Palmer Luckey's defense tech firm Anduril has unveiled EagleEye, an AI-powered mixed-reality combat helmet built in partnership with Meta. The system integrates AR displays, spatial audio, and drone control to create what Luckey calls "a new teammate" for soldiers. "The idea of an AI partner embedded in your display has been imagined for decades. EagleEye is the first time it's real," said Luckey. The Verge reports: Anduril, which also manufactures border control tech, lethal drones, and military aircraft, has been developing EagleEye since its inception, and already provides software for the Army's existing MR goggles, based on Microsoft's HoloLens hardware. Its partnership with Meta was announced this May, and the company told TechCrunch at the time that the collaboration was to develop EagleEye. It's a reunion of sorts for Luckey and Mark Zuckerberg, after Meta purchased Luckey's then-start-up Oculus in 2014 and fired the founder three years later.

[ Read more of this story ]( https://tech.slashdot.org/story/25/10/13/2230223/palmer-luckeys-anduril-launches-eagleeye-military-helmet?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The FCC has forced major U.S. online retailers to remove millions of listings for prohibited Chinese-made electronics, including products from Huawei, ZTE, Hikvision, and Dahua, citing national security risks. Reuters reports: FCC Chair Brendan Carr said in an interview [on Friday] that the items removed are either on a U.S. list of barred equipment or were not authorized by the agency, including items like home security cameras and smart watches from companies including Huawei, Hangzhou Hikvision, ZTE, and Dahua Technology Company. Carr said companies are putting new processes in place to prevent future prohibited items as a result of FCC oversight. "We're going to keep our efforts up," Carr said. The FCC issued a new national security notice reminding companies of prohibited items including video surveillance equipment. Carr said the items could allow China to "surveil Americans, disrupt communications networks and otherwise threaten U.S. national security."

[ Read more of this story ]( https://tech.slashdot.org/story/25/10/13/2236211/major-us-online-retailers-remove-listings-for-millions-of-prohibited-chinese-electronics?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

SpaceX's Starship megarocket successfully completed its 11th test flight, achieving major milestones like engine relight, satellite deployment, and a controlled splashdown in the Indian Ocean. From a report: This mission marks the second clean test run for Version 2, following a successful showing during its last test mission in August. Earlier this year, however, Starship Version 2 suffered three in-flight failures and an explosive accident during ground testing. Today's test mission is expected to be the last for the current iteration of Starship prototypes. The company has said it will debut a scaled up Version 3 for the next flight. You can watch a recording of the launch on YouTube.

[ Read more of this story ]( https://science.slashdot.org/story/25/10/14/0123227/spacex-starship-hits-key-milestones-before-stunning-splashdown?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from The Register: Security researchers have resurrected a 12-year-old data-stealing attack on web browsers to pilfer sensitive info from Android devices. The attack, dubbed Pixnapping, has yet to be mitigated. Conceptually, it's the equivalent of a malicious Android app being able to screenshot other apps or websites. It allows a malicious Android application to access and leak information displayed in other Android apps or on websites. It can, for example, steal data displayed in apps like Google Maps, Signal, and Venmo, as well as from websites like Gmail (mail.google.com). It can even steal 2FA codes from Google Authenticator.

"First, the malicious app opens the target app (e.g., Google Authenticator), submitting its pixels for rendering," explained [Alan Wang, a PhD candidate at UC Berkeley]. "Second, the malicious app picks the coordinates of a target pixel whose color it wants to steal. Suppose for example it wants to steal a pixel that is part of the screen region where a 2FA character is known to be rendered by Google Authenticator, and that this pixel is either white (if nothing was rendered there) or non-white (if part of a 2FA digit was rendered there). Third, the malicious app causes some graphical operations whose rendering time is long if the target pixel is non-white and short if it is white. The malicious app does this by opening some malicious activities (i.e., windows) in front of the target app. Finally, the malicious app measures the rendering time per frame of the above graphical operations to determine whether the target pixel was white or non-white. These last few steps are repeated for as many pixels as needed to run OCR over the recovered pixels and guess the original content."

The researchers have demonstrated Pixnapping on five devices running Android versions 13 to 16 (up until build id BP3A.250905.014): Google Pixel 6, Google Pixel 7, Google Pixel 8, Google Pixel 9, and Samsung Galaxy S25. Android 16 is the latest operating system version. Other Android devices have not been tested, but the mechanism that allows the attack to work is typically available. A malicious Android app implementing Pixnapping would not require any special permissions in its manifest file, the authors say. The researchers detail the attack in a paper (PDF) titled "Pixnapping: Bringing Pixel Stealing out of the Stone Age."

