fivenewscrypto
Terkini Populer Kategori
Headline
Loading...

Technology

[Technology][recentbylabel]

Ads Auto

vendredi 10 juillet 2026

Google pays $250K for Linux vulnerability allowing guest VM escapes

Google pays $250K for Linux vulnerability allowing guest VM escapes

A Linux vulnerability that allows untrusted virtual machines to gain root access to host machines is one of two high-severity flaws to surface this week in the open source operating system.

The vulnerability resides in KVM, which is, in essence, a virtual machine app included in the kernel of many Linux distributions. The vulnerability, tracked as CVE-2026-53359, allows guest virtual machines—such as those used in cloud platforms to isolate one user’s instance from the host OS and other user instances—to break out of that container.

Januscape: A threat to cloud platforms

The vulnerability affects KVM running on both AMD and Intel processors. It exploits bugs residing in the KVM guest-side, the portion of the VM that consists of only resources like the OS or drivers present in the guest VM, rather than resources present on the host machine. The threat went unnoticed in the Linux kernel for 16 years.

Read full article

Comments

jeudi 9 juillet 2026

Aussie gov't tells volunteers to throw out thousands of functioning test routers

Aussie gov't tells volunteers to throw out thousands of functioning test routers

Last week, thousands of SamKnows routers were bricked after a government program ran its course.

In 2020, as part of a program conducted by the Australian Competition & Consumer Commission (ACCC), the Australian government's chief competition regulator, thousands of volunteers received routers to help test and report on the typical speed and performance of broadband plans in Australia. (More specifically, the Measuring Broadband Australia (MBA) program targeted fixed-line broadband services provided over the NBN, Australia's government-owned wholesale open-access broadband network, as well as services delivered over other access networks.)

According to the final report that the ACCC distributed, the routers are whiteboxes that were “supplied by SamKnows” and that “perform tests to measure internet performance using test servers maintained by SamKnows and hosted in Australia.”

Read full article

Comments

TikTok users don't have as much agency over their FYPs as they think

TikTok users don't have as much agency over their FYPs as they think

TikTok's For You Page (FYP) is the default home screen for users of the video-sharing platform. It's a personalized, algorithmically driven content feed, but the approach differs from other social media in that TikTok's algorithm relies heavily on implicit signals—such as how long users watch particular videos—as well as explicit signals such as likes or follows. And generally, that algorithm does remarkably well at predicting which videos will interest particular users.

But some users have voiced concerns that TikTok's almighty algorithm doesn't seem to incorporate negative feedback very well. Even when they don't watch a suggested video or click the "not interested" feature, they keep seeing those videos on their FYP. Northeastern University computer scientists put those suspicions to the test. According to their recent paper, the engagement signals do have an effect, but only temporarily. Then the algorithm gradually relapses unless a user consistently gives the same feedback over and over again.

The research group specializes in "algorithm audits," co-author Piotr Sapiezynski told Ars, to better understand online platforms: "how they work, how they fail, when they fail, how they harm individuals and societies." In this case, he and his co-authors wanted to take a closer look at user agency after hearing multiple anecdotal reports from TikTok users that their negative feedback—responding to prompts by indicating they aren't interested or want to see less of a certain kind of video—doesn't seem to remove those posts from their FYP. "On the other hand, it's unclear why the platforms would offer it, if it doesn't work," said Sapiezynski.

Read full article

Comments

US seeks cheaper hunter-killer drones after Iran destroys $1B worth of Reapers

US seeks cheaper hunter-killer drones after Iran destroys $1B worth of Reapers

The US military has lost dozens of Reaper drones collectively worth more than $1 billion while carrying out surveillance and attack missions over Iran. Now the Pentagon is seeking large numbers of cheaper drones that can perform such missions despite the expectation that many will be lost in combat.

In a call for industry pitches, the Defense Innovation Unit’s notice described the US military’s current reliance on drones and crewed aircraft, each costing more than $30 million, as being “unsustainable against adversaries utilizing layered defenses enabled by increasingly low-cost antiaircraft capabilities.” It envisions deploying more “cost-effective” drones to “overwhelm enemy air defenses even while experiencing numerous [drone] losses.”

That is, in practice, what Ukraine’s military has been demonstrating with its long- and mid-range strike campaign against Russian supply lines, oil refineries, and various energy or industrial targets within Russia or occupied Ukraine. The Ukrainian campaign has been overwhelming Russia’s overstretched air defense capabilities by launching hundreds of relatively inexpensive drones and missiles on a daily basis to attack targets far behind the frontlines, while continuing to damage or destroy Russia’s most sophisticated air defense systems.

Read full article

Comments

Blue Origin, for the first time, is expected to raise private capital

Blue Origin, for the first time, is expected to raise private capital

The rocket company founded by Jeff Bezos, Blue Origin, is raising private capital, the DealBook newsletter reported early Wednesday.

According to the publication, the company is raising $10 billion, leading to a valuation of $130 billion. Coatue Management, a big asset manager, is expected to lead with a $4 billion commitment. Another $4 billion is expected to come from large institutional investors. And Bezos will contribute an additional $2 billion.

Founded in 2000, Blue Origin is seeking to become a global leader in spaceflight, developing a line of super heavy lift rockets, lunar landers, and plans for two megaconstellations. It is seeking to compete in the same areas—launch, telecommunications, data centers from space—as SpaceX.

Read full article

Comments

Hackers can use 9 of the most popular AI tools to assemble massive botnets

Hackers can use 9 of the most popular AI tools to assemble massive botnets

In the brief history of AI security, the prompt injection has quickly become the top threat. Large language models are inherently unable to distinguish between legitimate instructions provided by users and malicious ones sneaked into emails, source code, and other third-party content the models are processing. This makes it trivial to surreptitiously inject malicious commands that the LLM readily follows.

With no way to enforce this crucial boundary between trusted and untrusted sources, AI engine developers are left to erect elaborate guardrails designed to mitigate the damage rather than solve the root cause.

To date, most prompt injections have fallen into a class known as push, in which each potential victim is targeted. For example, the adversary injects malicious instructions into an individual email or calendar invitation. Because the injection must then be sent (or pushed) to each specific target, the scale of the attack is limited, hampering mass exploits that hit the Internet at large.

Read full article

Comments

Michigan sees explosive outbreak of diarrheal parasite with over 700 cases

Michigan sees explosive outbreak of diarrheal parasite with over 700 cases

Cases of a diarrhea-causing intestinal parasite have exploded in Michigan over the last two weeks in an outbreak that still has no clear source.

As of July 6, the state has received reports of over 700 cases since June 22, along with 36 hospitalizations, the Michigan Department of Health and Human Services (MDHSS) told Ars Technica on Tuesday.

On June 30, the health department reported 170 cases, which rose to 572 on July 4.

Read full article

Comments

Ads Auto


Smartphones

[Smartphones][recentbylabel]

Ads Auto

Photography

[Photography][recentbylabel2]

Economy

[Economy][recentbylabel2]