Feed aggregator

Windows 10 users urged to upgrade to avoid "security fiasco"  BleepingComputer

Windows 10 users urged to upgrade to avoid "security fiasco"  BleepingComputer

Windows 10 users urged to upgrade to avoid "security fiasco"  BleepingComputer

What Do You Want to See From Ubuntu in 2025?  OMG! Ubuntu!

In a potential U.S.-China conflict, cyberattackers are military weapons. That's the thrust of a new article from the Wall Street Journal: The message from President Biden's national security adviser was startling. Chinese hackers had gained the ability to shut down dozens of U.S. ports, power grids and other infrastructure targets at will, Jake Sullivan told telecommunications and technology executives at a secret meeting at the White House in the fall of 2023, according to people familiar with it. The attack could threaten lives, and the government needed the companies' help to root out the intruders. What no one at the briefing knew, including Sullivan: China's hackers were already working their way deep inside U.S. telecom networks, too. The two massive hacking operations have upended the West's understanding of what Beijing wants, while revealing the astonishing skill level and stealth of its keyboard warriors — once seen as the cyber equivalent of noisy, drunken burglars. China's hackers were once thought to be interested chiefly in business secrets and huge sets of private consumer data. But the latest hacks make clear they are now soldiers on the front lines of potential geopolitical conflict between the U.S. and China, in which cyberwarfare tools are expected to be powerful weapons. U.S. computer networks are a "key battlefield in any future conflict" with China, said Brandon Wales, a former top U.S. cybersecurity official at the Department of Homeland Security, who closely tracked China's hacking operations against American infrastructure. He said prepositioning and intelligence collection by the hackers "are designed to ensure they prevail by keeping the U.S. from projecting power, and inducing chaos at home." As China increasingly threatens Taiwan, working toward what Western intelligence officials see as a target of being ready to invade by 2027, the U.S. could be pulled into the fray as the island's most important backer... Top U.S. officials in both parties have warned that China is the greatest danger to American security. In the infrastructure attacks, which began at least as early as 2019 and are still taking place, hackers connected to China's military embedded themselves in arenas that spies usually ignored, including a water utility in Hawaii, a port in Houston and an oil-and-gas processing facility. Investigators, both at the Federal Bureau of Investigation and in the private sector, found the hackers lurked, sometimes for years, periodically testing access. At a regional airport, investigators found the hackers had secured access, and then returned every six months to make sure they could still get in. Hackers spent at least nine months in the network of a water-treatment system, moving into an adjacent server to study the operations of the plant. At a utility in Los Angeles, the hackers searched for material about how the utility would respond in the event of an emergency or crisis. The precise location and other details of the infrastructure victims are closely guarded secrets, and couldn't be fully determined. American security officials said they believe the infrastructure intrusions — carried out by a group dubbed Volt Typhoon — are at least in part aimed at disrupting Pacific military supply lines and otherwise impeding America's ability to respond to a future conflict with China, including over a potential invasion of Taiwan... The focus on Guam and West Coast targets suggested to many senior national-security officials across several Biden administration agencies that the hackers were focused on Taiwan, and doing everything they could to slow a U.S. response in a potential Chinese invasion, buying Beijing precious days to complete a takeover even before U.S. support could arrive. The telecom breachers "were also able to swipe from Verizon and AT&T a list of individuals the U.S. government was surveilling in recent months under court order, which included suspected Chinese agents. The intruders used known software flaws that had been publicly warned about but hadn't been patched." And ultimately nine U.S. telecoms were breached, according to America's deputy national security adviser for cybersecurity — including what appears to have been a preventable breach at AT&T (according to "one personal familiar with the matter"): [T]hey took control of a high-level network management account that wasn't protected by multifactor authentication, a basic safeguard. That granted them access to more than 100,000 routers from which they could further their attack — a serious lapse that may have allowed the hackers to copy traffic back to China and delete their own digital tracks. The details of the various breaches are stunning: Chinese hackers gained a foothold in the digital underpinnings of one of America's largest ports in just 31 seconds. At the Port of Houston, an intruder acting like an engineer from one of the port's software vendors entered a server designed to let employees reset their passwords from home. The hackers managed to download an encrypted set of passwords from all the port's staff before the port recognized the threat and cut off the password server from its network...