[ Read more of this story ]( https://yro.slashdot.org/story/25/10/14/019242/android-pixnapping-attack-can-capture-app-data-like-2fa-codes?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Опубликовано: Tue, 14 Oct 2025 04:33:59 GMT
Канал: Все статьи подряд / Системное программирование / Хабр

Немного странно такую заметку писать, вроде что-то очень банальное и возможно многие скажут "да я с пеленок это знаю" - но вот опять сталкиваемся с тем что такая ошибка в достаточно важной ситуации наглядно портит кровь.Недавно я писал об идущем соревновании МТС по "программированию роботов" - и упоминал вскользь что пока со стороны организационной наблюдаются проблемы. На днях энтузиасты выявили как раз такую ошибку в коде, используемом организаторами для проверки решений.Если вы создали сокет, попытались его открыть и отвалились по таймауту - не переиспользуйте его! Для новой попытки обязательно создавайте новый сокет!Это не вполне очевидно и в документации порой лишь вскользь упомянуто, либо не упомянуто вообще. Ниже немного подробностей с кодом, но в общем вся суть в этой фразе. Не переиспользуйте! Читать далее]]>

https://habr.com/ru/articles/955678/

NASA's Jet Propulsion Laboratory is laying off around 550 employees, or roughly 11% of its workforce, as part of an effort to "restructure and establish an appropriate size to ensure future success." According to JPL Director Dave Gallagher, the job cuts "are not related to the current government shutdown." CNBC reports: JPL is a research and development lab funded by NASA -- the federal space agency -- and managed by the California Institute of Technology. "While not easy, I believe that taking these actions now will help the Lab transform at the scale and pace necessary to help achieve humanity's boldest ambitions in space," Gallagher wrote in a separate mekor to JPL employees and contractors. Gallagher, in the public announcement, noted that the reorganization of JPL began in July, and "over the past few months, we have communicated openly with employees about the challenges and hard choices ahead."

"This week's action, while not easy, is essential to securing JPL's future by creating a leaner infrastructure, focusing on our core technical capabilities, maintaining fiscal discipline, and positioning us to compete in the evolving space ecosystem -- all while continuing to deliver on our vital work for NASA and the nation," Gallagher wrote. Gallagher said that JPL employees will be notified of their status on Tuesday, and the "new Lab structure ... will become effective Wednesday."

[ Read more of this story ]( https://science.slashdot.org/story/25/10/14/0133211/nasa-unit-jpl-to-lay-off-about-550-workers-citing-restructure?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Опубликовано: Tue, 14 Oct 2025 07:05:37 GMT
Канал: Все статьи подряд / DIY или Сделай сам / Хабр

Буквально неделю назад один из моих читателей оказал мне доверие и предоставил устройство для обзора - HackRF Portapack. Это по сути портативная версия HackRF не требующая ПК для решения радиоинженерных задач. Получив это устройство оно показалось мне достаточно интересным и много о чем можно было бы рассказать, в продолжение темы про HackRF. Я обзорно расскажу о том, из чего это устройство состоит, какие прошивки предлагаются для устройства (их оказалось несколько), что предлагает это устройство для инженеров и радиолюбителей и рассмотрим спектр возможных применений. И в присущей мне манере и с исчерпывающем повествованием я поделюсь с вами своим опытом использования данным устройством. Всем интересующимся - добро пожаловать под кат! Читать далее]]>

https://habr.com/ru/companies/beget/articles/954378/

TOP10 VISITORS:

[1] 37.252.14.x point=144 web=0 up=27.0MB (30%) <--- ake (6/hr)
[2] 45.135.180.x point=239 web=0 up=20.7MB (23%) <--- yesterlink (10/hr)
[3] ChatGPT point=0 web=128 up=17.4MB (19%)
[4] Amazon point=1 web=189 up=6.8MB (7%) <--- Amazon
[5] PetalBot point=3 web=1013 up=5.9MB (6%) <--- PetalBot
[6] TikTok point=0 web=64 up=1.6MB (1%)
[7] 217.114.158.x point=25 web=0 up=1.0MB (1%) <--- fox (1/hr)
[8] Google point=0 web=71 up=0.5MB (<1%)
[9] 171.224.180.x point=0 web=6 up=0.3MB (<1%)
[10] Facebook point=0 web=22 up=0.2MB (<1%)

