Feed aggregator
Qantas Confirms Data Breach Impacts 5.7 Million Customers
Qantas has confirmed that 5.7 million customers have been impacted by a recent data breach through a third-party platform used by its contact center. The breach, attributed to the Scattered Spider threat group, exposed various personal details but did not include passwords, financial, or passport data. BleepingComputer reports: In a new update today, Qantas has confirmed that the threat actors stole data for approximately 5.7 million customers, with varying types of data exposed in the breach:
4 million customer records are limited to name, email address and Qantas Frequent Flyer details. Of this:
- 1.2 million customer records contained name and email address.
- 2.8 million customer records contained name, email address and Qantas Frequent Flyer number. The majority of these also had tier included. A smaller subset of these had points balance and status credits included.
Of the remaining 1.7 million customers, their records included a combination of some of the data fields above and one or more of the following:
- Address - 1.3 million. This is a combination of residential addresses and business addresses including hotels for misplaced baggage delivery.
- Date of birth - 1.1 million
- Phone number (mobile, landline and/or business) - 900,000
- Gender - 400,000. This is separate to other gender identifiers like name and salutation.
- Meal preferences - 10,000
Read more of this story at Slashdot.
Emirates Airline Adding Crypto Payments With Crypto.com Partnership
Dubai-based airline Emirates is partnering with Crypto.com to integrate Bitcoin payments into the airliner's payment systems and add NFT collectibles on the company's websites for trading. The airline is also hiring staff to support its blockchain, crypto, and metaverse ambitions, positioning itself at the forefront of digital transformation in aviation.
"NFTs and metaverse are two different applications and approaches," explained Emirates Chief Operating Officer Adel Ahmed Al-Redha, adding that the airline will also seek to use the blockchain in tracing records of aircraft. "With the metaverse, you will be able to transform your whole processes -- whether it is in operation, training, sales on the website, or complete experience -- into a metaverse type application, but more importantly making it interactive."
The official integration of crypto payments is expected to take place next year, according to the announcement.
Read more of this story at Slashdot.
German Court Rules Meta Tracking Tech Violates EU Privacy Laws
An anonymous reader quotes a report from The Record: A German court has ruled that Meta must pay $5,900 to a German Facebook user who sued the platform for embedding tracking technology in third-party websites -- a ruling that could open the door to large fines down the road over data privacy violations relating to pixels and similar tools. The Regional Court of Leipzig in Germany ruled Friday that Meta tracking pixels and software development kits embedded in countless websites and apps collect users' data without their consent and violate the continent's General Data Protection Regulation (GDPR).
The ruling in favor of the plaintiff sets a precedent which the court acknowledged will allow countless other users to sue without "explicitly demonstrating individual damages," according to a Leipzig Regional Court press release. "Every user is individually identifiable to Meta at all times as soon as they visit the third-party websites or use an app, even if they have not logged in via the Instagram and Facebook account," the press release said. "This may very well be one of the most substantial rulings coming out of Europe this year," said Ronni K. Gothard Christiansen, the CEO of AesirX, a consultancy which helps businesses comply with data privacy laws. "$5,900 in damages for one visitor adds up quickly if you have tens of thousands of visitors, or even millions."
Read more of this story at Slashdot.
Russia Blocks Ethical Hacking Legislation Over Security Concerns
Russia's State Duma rejected legislation that would have legalized ethical hacking, citing national security concerns. Politicians worried that discovering vulnerabilities in software from hostile countries would require sharing those security flaws with foreign companies, potentially enabling strategic exploitation.
The bill also failed to explain how existing laws would accommodate white-hat hacking provisions. Russia's Ministry of Digital Development introduced the proposal in 2022, with a first draft in 2023. Individual security researchers currently face prosecution under Russian Criminal Code for unauthorized computer access, while established cybersecurity companies can conduct limited vulnerability research.
Read more of this story at Slashdot.
Gemini Can Now Turn Your Photos Into Video With Veo 3
Google is rolling out photo-to-video generation in its Gemini app today, allowing paid subscribers to upload images and transform them into short AI videos using the company's Veo 3 model. The feature requires a subscription to Google's AI Pro plan at $20 per month for three daily video generations, or the $250 AI Ultra plan for five daily videos.
Videos are limited to 720p resolution and eight seconds in length, taking several minutes to generate due to computational requirements.
Read more of this story at Slashdot.
Indeed, Glassdoor To Cut 1,300 Jobs in AI-Focused Consolidation
Indeed and Glassdoor -- both owned by the Japanese group Recruit Holdings -- are cutting roughly 1,300 jobs as part of a broader move to combine operations and shift more focus toward AI. From a report: The cuts will mostly affect people in the US, especially within teams including research and development and people and sustainability, Recruit Holdings Chief Executive Officer Hisayuki "Deko" Idekoba said in a memo to employees. The company didn't give a specific reason for the cuts, but Idekoba said in his email that "AI is changing the world, and we must adapt by ensuring our product delivers truly great experiences."
Read more of this story at Slashdot.
Physical Buttons Make Comeback on Mazda Steering Wheels as Company Adopts First Touchscreen
Mazda is redesigning the steering wheel controls in its new CX-5 to address potential safety concerns from its shift to touchscreen-based infotainment systems. The Japanese automaker developed what it calls "an all new steering wheel layout with physical buttons" that allow drivers to control critical vehicle functions without taking their hands off the wheel. Stefan Meisterfeld, Mazda's U.S. VP of operations, said the new steering wheel design goes beyond simple redundant shortcuts.
The company is pairing the enhanced steering wheel controls with Google Assistant voice commands and a 15.6-inch central touchscreen that now houses audio and climate controls previously operated by physical dashboard buttons. Mazda had been the sole mainstream holdout against touchscreen infotainment systems, relying instead on a console-mounted dial. The steering wheel redesign represents the company's attempt to maintain its "hands on the wheel, eyes on the road" safety philosophy while adopting touchscreen technology that customer research indicated buyers wanted.
