An anonymous reader quotes a report from SecurityWeek: Hundreds of printer models from Brother and other vendors are impacted by potentially serious vulnerabilities discovered by researchers at Rapid7. The cybersecurity firm revealed on Wednesday that its researchers identified eight vulnerabilities affecting multifunction printers made by Brother. The security holes have been found to impact 689 printer, scanner and label maker models from Brother, and some or all of the flaws also affect 46 Fujifilm Business Innovation, five Ricoh, six Konica Minolta, and two Toshiba printers. Overall, millions of enterprise and home printers are believed to be exposed to hacker attacks due to these vulnerabilities.

The most serious of the flaws, tracked as CVE-2024-51978 and with a severity rating of 'critical', can allow a remote and unauthenticated attacker to bypass authentication by obtaining the device's default administrator password. CVE-2024-51978 can be chained with an information disclosure vulnerability tracked as CVE-2024-51977, which can be exploited to obtain a device's serial number. This serial number is needed to generate the default admin password. "This is due to the discovery of the default password generation procedure used by Brother devices," Rapid7 explained. "This procedure transforms a serial number into a default password. Affected devices have their default password set, based on each device's unique serial number, during the manufacturing process."

Having the admin password enables an attacker to reconfigure the device or abuse functionality intended for authenticated users. The remaining vulnerabilities, which have severity ratings of 'medium' and 'high', can be exploited for DoS attacks, forcing the printer to open a TCP connection, obtain the password of a configured external service, trigger a stack overflow, and perform arbitrary HTTP requests. Six of the eight vulnerabilities found by Rapid7 can be exploited without authentication. Brother has patched most of the flaws, but CVE-2024-51978 requires a new manufacturing process to fully resolve, which will apply only to future devices.

[ Read more of this story ]( https://hardware.slashdot.org/story/25/06/26/2351234/brother-printer-bug-in-689-models-exposes-millions-to-hacking?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

36% of all Chinese undergraduate entrants -- about 1.6 million people -- selected engineering degrees in 2022 (the latest year for which data are available), up from 32% in 2010, according to data from China's Ministry of Education. In Britain and America, which have far fewer students to start with, the proportion hovers around 5%.

The surge comes as China's government directs universities to focus on strategic industries and technological bottlenecks. Over 600 Chinese universities now offer undergraduate programs in artificial intelligence, a field the Communist Party vows to dominate by 2030. In 2023, officials started telling universities to overhaul their degree programs, and the education ministry announced an "emergency mechanism" to create degrees more quickly to meet "national priorities." Over half of China's young people now complete some form of higher education through 3,000-odd institutions. Youth unemployment reached 14.9% in May, driving students toward technical fields they believe offer better job prospects.

[ Read more of this story ]( https://news.slashdot.org/story/25/06/27/1340213/36-of-chinese-undergraduates-choose-engineering-compared-to-5-in-us-and-uk?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Eight nations have surpassed 50% IPv6 deployment since June 2024, bringing the total number of countries in the majority IPv6 club to 21, according to the Internet Society. Brazil, Guatemala, Hungary, Japan, Mexico, Puerto Rico, Sri Lanka, and Tuvalu all crossed the threshold over the past year.

Tuvalu's adoption coincided with the arrival of Elon Musk's Starlink satellite broadband service, which operates as IPv6-only. The Internet Society's Pulse platform found no IPv6 deployment in the Pacific nation in June 2024, but Starlink now holds 88% market share there and 59% of Tuvalu's internet connections use IPv6.

France moved from third place to tie with India for the global lead at 73% IPv6 deployment. Japan rebounded from 49% to 55%, returning to the 50% club after dropping below the mark in mid-2024. Puerto Rico climbed from 49% to 53%. Thailand appears positioned to join next at 49% deployment, followed by Estonia at 46% and the United Kingdom at 45%.

[ Read more of this story ]( https://tech.slashdot.org/story/25/06/27/0637210/starlink-helps-eight-more-nations-pass-50-ipv6-adoption?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

A new study challenges previous research about which sleep stages help people achieve breakthrough moments in problem-solving. Researchers found that N2 sleep, a deeper stage of non-REM sleep, significantly increased participants' likelihood of experiencing sudden insights during a perceptual task. The preregistered study involved 90 participants who performed a visual pattern recognition task before and after a 20-minute daytime nap while researchers monitored their brain activity with EEG.

Participants who reached N2 sleep showed an 85.7% rate of achieving insights about a hidden strategy in the task, compared to 63.6% for those who only reached N1 sleep (the first stage of non-rapid eye movement sleep) and 55.5% for participants who remained awake. The findings contradict earlier work by Lacaux and colleagues, which suggested that lighter N1 sleep promoted insight while deeper sleep hindered it.

News coverage: Stuck on a problem? Take a nap!

[ Read more of this story ]( https://science.slashdot.org/story/25/06/27/0724231/deeper-sleep-stages-boost-problem-solving-insights-study-finds?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

theodp writes: FWD.us, the immigration and criminal justice-focused nonprofit of Meta CEO Mark Zuckerberg -- the world's third richest person, according to Forbes with an estimated $250B net worth -- has released a new research report warning that announced immigration policies will hurt American families, who can't afford it with their meager savings.

The report begins: "Inflation remains a top concern for the majority of Americans. But new immigration policies announced by President Trump, and already underway, such as revoking immigrant work permits, deporting millions of people, and limiting legal immigration, would directly undermine the goal to level out, or even lower, the costs of everyday and essential goods and services. In fact, all Americans, particularly working-class families, are about to unnecessarily see prices for goods and services like food and housing increase substantially again, above and beyond other economic policies like global tariffs that could also raise prices. Announced immigration policies will result in American families paying an additional $2,150 for goods and services each year by the end of 2028, or the equivalent of the average American family's grocery bill for 3 months or their combined electricity and gas bills for the entire year. Such an annual increase would represent a tax that would erase many American families' annual savings, and amount to one of their bi-weekly paychecks each year. Unlike past periods of inflation, Americans have not been saving at the same rate as earlier years, and can't as easily absorb these price increases, squeezing American budgets even further."

In 2021, Zuckerberg's FWD.us teamed with the nation's tech giants to file a brief with the Supreme Court case to help crush WashTech (a tiny programmers' union), who challenged the lawfulness of hiring international students under the Optional Practical Training (OPT) program. "Striking down OPT and STEM OPT," FWD.us and its tech giant partners argued in their filing, [PDF] "would create a sudden labor shortage in the United States for many companies' most important technical jobs" and "hurt U.S. workers." The brief also dismissed WashTech's contention that the programs coupled with a talent surplus would shut U.S. workers out of the labor market, citing Microsoft's President Brad Smith's claim of an acute talent shortage and a 2.4% unemployment rate for computer occupations (that was then, this is now).

[ Read more of this story ]( https://news.slashdot.org/story/25/06/27/1322241/zuckerbergs-advocacy-group-warns-us-families-they-cant-afford-immigration-policy-changes?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Brazil's supreme court has ruled that social media platforms can be held legally responsible for their users' posts. From a report: Companies such as Facebook, TikTok and X will have to act immediately to remove material such as hate speech, incitement to violence or "anti-democratic acts," even without a prior judicial takedown order, as a result of the decision in Latin America's largest nation late on Thursday.

[ Read more of this story ]( https://tech.slashdot.org/story/25/06/27/0624226/brazil-supreme-court-rules-digital-platforms-are-liable-for-users-posts?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.