TOTAL TRAFFIC: 87MB

Группа исследователей из четырёх американских университетов разработала технику атаки Pixnapping (CVE-2025-48561), позволяющую из непривилегированных Android-приложений, не запрашивающих дополнительных полномочий, определить содержимое, выводимое на экран другими приложениями. В качестве примера практического применения атаки продемонстрировано определение кодов двухфакторной аутентификации, показываемых приложением Google Authenticator. Так же показано как можно применить атаку для извлечения конфиденциальных данных, выводимых на экран при работе с Gmail, Signal, Venmo и Google Maps.

https://www.opennet.ru/opennews/art.shtml?num=64045

schwit1 shares a report from Hackread: On October 3, 2025, Hackread.com published an in-depth report in which hackers claimed to have stolen 989 million records from 39 major companies worldwide by exploiting a Salesforce vulnerability. The group demanded that Salesforce and the affected firms enter negotiations before October 10, 2025, warning that if their demands were ignored, they would release the entire dataset. The hackers, identifying themselves as "Scattered Lapsus$ Hunters," a collective said to combine elements of Scattered Spider, Lapsus$, and ShinyHunters, have now published data allegedly belonging to 6 of the 39 targeted companies.

The companies named in the leak are as follows: Fujifilm, GAP, INC., Vietnam Airlines, Engie Resources, Quantas Airways Limited, and Albertsons Companies, Inc. In all 6 leaks, the record contains personal details of customers, business, including email addresses, full names, addresses, passport numbers, phone numbers. The hackers said on Telegram that they will not be releasing any additional information, stating, "A lot of people are asking what else will be leaked. Nothing else will be leaked. Everything that was leaked was leaked, we have nothing else to leak, and obviously, the things we have cannot be leaked for obvious reasons."

[ Read more of this story ]( https://yro.slashdot.org/story/25/10/14/0113254/shinyhunters-leak-alleged-data-from-qantas-vietnam-airlines-and-other-major-firms?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Представлен релиз специализированного дистрибутива Tails 7.1 (The Amnesic Incognito Live System), развиваемого в составе проекта Tor. Дистрибутив основан на пакетной базе Debian 13, поставляется с рабочим столом GNOME 48 и предназначен для анонимного выхода в сеть при помощи инструментария Tor. Все соединения, кроме трафика через сеть Tor, по умолчанию блокируются пакетным фильтром. При сохранении пользовательских данных между запусками применяется шифрование. Для загрузки подготовлен iso-образ, способный работать в Live-режиме, размером 2 ГБ.

https://www.opennet.ru/opennews/art.shtml?num=64049

Технический комитет, принимающий конечные решения в отношении спорных технических вопросов в проекте Debian, утвердил внесение изменения в пакет с systemd, меняющего поведение при работе с каталогом /var/lock. Системный менеджер systemd начиная с выпуска 258 ограничил возможность записи в каталог /var/lock только для пользователей с правами root, в то время как технический комитет Debian одобрил оставление старого поведения, разрешающего запись в /var/lock любым пользователям.

https://www.opennet.ru/opennews/art.shtml?num=64050

Вышел первый релиз Epha-ots, ПО для обеспечения обмена одноразовыми зашифрованными сообщениями.

( [ читать дальше... ]( https://www.linux.org.ru/news/opensource/18109804#cut ) )

Опубликовано: Tue, 14 Oct 2025 12:19:12 GMT
Канал: Все статьи подряд / Программирование микроконтроллеров / Хабр

Если посмотреть на ведущие промышленные компании — от машиностроения до нефтегаза, — становится ясно: многие из них давно и плотно занимаются разработкой собственных, внутренних стандартов по АСУТП. Это не просто свод общих правил. Речь идет о детальных регламентах, которые покрывают все: от проектирования архитектуры и выбора ПО до конкретных требований к интерфейсам операторов, промышленной безопасности и дальнейшему сопровождению систем.Главная особенность этих документов в том, что они — не сухая адаптация норм вроде ГОСТ или МЭК. Это, скорее, живые и практические руководства, которые инженеры компаний буквально «выстрадали» на собственном опыте. Они рождаются из реальных проектов, учебы на ошибках и направлены на решение конкретных задач, а не на соответствие абстрактным нормативам.Что это дает на практике? Эффект от внедрения таких стандартов — вполне измерим. Это не просто «для галочки». Компании получают реальные результаты: Читать далее]]>

https://habr.com/ru/articles/956460/

Кэрол Хербст из компании Red Hat, принимающий участие в разработчике Mesa [ предложил ]( https://gitlab.freedesktop.org/mesa/mesa/-/merge_requests/37831 ) для включения в состав Mesa драйвер cluda, реализующий API Gallium поверх API CUDA, предоставляемого проприетарным драйвером NVIDIA. Это решение обходит ограничения стека NVIDIA и добавляет поддержку современных расширений.