Read more of this story at Slashdot.

Long-time Slashdot reader theodp writes: In an Op-ed for The Huntington News, fourth year Northeastern University CS student Derek Kaplan argues that real pedagogical merit is what should count when deciding which language to use to teach CS fundamentals (aka 'Fundies'). He makes the case for Northeastern to reconsider its decision to move from Racket to Python and Java later this year in an overhaul of its first-year curriculum. "Students will get extensive training in Python, which is currently the most requested language by co-op employers," Northeastern explains (some two decades after a Slashdot commenter made the same Hot Languages = Jobs observation in a spirited 2001 debate on Java as a CS introductory language)... "I have often heard computer science students complain that Fundies 1 teaches Racket instead of a 'useful language' like Python," Kaplan writes. "But the point of Fundies is not to teach Racket — it is to teach program design skills that can be applied using any programming language. Racket is just the tool it uses to do so. A student who does well in Fundies will have no difficulty applying the same skills to Python or any other language. And with how fast the tech industry changes, is it really worth having a course that teaches just Python when tomorrow, some other language might dominate the industry? Our current curriculum focuses on timeless principles rather than fleeting trends." Also expressing concerns about the selection of suitable languages for novice programming is King's College CS Prof Michael Kölling, who explains, "One of the drivers is the perceived usefulness of the language in a real-world context. Students (and their parents) often have opinions which language is 'better' to learn. In forming these opinions, the definition of 'better' can often be vague and driven by limited insight. One strong aspect commonly cited is the perceived usefulness of a language in the 'real world.' If a language is widely used in industry, it is more likely to be seen as a useful language to learn." Kölling's recommendation? "We need a new language for teaching novices at secondary school and introductory university level," Kölling concludes. "This language should be designed explicitly for teaching [...] Maintenance and adaptation of this language should be driven by pedagogical considerations, not by industry needs." While noble in intent, one suspects Kaplan and Kölling may be on a quixotic quest in a money wins world, outgunned by the demands, resources, and influence of tech giants like Amazon — the top employer of Northeastern MSCS program grads — who pushed back against NSF advice to deemphasize Java in high school CS and dropped $15 million to have tech-backed nonprofit Code.org develop and push a new Java-based, powered-by-AWS CS curriculum into high schools with the support of a consortium of politicians, educators, and tech companies. Echoing Northeastern, an Amazon press release argued the new Java-based curriculum "best prepares students for the next step in their education and careers."

Read more of this story at Slashdot.

Friday America's surgeon general warned that alcohol is "a well-established, preventable cause of cancer responsible for about 100,000 cases of cancer and 20,000 cancer deaths annually in the United States," and recommended an update to the warning labels on alcohol. So what happens to beer and spirits companies? They've actually been preparing for something like this for years, reports CNN: Major brewers, including Molson Coors and Anheuser-Busch InBev, and spirit giants such as Diageo and Pernod Ricard, have all grown their portfolios with new non-alcoholic drinks to attract an increasing number of consumers, particularly younger ones, who are ditching drinking because of health concerns. A Gallup poll from August found that almost half of Americans say that having one or two drinks a day is bad for a person's health — the highest percentage recorded in the survey's 23 years, and younger adults were most likely to say drinking is bad for health. The poll also showed that just 58% of adults said they drink alcohol, down from 67% in 2022, although Gallup notes it's relatively close to the historical average of 63% going back to 1939. But that doesn't predict a doomsday scenario for Big Alcohol. It actually could be good for their bottom lines: A December report from IWSR, a leading drinks analysis firm, said that the non-alcoholic drinks global market is "experiencing a transformative period of growth, driven by evolving consumer behaviors and the momentum of no-alcohol." The trend, to be led by the United States, is expected to grow by $4 billion by 2028 in the firm's forecast. Non-alcoholic drinks are even "skewing younger than the core buyer demographic across markets, and demonstrate higher frequency and intensity of consumption," signaling that there's a sustained thirst for booze-less beverages. Anheuser-Busch said in its 2023 annual report that its non-alcoholic beers "continued to outperform, delivering high-teens revenue growth." And the staff economist for the Brewers Association told CNN that non-alcoholic beer sales have jumped more than 100% between 2021 and 2024.

Read more of this story at Slashdot.