Read more of this story at Slashdot.
This Linux distro combines the best parts of Windows and MacOS - and it's gorgeous - ZDNet
Categories: Linux
Judge Throws Out Lawsuit Accusing Apple of Taking Bribes To Avoid Competing With Visa and Mastercard
A federal judge has dismissed an antitrust lawsuit that accused Apple, Visa and Mastercard of conspiring to suppress competition in the payments network market and inflate merchant transaction fees.
U.S. District Judge David Dugan in Illinois ruled that merchants failed to provide sufficient evidence supporting claims that Apple illegally declined to launch a competing payment network to rival Visa and Mastercard.
The lawsuit, filed by beverage retailer Mirage Wine & Spirits and other businesses representing thousands of merchants, alleged the payment networks paid Apple hundreds of millions of dollars annually to avoid competition. Dugan found the plaintiffs offered only "a slew of circumstantial allegations" but permitted them to amend their complaint.
Read more of this story at Slashdot.
China is Building 74% of All Current Solar and Wind Projects
Almost three-quarters of all solar and wind power projects being built globally are in China, says a new report that highlights the country's rapid expansion of renewable energy sources. From a report: China is building 510 gigawatts of utility-scale solar and wind projects, according to data from the Global Energy Monitor, a non-governmental organisation based in San Francisco. That compares with about 689GW under construction globally, GEM said.
A rough rule of thumb is that a gigawatt can potentially supply electricity for about 1mn homes. "China is [...] leading the world in global renewable energy build-out," the report said. "It continues to add solar and wind power at a record pace." China's expansion of clean energy sources is important for efforts to fight climate change, given the country's dominant role in global manufacturing.
Read more of this story at Slashdot.
Red Hat sweetens the RHEL deal for biz devs – just don't put it in prod - theregister.com
Categories: Linux
Swedish Bodyguards Reveal Prime Minister's Location on Fitness App
Swedish security service members who shared details of their running and cycling routes on fitness app Strava have been accused of revealing details of the prime minister's location, including his private address. Politico: According to Swedish daily Dagens Nyheter, on at least 35 occasions bodyguards uploaded their workouts to the training app and revealed information linked to Prime Minister Ulf Kristersson, including where he goes running, details of overnight trips abroad, and the location of his private home, which is supposed to be secret.
Read more of this story at Slashdot.
Why America Still Can't Get Disaster Alerts Right
US's emergency-warning infrastructure failed to prevent more than 100 deaths during flash flooding in Kerr County, Texas over the July 4 weekend, despite repeated warnings from the National Weather Service. At least 27 young campers and counselors died at Camp Mystic when the Guadalupe River surged during early morning hours. The alerts never reached residents who lacked cellphone service, had silenced notifications, or didn't carry phones with them.
Similar communication failures occurred during recent Los Angeles wildfires and Maui blazes. Maui's outdoor sirens never sounded during 2023 wildfires when cellular networks failed. Nearly 30% of Texas residents opt out of wireless emergency alerts, the highest rate nationally. Rural officials often lack funding or permission to send alerts through broadcasters and cellphones. So what's going on?
Federal, state and local authorities share responsibility for alerting citizens through multiple platforms, but the country's patchwork of digital and physical emergency-alert tools often lags behind rapidly developing weather events, WSJ argues.
The Atlantic has a story that adds more color: It details how officials lack training in writing effective alerts, how messages like "move to higher ground" are meaningless without context, and how the absence of warning-coordination meteorologists creates communication gaps between weather services and local authorities.
Read more of this story at Slashdot.
Linux's Ascendancy: Charting the Open-Source Surge in the Desktop OS Arena - Linux Journal
Categories: Linux
Senators Signal They're Prepared To Push Back Against NASA Cuts
Senators from both parties are preparing to challenge the Trump administration's proposed 24% cut to NASA's budget, with the Senate appropriations committee advancing a $24.9 billion allocation that matches the agency's 2025 funding levels.
The bipartisan pushback directly contradicts President Donald Trump's budget request, which sought to slash NASA's science portfolio funding nearly in half and terminate dozens of operating and planned missions. "We rejected cuts that would have devastated NASA science by 47% and would have terminated 55 operating and planned missions," Senator Chris Van Hollen, a Democrat from Maryland, said.
The Senate bill allocates $7.3 billion for science programs. Senators also refused the administration's call to cancel the Space Launch System rocket and Orion crew capsule after their third flights, programs Trump's budget labeled "grossly expensive and delayed." "The bill reflects an ambitious approach to space exploration, prioritizing the agency's flagship program, Artemis, and rejecting premature termination of systems like SLS and Orion before commercial replacements are ready," said Senator Jerry Moran, a Kansas Republican.
Read more of this story at Slashdot.
New EU Regulations Require Transparency, Copyright Protection From Powerful AI Systems
European Union officials unveiled new AI regulations on Thursday that require makers of the most powerful AI systems to improve transparency, limit copyright violations and protect public safety.
The rules apply to companies like OpenAI, Microsoft and Google that develop general-purpose AI systems underpinning services like ChatGPT, which can analyze enormous amounts of data and perform human tasks. The code of practice provides concrete details about enforcing the AI Act passed last year, with rules taking effect August 2.
EU regulators cannot impose penalties for noncompliance until August 2026. Companies must provide detailed breakdowns of content used for training algorithms and conduct risk assessments to prevent misuse for creating biological weapons. CCIA Europe, representing Amazon, Google and Meta, told New York Times the code imposes a disproportionate burden on AI providers.
Read more of this story at Slashdot.