( [ читать дальше... ]( https://www.linux.org.ru/news/hardware/18110290#cut ) )

🐱 1 000 000 рублей и призы от партнёров!

Open OS Challenge 2025: объявляет о старте, уже третий год подряд, конкурса по системному программированию и open source.

( [ читать дальше... ]( https://www.linux.org.ru/news/russia/18110117#cut ) )

Apple has rebranded its streaming service Apple TV+ to simply Apple TV, further blurring the already confusing line between the Apple TV device, the Apple TV app, and the Apple TV service. As John Gruber notes, users can now "watch Apple TV in Apple TV on Apple TV." From Daring Fireball: In some ways, I get it. Like, if you're telling someone how much you enjoy Slow Horses and they ask how to watch it, it's more natural and conversational to just say "It's on Apple TV." That's what most people say. That's what I say -- and as part of my job, I completely understand the difference between Apple TV the device, Apple TV the (free) app, and Apple TV+ the (paid) streaming service.

But right there in Apple's own "About Apple TV" description, you see just how overused "Apple TV" now is. You can watch Apple TV in Apple TV on Apple TV -- the paid service in the free app on the set-top box. But you can watch any streaming service you want on the box, in that service's own app. But many of those services are also available in the Apple TV app. And the Apple TV streaming service is also available on just about all other popular set-top hardware platforms. So don't need an Apple TV to watch Apple TV. It's a bit like Abbott and Costello's classic "Who's on First" routine.

[ Read more of this story ]( https://apple.slashdot.org/story/25/10/14/0138239/apple-renames-apple-tv-to-apple-tv?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Опубликовано: Tue, 14 Oct 2025 13:16:00 GMT
Канал: Все статьи подряд / DIY или Сделай сам / Хабр

Хотел бы поделиться еще одной историей сборки домашнего сетевого хранилища (NAS). Мысли о сборке в голове крутились последние пару лет, однако останавливало отсутствие знаний, опыта, да и вообще некоторый страх — никогда дел не имел с подобным оборудованием. Поэтому и хочется поделиться опытом для таких как я — ничего страшного в подобной сборке нет. Читать далее]]>

https://habr.com/ru/articles/956484/

Preteens who use increasing amounts of social media perform poorer in reading, vocabulary and memory tests in early adolescence compared to those who use little or no social media. A study published in JAMA examined data from over 6,000 children ages 9 to 10 through early adolescence. Researchers classified the children into three groups: 58% used little or no social media over several years, 37% started with low-level use but spent about an hour daily on social media by age 13, and 6% spent three or more hours daily by that age.

Even low users who spent about one hour per day performed 1 to 2 points lower on reading and memory tasks compared to non-users. High users performed 4 to 5 points lower than non-social media users. Jason Nagata, a pediatrician at the University of California, San Francisco and study author, said the findings were notable because even modest social media use correlated with lower cognitive scores.

[ Read more of this story ]( https://news.slashdot.org/story/25/10/14/0643226/digital-platforms-correlate-with-cognitive-decline-in-young-users?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Спустя два года с прошлого выпуска опубликован релиз альтернативной сборки дистрибутива Linux Mint - Linux Mint Debian Edition 7 (LMDE), сформированной на основе пакетной базы Debian (классический Linux Mint собран на пакетной базе Ubuntu). Дистрибутив доступен в виде установочных iso-образов (3 ГБ) с десктоп-окружением Cinnamon 6.4.

https://www.opennet.ru/opennews/art.shtml?num=64051

Engineer Denis Stetskov, writing in a blog: The Apple Calculator leaked 32GB of RAM. Not used. Not allocated. Leaked. A basic calculator app is hemorrhaging more memory than most computers had a decade ago. Twenty years ago, this would have triggered emergency patches and post-mortems. Today, it's just another bug report in the queue. We've normalized software catastrophes to the point where a Calculator leaking 32GB of RAM barely makes the news. This isn't about AI. The quality crisis started years before ChatGPT existed. AI just weaponized existing incompetence.