"We're going straight to Mars. The Moon is a distraction," Elon Musk posted Thursday on X.com. Ars Technica's senior space editor points out that "These are definitive statements that directly contradict NASA's plans to send a series of human missions to the lunar south pole later this decade and establish a sustainable base of operations there with the Artemis Program." And "It would be one thing if Musk was just expressing his opinion as a private citizen..." but Musk "has assumed an important advisory role for the incoming administration. He was also partly responsible for the expected nomination of private astronaut [and former SpaceX flight commander] Jared Isaacman to become the next administrator of NASA. Although Musk is not directing US space policy, he certainly has a meaningful say in what happens." So what does this mean for Artemis? The fate of Artemis is an important question not just for NASA but for the US commercial space industry, the European Space Agency, and other international partners who have aligned with the return of humans to the Moon. With Artemis, the United States is in competition with China to establish a meaningful presence on the surface of the Moon. Based upon conversations with people involved in developing space policy for the Trump administration, I can make some educated guesses about how to interpret Musk's comments. None of these people, for example, would disagree with Musk's assertion that "the Artemis architecture is extremely inefficient" and that some changes are warranted. With that said, the Artemis Program is probably not going away. After all, it was the first Trump administration that created the program about five years ago. However, it may be less well-remembered that the first Trump White House pushed for more significant changes, including a "major course correction" at NASA... To a large extent, NASA resisted this change during the remainder of the Trump administration, keeping its core group of major contractors, such as Boeing and Lockheed Martin, in place. It had help from key US Senators, including Richard Shelby, the now-retired Republican from Alabama. But this time, the push for change is likely to be more concerted, especially with key elements of NASA's architecture, including the Space Launch System rocket, being bypassed by privately developed rockets such as SpaceX's Starship vehicle and Blue Origin's New Glenn rocket. In all likelihood, NASA will adopt a new "Artemis" plan that involves initiatives to both the Moon and Mars. When Musk said "we're going straight to Mars," he may have meant that this will be the thrust of SpaceX, with support from NASA. That does not preclude a separate initiative, possibly led by Blue Origin with help from NASA, to develop lunar return plans. One month ago in a post on X.com, incoming NASA administrator Isaacman described himself as "passionate about America leading the most incredible adventure in human history..." And he also added that Americans "will walk on the Moon and Mars and in doing so, we will make life better here on Earth."

Read more of this story at Slashdot.

Xubuntu 25.04 Preparing Xfce 4.20 Desktop Upgrade  Phoronix

ChromeOS UCSI Driver Queued Ahead Of Linux 6.14 Cycle  Phoronix

Phoronix reports on Valve's "Steam Survey" results for December 2024, saying the new numbers "reflect a nice upward trend for the Linux gaming statistics and a high point in recent times." In November the Steam Survey reflected a 2.03% marketshare for Linux... Roughly inline with what we have been seeing for Linux right at around the 2% threshold. With the just-published December survey numbers, there is a 0.29% increase to 2.29%...! When looking at the Linux numbers, SteamOS Holo accounts for around 36% of all Linux gamers... SteamOS Holo being the operating system of the Steam Deck and beginning to appear on other devices as well... Driven in large part by the Steam Deck relying on a custom AMD SoC/APU and AMD being popular with Linux gamers/enthusiasts for their open-source driver support, AMD CPU use on Linux commands a 73.6% marketshare. In fact, December "saw AMD reach another record-high share among participants of Valve's survey," according to TechSpot — "up 3.02% last month, taking its total to 38.7% as Intel fell slightly to 63.4%..." Elsewhere, Windows 11 is now comfortably the most popular OS in the survey. It pulled ahead another 2% to an almost 55% share in December as Windows 10 dropped to 42.3%... However, it's a different story when looking at global users: Windows 10's share has increased two months in a row to 62.7% while Windows 11 has declined to 34.1%. Rounding up the rest of the survey, 16GB of RAM remains the most popular amount of system RAM but it's lead is declining as second-place 32GB grows; a trend that is mirrored in the VRAM category... Phoronix adds that the Windows percent "pulled back by 0.51% to 96.1% while Apple macOS also gained 0.22% going up to a 1.61% marketshare."

Read more of this story at Slashdot.

