slashdot.

Ubuntu 23.10 and 24.04 LTS introduced a feature using AppArmor to restrict access to user namespaces. Qualys has reported three ways to bypass AppArmor's restrictions and enable local users to gain full administrative capabilities within a user namespace. Ubuntu has followed up with a post that explains the namespace-restriction feature in detail, and says these bypasses do not constitute security vulnerabilities.

While a superficial observation of the application of user namespaces may indicate privileged (root level) access, this is a fictitious state that is operating as expected, with access control still mapped to the real (root namespace) user's permissions. As such, these bypasses do not enable more access than what the default Linux kernel unprivileged user namespace feature allows in most Linux distributions. They do, however, demonstrate limitations that we are looking to address in order to strengthen existing protections against as-of-yet-unknown Linux kernel vulnerabilities.

LWN covered Ubuntu 24.04 LTS last May.

Columbia University has suspended the student who created an AI tool designed to help job candidates cheat on technical coding interviews, according to disciplinary documents seen by Business Insider. Chungin "Roy" Lee received a yearlong suspension for "publishing unauthorized documents" from a disciplinary hearing about his product, Interview Coder, not for creating the tool itself. Lee had signed a form agreeing not to disclose his disciplinary record or post hearing materials online. Interview Coder, which sells for $60 monthly, is on track to generate $2 million in annual revenue, Lee said. The university initially placed him on probation after finding him responsible for "facilitation of academic dishonesty." Lee had already submitted paperwork for a leave of absence before his suspension. He told BI he plans to move to San Francisco, which "was my plan all along."

Read more of this story at Slashdot.

MojoKid writes: Similar to Nvidia's recent desktop graphics launches, there are four initial GeForce RTX 50 series laptop GPUs coming to market, starting this month. At the top of the stack is the GeForce RTX 5090 laptop GPU, which is equipped with 10,496 CUDA cores and is paired to 24GB of memory. Boost clocks top out around 2,160MHz and GPU power can range from 95-150 watts, depending on the particular laptop model. GeForce RTX 50 series GPUs for both laptops and desktops feature updated shader cores with support for neural shading, in addition to 4th gen ray tracing cores and 5th gen Tensor cores with support for DLSS 4. The GeForce RTX 50 series features a native PCIe gen 5 interface, in addition to support for DisplayPort 2.1b (up to UHBR20). These GPUs are also fed by the latest high speed GDDR7 memory, which offers efficiency benefits that are pertinent to laptop designs as well. Performance-wise, NVIDIA's mobile GeForce RTX 5090 is the new king of the hill in gaming laptops, and it easily bests all other discrete mobile graphics options on the market currently.

Read more of this story at Slashdot.

One recurring criticism of Rust has been that the language has no official specification. This is a barrier to adoption in some safety-conscious organizations, as well as to writing alternate language implementations. Now, the Rust project has announced that it will be adopting the Ferrocene Language Specification (FLS) developed by Ferrous Systems and maintaining it as part of the core project. While this may not satisfy die-hard standardization-process enthusiasts, it's a step toward removing another barrier to using Rust in safety-critical systems.

It's in that light that we're pleased to announce that we'll be adopting the FLS into the Rust Project as part of our ongoing specification efforts. This adoption is being made possible by the gracious donation of the FLS by Ferrous Systems. We're grateful to them for the work they've done in assembling the FLS, in making it fit for qualification purposes, in promoting its use and the use of Rust generally in safety-critical industries, and now, for working with us to take the next step and to bring the FLS into the Project.

An anonymous reader quotes a report from BleepingComputer: Despite Oracle denying a breach of its Oracle Cloud federated SSO login servers and the theft of account data for 6 million people, BleepingComputer has confirmed with multiple companies that associated data samples shared by the threat actor are valid. Last week, a person named 'rose87168' claimed to have breached Oracle Cloud servers and began selling the alleged authentication data and encrypted passwords of 6 million users. The threat actor also said that stolen SSO and LDAP passwords could be decrypted using the info in the stolen files and offered to share some of the data with anyone who could help recover them. The threat actor released multiple text files consisting of a database, LDAP data, and a list of 140,621 domains for companies and government agencies that were allegedly impacted by the breach. It should be noted that some of the company domains look like tests, and there are multiple domains per company. In addition to the data, rose87168 shared an Archive.org URL with BleepingComputer for a text file hosted on the "login.us2.oraclecloud.com" server that contained their email address. This file indicates that the threat actor could create files on Oracle's server, indicating an actual breach. However, Oracle has denied that it suffered a breach of Oracle Cloud and has refused to respond to any further questions about the incident. "There has been no breach of Oracle Cloud. The published credentials are not for the Oracle Cloud. No Oracle Cloud customers experienced a breach or lost any data," the company told BleepingComputer last Friday. This denial, however, contradicts findings from BleepingComputer, which received additional samples of the leaked data from the threat actor and contacted the associated companies. Representatives from these companies, all who agreed to confirm the data under the promise of anonymity, confirmed the authenticity of the information. The companies stated that the associated LDAP display names, email addresses, given names, and other identifying information were all correct and belonged to them. The threat actor also shared emails with BleepingComputer, claiming to be part of an exchange between them and Oracle.

Read more of this story at Slashdot.

Microsoft plans to roll out a new Windows scheduled task in May that launches automatically to help Microsoft Office apps load faster. From a report: The company says the "Startup Boost" task will launch in the background on logon, with the roll-out to start in mid-May and worldwide general availability to be reached by late May 2025. On systems where it's toggled on, users will see new Office Startup Boost and Office Startup Boost Logon tasks in the Windows Task Scheduler, which will ensure that Office apps can preload "performance enhancements." "We are introducing a new Startup Boost task from the Microsoft Office installer to optimize performance and load-time of experiences within Office applications," Microsoft says on the Microsoft 365 message center. "After the system performs the task, the app remains in a paused state until the app launches and the sequence resumes, or the system removes the app from memory to reclaim resources. The system can perform this task for an app after a device reboot and periodically as system conditions allow."

Read more of this story at Slashdot.

Microsoft CEO Satya Nadella has told employees that DeepSeek's R1 AI model has set "the new bar" for his company's AI ambitions, citing the startup's ability to reach the top of app store rankings. "What's most impressive about DeepSeek is that it's a great reminder of what 200 people can do when they come together with one thought and one play," The Verge cited Nadella as saying. "Most importantly, not just leaving it there as a research project or an open source project, but to turn it into a product that was number one in the App Store. That's the new bar to me," he added. Microsoft quickly deployed DeepSeek's R1 on its Azure platform in January. The AI model gained recognition for its optimization below Nvidia's CUDA layer, enabling greater efficiency.

Read more of this story at Slashdot.

An anonymous reader shares a report: You can now choose WhatsApp as your iPhone's default app for calls and text messages, as noted by WABetaInfo. After updating WhatsApp to version 25.8.74, you'll see the app appear as an option in your Messaging and Calling default app settings. Apple first announced that it would let iPhone users in the European Union change their default phone and messaging apps, but it later said that everyone would be able to do the same in iOS 18.2.

Read more of this story at Slashdot.