[...] Here's what engineering leaders don't want to acknowledge: software has physical constraints, and we're hitting all of them simultaneously. Modern software is built on towers of abstractions, each one making development "easier" while adding overhead: Today's real chain: React > Electron > Chromium > Docker > Kubernetes > VM > managed DB > API gateways. Each layer adds "only 20-30%." Compound a handful and you're at 2-6x overhead for the same behavior. That's how a Calculator ends up leaking 32GB. Not because someone wanted it to -- but because nobody noticed the cumulative cost until users started complaining.

[...] We're living through the greatest software quality crisis in computing history. A Calculator leaks 32GB of RAM. AI assistants delete production databases. Companies spend $364 billion to avoid fixing fundamental problems. This isn't sustainable. Physics doesn't negotiate. Energy is finite. Hardware has limits. The companies that survive won't be those who can outspend the crisis. There'll be those who remember how to engineer.

[ Read more of this story ]( https://developers.slashdot.org/story/25/10/14/0826220/the-great-software-quality-collapse?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Microsoft переводит IT-инфраструктуру платформы GitHub на серверы Azure. Это первое серьёзное изменение в GitHub после ухода генерального директора. В команде GitHub в курсе ситуации и решили отдать приоритет миграции в Azure, а не разработке новых функций для платформы.

GitHub перейдёт на Azure в течение следующих 24 месяцев, поскольку мы считаем это правильным шагом для нашего сообщества и наших команд. Нам необходимо быстрее масштабироваться, чтобы справиться с взрывным ростом активности разработчиков и рабочих процессов на базе ИИ, а наша текущая инфраструктура достигает предела своих возможностей. Мы уделяем этому приоритетное внимание сейчас, поскольку это открывает все остальное. Для нас доступность — задача номер один, и эта миграция гарантирует, что GitHub останется быстрой и надёжной платформой, на которую полагаются разработчики, а также позволит нам больше создавать, поставлять и масштабировать без ограничений. Речь идёт о том, чтобы GitHub мог расти вместе со своим сообществом с той скоростью и масштабом, которые потребуются в будущем.

– Сообщил представитель GitHub

https://www.linux.org.ru/news/opensource/18110380

An anonymous reader shares a report: After acquiring GitHub in 2018, Microsoft mostly let the developer platform run autonomously. But in recent months, that's changed. With GitHub CEO Thomas Dohmke leaving the company this August, and GitHub being folded more deeply into Microsoft's organizational structure, GitHub lost that independence. Now, according to internal GitHub documents The New Stack has seen, the next step of this deeper integration into the Microsoft structure is moving all of GitHub's infrastructure to Azure, even at the cost of delaying work on new features.

[...] While GitHub had previously started work on migrating parts of its service to Azure, our understanding is that these migrations have been halting and sometimes failed. There are some projects, like its data residency initiative (internally referred to as Project Proxima) that will allow GitHub's enterprise users to store all of their code in Europe, that already solely use Azure's local cloud regions.

[ Read more of this story ]( https://developers.slashdot.org/story/25/10/14/0833202/github-will-prioritize-migrating-to-azure-over-feature-development?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader shares a report: China's expansion of its rare earth export controls appeared to mark another escalation in the US-China trade war last week. But the announcements were also significant in another way: unusually, the documents could not be opened using American word processing software.

For the first time, China's Ministry of Commerce issued a slew of documents that could be directly accessed only through WPS Office -- China's answer to Microsoft Office -- as Beijing continues its tech self-reliance drive. Developed by the Beijing-based software company Kingsoft, WPS Office uses a different coding structure to Microsoft Office, meaning WPS text files cannot be opened directly in Word without conversion. Previously, the ministry primarily released text documents in Microsoft Word format.

[ Read more of this story ]( https://it.slashdot.org/story/25/10/14/0920224/beijing-issues-documents-without-word-format-amid-us-tensions?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Researchers at UC San Diego and the University of Maryland have found that roughly half of geostationary satellite signals transmit sensitive data without encryption. The team spent three years using an $800 satellite receiver on a university rooftop in San Diego to intercept communications from satellites visible from their location. They collected phone calls and text messages from more than 2,700 T-Mobile users in just nine hours of recording.

The researchers also obtained data from airline passengers using in-flight Wi-Fi, communications from electric utilities and offshore oil and gas platforms, and US and Mexican military communications that revealed personnel locations and equipment details. The exposed data resulted from telecommunications companies using satellites to relay signals from remote cell towers to their core networks.