Phoronix reports on Valve's "Steam Survey" results for December 2024, saying the new numbers "reflect a nice upward trend for the Linux gaming statistics and a high point in recent times." In November the Steam Survey reflected a 2.03% marketshare for Linux... Roughly inline with what we have been seeing for Linux right at around the 2% threshold. With the just-published December survey numbers, there is a 0.29% increase to 2.29%...! When looking at the Linux numbers, SteamOS Holo accounts for around 36% of all Linux gamers... SteamOS Holo being the operating system of the Steam Deck and beginning to appear on other devices as well... Driven in large part by the Steam Deck relying on a custom AMD SoC/APU and AMD being popular with Linux gamers/enthusiasts for their open-source driver support, AMD CPU use on Linux commands a 73.6% marketshare. In fact, December "saw AMD reach another record-high share among participants of Valve's survey," according to TechSpot — "up 3.02% last month, taking its total to 38.7% as Intel fell slightly to 63.4%..." Elsewhere, Windows 11 is now comfortably the most popular OS in the survey. It pulled ahead another 2% to an almost 55% share in December as Windows 10 dropped to 42.3%... However, it's a different story when looking at global users: Windows 10's share has increased two months in a row to 62.7% while Windows 11 has declined to 34.1%. Rounding up the rest of the survey, 16GB of RAM remains the most popular amount of system RAM but it's lead is declining as second-place 32GB grows; a trend that is mirrored in the VRAM category... Phoronix adds that the Windows percent "pulled back by 0.51% to 96.1% while Apple macOS also gained 0.22% going up to a 1.61% marketshare."

Read more of this story at Slashdot.

Love KDE Plasma? These 5 Linux Distros Use Plasma as Their Default Desktops  How-To Geek

Developer/data journalist Josh Renaud is also long-time Slashdot reader Kirkman14 — and he's got a story to tell: How do you get people interested in an obscure Atari ST graphics format used on BBSes in the late 1980s and early 1990s? Recruit some folks to help you make an artpack full of images and animations showing it off! That's the idea behind IGNITE, a new artpack from Mistigris computer arts and Break Into Chat, featuring 18 images and animations created in "Instant Graphics and Sound" format. I love telling unknown underdog computer stories, and IGS sucked me in. This fall, I published a six-part, 14,000-word history, introducing readers to a cast of characters that included Mears, the self-described "working man without a degree" who often downplayed his own coding ability; Kevin Moody and Anthony Rau, two Navy guys in Florida who bonded over their love of Atari and BBSing; Steve Turnbull, an artist and scenic designer working in Hollywood; and many others. But IGS isn't just a thing of the past. Two years ago, on New Years Eve 2022, Mears made a surprise announcement — he was releasing a new version of IGS, thirty years after he had stopped working on the project. Because I (inadvertently) had spurred Larry to action, I felt an obligation to make some art using his new tools. I completed my first piece — a drawing of a ship from the sci-fi game FTL — in early 2023. Over the subsequent months, I kept at it, and ended up creating a number of fun animations. I'm particularly proud of the [Star Trek-themed] animated Guardian of Forever login sequence, and a brand-new Calvin and Hobbes-themed animation I created just for this pack. I had long wanted to release an all-IGS artpack as a way to honor Mears, highlight IGS, and maybe stir other people's interest in trying this format. To lower the barrier to entry, I created my own web-based drawing tool, JoshDraw, which supports a small subset of IGS's features. To my surprise, I successfully recruited seven other people to submit nine static images to include in the pack.

Read more of this story at Slashdot.

Linux: How to Use Cron to Schedule Regular Jobs  The New Stack

Intel Razer Lake, Nova Lake, and Wildcat Lake processor IDs have been added to the Linux kernel: what do we  ITC