The researchers examined only about 15% of global satellite transponder communications and presented their findings at an Association for Computing Machinery conference in Taiwan this week. Most companies warned by the researchers have encrypted their satellite transmissions, but some US critical infrastructure owners have not yet added encryption.

[ Read more of this story ]( https://science.slashdot.org/story/25/10/14/1043236/satellites-are-leaking-the-worlds-secrets-calls-texts-military-and-corporate-data?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Состоялся релиз web-браузера Firefox 144 и сформированы обновления прошлых веток с длительным сроком поддержки - 140.4.0 и 115.29.0. На стадию бета-тестирования переведена ветка Firefox 145, релиз которой намечен на 11 ноября.

https://www.opennet.ru/opennews/art.shtml?num=64052

California has enacted new legislation that aims to limit companies from charging consumers "exorbitant" fees to cancel fixed-term contracts. From a report: Assembly Bill 483 was signed into law by California Gov. Gavin Newsom on Friday, placing transparency requirements and fee limits on early terminations for installment contracts -- plans that allow consumers to make recurring payments for goods and services over a specified duration.

This includes services that lure consumers into signing annual contracts by allowing them to pay in installments that appear similar to rolling monthly subscriptions, but with hefty cancellation fees for not locking in for the full year. The bill bans companies from hiding early termination fee disclosures within fine print or obscured hyperlinks, and limits the total fee amount to a maximum of 30 percent of the total contract cost. The goal is to make it easier for Californians to take these fees into account when comparing between services, and lessen the financial burden if they need to end their contract early.

[ Read more of this story ]( https://slashdot.org/story/25/10/14/176237/california-cracks-down-on-predatory-early-cancellation-fees?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Generative AI models trained on internet data lack exposure to vast domains of human knowledge that remain undigitized or underrepresented online. English dominates Common Crawl with 44% of content. Hindi accounts for 0.2% of the data despite being spoken by 7.5% of the global population. Tamil represents 0.04% despite 86 million speakers worldwide. Approximately 97% of the world's languages are classified as "low-resource" in computing.

A 2020 study found 88% of languages face such severe neglect in AI technologies that bringing them up to speed would require herculean efforts. Research on medicinal plants in North America, northwest Amazonia and New Guinea found more than 75% of 12,495 distinct uses of plant species were unique to just one local language. Large language models amplify dominant patterns through what researchers call "mode amplification." The phenomenon narrows the scope of accessible knowledge as AI-generated content increasingly fills the internet and becomes training data for subsequent models.

[ Read more of this story ]( https://slashdot.org/story/25/10/14/155258/generative-ai-systems-miss-vast-bodies-of-human-knowledge-study-finds?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The United Nations Food and Agriculture Organization projects record production of global cereal crops in the 2025-26 farming season. The forecast covers wheat, corn and rice, and comes as the global stocks-to-use ratio stands around 30.6% -- the world is producing nearly a third more of these foundational crops than it currently uses.

The U.S. Department of Agriculture reported in August that American farmers would harvest a record corn crop at record yield per acre. The FAO Food Price Index has risen slightly this year but remains nearly 20% below its peak during the early months of the war in Ukraine. Average calories available per person worldwide have climbed from roughly 2,100 to 2,200 kilocalories daily in the early nineteen-sixties to just under 3,000 kilocalories daily by 2022. Cereal yields have roughly tripled since 1961. Yet the World Bank estimates around 2.6 billion people cannot afford a healthy diet, and current famines in Gaza and Sudan stem from political failures rather than crop failures.

[ Read more of this story ]( https://news.slashdot.org/story/25/10/14/1525220/the-world-is-producing-more-food-crops-than-ever-before?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Indonesia's film industry has started using generative AI tools to produce films at a fraction of Hollywood budgets. The country's filmmakers are deploying ChatGPT for scriptwriting, Midjourney for image generation, and Runway for video storyboarding. VFX artist Amilio Garcia Leonard told Rest of World that AI has reduced his draft editing time by 70%.

The Indonesian Film Producer Association supports the technology. Indonesian films typically cost 10 billion rupiah ($602,500), less than 1% of major Hollywood productions. The sector employed about 40,000 people in 2020 and generated over $400 million in box office sales in 2023. Jobs for storyboarders, VFX artists, and voice actors are disappearing.

[ Read more of this story ]( https://entertainment.slashdot.org/story/25/10/14/1536226/indonesias-film-industry-embraces-ai-to-make-hollywood-style-movies-for-cheap?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader shares a report: An attorney in a New York Supreme Court commercial case got caught using AI in his filings, and then got caught using AI again in the brief where he had to explain why he used AI, according to court documents filed earlier this month.

New York Supreme Court Judge Joel Cohen wrote in a decision granting the plaintiff's attorneys' request for sanctions that the defendant's counsel, Michael Fourte's law offices, not only submitted AI-hallucinated citations and quotations in the summary judgment brief that led to the filing of the plaintiff's motion for sanctions, but also included "multiple new AI-hallucinated citations and quotations" in the process of opposing the motion.

"In other words," the judge wrote, "counsel relied upon unvetted AI -- in his telling, via inadequately supervised colleagues -- to defend his use of unvetted AI."

The case itself centers on a dispute between family members and a defaulted loan. The details of the case involve a fairly run-of-the-mill domestic money beef, but Fourte's office allegedly using AI that generated fake citations, and then inserting nonexistent citations into the opposition brief, has become the bigger story.

[ Read more of this story ]( https://yro.slashdot.org/story/25/10/14/1542245/lawyer-caught-using-ai-while-explaining-to-court-why-he-used-ai?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

DirecTV wants to use AI to put you, your family, and your pets inside a custom TV screensaver. From a report: If that's not uncanny enough, you'll find items you can shop for within that AI environment, whether it's a piece of clothing similar to the one your AI likeness is wearing or a piece of furniture that pops up alongside it.

The satellite TV giant is partnering with the AI company Glance to roll out this experience to DirecTV Gemini devices starting next year. "We are making television a lean-in experience versus lean back," Rajat Wanchoo, the group vice president of commercial partnerships at Glance, tells The Verge. "We want to give users a chance to use the advancements that have happened in generative AI to create a ChatGPT moment for themselves, but on TV." Glance is owned by InMobi, the same company that injected ecommerce bloatware into Motorola's budget phones.

[ Read more of this story ]( https://entertainment.slashdot.org/story/25/10/14/1323222/directv-will-soon-bring-ai-ads-to-your-screensaver?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Salesforce says it's saving about $100 million a year by using AI tools in the software company's customer service operations. From a report: The company is working to sell AI features that can handle work such as customer service or early-stage sales. To illustrate the value of the Agentforce product to business clients, Salesforce has been vocal about its own use of the technology.

Chief Executive Officer Marc Benioff announced the statistic on Salesforce's savings during a speech Tuesday at the annual Dreamforce conference in San Francisco. The company said more than 12,000 customers are using Agentforce. For example, Reddit was able to cut customer support resolution time by 84%, Salesforce said.

[ Read more of this story ]( https://slashdot.org/story/25/10/14/1925230/salesforce-says-ai-customer-service-saves-100-million-annually?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from Ars Technica: Today is the official end-of-support date for Microsoft's Windows 10. That doesn't mean these PCs will suddenly stop working, but if you don't take action, it does mean your PC has received its last regular security patches and that Microsoft is washing its hands of technical support. This end-of-support date comes about a decade after the initial release of Windows 10, which is typical for most Windows versions. But it comes just four years after Windows 10 was replaced by Windows 11, a version with stricter system requirements that left many older-but-still-functional PCs with no officially supported upgrade path. As a result, Windows 10 still runs on roughly 40 percent of the world's Windows PCs (or around a third of US-based PCs), according to StatCounter data.

But this end-of-support date also isn't set in stone. Home users with Windows 10 PCs can enroll in Microsoft's Extended Security Updates (ESU) program, which extends the support timeline by another year. [...] Home users can only get a one-year stay of execution for Windows 10, but IT administrators and other institutions with fleets of Windows 10 PCs can also pay for up to three years of ESUs, which is also roughly the amount of time users can expect new Microsoft Defender antivirus updates and updates for core apps like Microsoft Edge. Obviously, Microsoft's preferred upgrade path would be either an upgrade to Windows 11 for PCs that meet the requirements or an upgrade to a new PC that does support Windows 11. It's also still possible, at least for now, to install and run Windows 11 on unsupported PCs. Your day-to-day experience will generally be pretty good, though installing Microsoft's major yearly updates (like the upcoming Windows 11 25H2 update) can be a bit of a pain.