Brazil ended daylight saving time in 2019, reports the Washington Post, adding that some Brazilians loved the change, "particularly those who commute long distances and are no longer forced to leave their houses in pitch blackness." But "In the heavily populated southeast, the sky begins to brighten at the unconscionable hour of 4:30 a.m. during the summer, and by 8 a.m., it feels like high noon... Polls showed it ultimately lost majority support..." And then "After several energy emergencies, and with the prospect of more to come as the effects of climate change intensify, the vanquished daylight saving time is suddenly looking a whole lot better than it once did to some in the Brazilian government." Authorities almost mandated the return of daylight saving — a portion of the calendar when clocks are turned forward to maximize seasonal daylight — late last year to conserve energy amid a historic drought that had threatened hydroelectric power generation and drove up light bills. The government is already laying the political groundwork to restore it as soon as this year... Latin America's largest country is a global leader in green energy. An astounding 93 percent of its electricity comes from renewable sources, according to Brazil's Electric Energy Commercialization Chamber, the majority of which is hydropower. This strength, however, has also left it vulnerable to global warming. As temperatures have warmed and punishing droughts have grown more frequent, the country's water reserves have dropped precariously low at times, jeopardizing its primary source of energy. In 2021, an extended drought depleted the country's water stores, driving up light bills by an estimated 20 percent, according to the National Chamber of Electric Energy. Then came last year's drought, the worst in 70 years, and government officials started to look more seriously at daylight saving. Alexandre Silveira [Brazil's mining and energy minister] said that month that the decision to eliminate daylight saving had been extravagance Brazil could scarcely afford. "It was massively irresponsible, without any basis in science," the energy official said. "We're living in a period of denial in Brazil in all aspects." José Sidnei Colombo Martini, an electrical engineer at the University of São Paulo, told The Washington Post that decision to end daylight saving amounted to a "national bet on whether it is going to rain." And the bet is expected to become increasingly risky as the years pass. "Brazil has always had a massive amount of available water compared to other countries — storing 12 percent of the planet's surface — but this is being altered," said Suely Araújo, public policy coordinator at the Climate Observatory. Estimates show "we could have a 40 percent reduction in our water availability in Brazil's principal hydro regions by 2040. Brazil has entered a new reality... " Should other countries end Daylight Saving Time? "People and governments all over the world are having the same debate," the article points out, "often coming to conflicting conclusions." Countries including Azerbaijan, Mexico and Samoa have done away with daylight saving time. Meanwhile, Jordan, Namibia and Turkey have gone the opposite direction, opting for permanent daylight saving time. And Russia, discovering there's no way to tell time that pleases everyone, first tried permanent daylight saving time, then scuttled it.

Read more of this story at Slashdot.

16-bit Linux-like Goodness  Hackaday

Loongson Introducing An EDAC Driver For LoongArch + ECC Memory Systems  Phoronix

TPM is a dedicated chip or firmware enabling hardware-level security, housing encryption keys, certificates, passwords, and sensitive data, "and shielding them from unauthorized access," Microsoft senior product manager Steven Hosking wrote last month, declaring TPM 2.0 to be "a non-negotiable standard for the future of Windows." Or, as BleepingComputer put it, Microsoft "made it abundantly clear... that Windows 10 users won't be able to upgrade to Windows 11 unless their systems come with TPM 2.0 support." (This despite the fact that Statcounter Global data "shows that more than 61% of all Windows systems worldwide still run Windows 10.") They add that Microsoft "announced on October 31 that Windows 10 home users will be able to delay the switch to Windows 11 for one more year if they're willing to pay $30 for Extended Security Updates." But last week the Free Software Foundation's campaigns manager delivered a message on the FSF's official blog: "Keep putting pressure on Microsoft." Grassroots organization against a corporation as large as Microsoft is never easy. They have the advertising budget to claim that they "love Linux" (sic), not to mention the money and political willpower to corral free software developers from around the world on their nonfree platform Microsoft GitHub. This year's International Day Against DRM took aim at one specific injustice: their requiring a hardware TPM module for users being forced to "upgrade" to Windows 11. As Windows 10 will soon stop receiving security updates, this is a (Microsoft-manufactured) problem for users still on this operating system. Normally, offloading cryptography to a different hardware module could be seen as a good thing — but with nonfree software, it can only spell trouble for the user... What's crucial now is to keep putting pressure on Microsoft, whether that's through switching to GNU/Linux, avoiding new releases of their software, or actions as simple as moving your projects off of Microsoft GitHub. If you're concerned about e-waste or have friends who work to combat climate change, getting them together to tell them about free software is the perfect way to help our movement grow, and free a few more users from Microsoft's digital restrictions. If you're concerned about e-waste or have friends who work to combat climate change, getting them together to tell them about free software is the perfect way to help our movement grow, and free a few more users from Microsoft's digital restrictions.

Read more of this story at Slashdot.