[ Read more of this story ]( https://tech.slashdot.org/story/25/10/14/2043238/windows-10-support-ends-today?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Walmart announced a new partnership with OpenAI that will let customers shop using ChatGPT. "For many years now, eCommerce shopping experiences have consisted of a search bar and a long list of item responses. That is about to change," Walmart CEO Doug McMillon said in a statement. NBC News reports: It was unclear Tuesday what the terms of the Walmart-AI partnership would be. The announcement also did not say when shoppers can expect to see ChatGPT integrated with their Walmart online shopping experiences, only that it's coming "soon." The OpenAI announcement is part of a broader push by Walmart, the biggest private employer in the U.S., to incorporate AI into its daily operations.

"We're excited to partner with Walmart to make everyday purchases a little simpler. It's just one way AI will help people every day under our work together," Sam Altman, the co-founder and CEO of OpenAI, said in a statement. The partnership could also serve OpenAI by introducing ChatGPT to a massive set of consumers who may not be as accustomed to using AI chats in their shopping as OpenAI's core user base. "There is a native AI experience coming that is multi-media, personalized and contextual," said Walmart's McMillon.

[ Read more of this story ]( https://slashdot.org/story/25/10/14/2048246/walmart-chatgpt-team-up-for-shopping?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Longtime Slashdot reader Gadi Evron writes: Bruce Schneier and Barath Raghavan say agentic AI is already broken at the core. In their IEEE Security & Privacy essay, they argue that AI agents run on untrusted data, use unverified tools, and make decisions in hostile environments. Every part of the OODA loop (observe, orient, decide, act) is open to attack. Prompt injection, data poisoning, and tool misuse corrupt the system from the inside. The model's strength, treating all input as equal, also makes it exploitable. They call this the AI security trilemma: fast, smart, or secure. Pick two. Integrity isn't a feature you bolt on later. It has to be built in from the start. "Computer security has evolved over the decades," the authors wrote. "We addressed availability despite failures through replication and decentralization. We addressed confidentiality despite breaches using authenticated encryption. Now we need to address integrity despite corruption."

"Trustworthy AI agents require integrity because we can't build reliable systems on unreliable foundations. The question isn't whether we can add integrity to AI but whether the architecture permits integrity at all."

[ Read more of this story ]( https://yro.slashdot.org/story/25/10/14/2054250/are-ai-agents-compromised-by-design?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from the Associated Press: Google announced on Tuesday that it will invest $15 billion in India over the next five years to establish its first artificial intelligence hub in the country. Located in the southern city of Visakhapatnam, the hub will be one of Google's largest globally. It will feature gigawatt-scale data center operations, extensive energy infrastructure and an expanded fiber-optic network, the company said in a statement. The investment underscores Google's growing reliance on India as a key technology and talent base in the global race for AI dominance.

For India, it brings in high-value infrastructure and foreign investment at a scale that can accelerate its digital transformation ambitions. Google said its AI hub investment will include construction of a new international subsea gateway that would connect to the company's more than 2 million miles (3.2 million kilometers) of existing terrestrial and subsea cables. "The initiative creates substantial economic and societal opportunities for both India and the United States, while pioneering a generational shift in AI capability," the company's statement said.

[ Read more of this story ]( https://news.slashdot.org/story/25/10/14/2112250/google-announces-15-billion-investment-in-ai-hub-in-india?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

BrianFagioli shares a report from NERDS.xyz: NordVPN has open sourced its Linux GUI on GitHub, giving the community full access to the code behind its graphical client. The move follows a 70 percent surge in daily active Linux users since the GUI's debut earlier this year, showing clear demand for a user friendly VPN experience on the platform. Alongside the previously open sourced command line tool, the GUI codebase is now available for anyone to audit, modify, and contribute to. While NordVPN's core backend infrastructure remains proprietary, the company says the open source release reflects its commitment to transparency and collaboration with the Linux community. The GUI can also now be installed with a single command using Snap, simplifying setup and ensuring automatic updates across distributions.

[ Read more of this story ]( https://linux.slashdot.org/story/25/10/14/2115252/nordvpn-embraces-open-source-by-releasing-its-linux-gui-on-github?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

[ Доступен ]( https://download-installer.cdn.mozilla.net/pub/firefox/releases/144.0/ ) Firefox 144.

( [ читать дальше... ]( https://www.linux.org.ru/news/mozilla/18110831#cut0 ) )

>>> [ Примечания к выпуску для разработчиков ]( https://developer.mozilla.org/en-US/docs/Mozilla/Firefox/Releases/144 )

>>> [ Все исправленные в этом выпуске ошибки ]( https://bugzilla.mozilla.org/buglist.cgi?query_format=advanced&resolution=FIXED&target_milestone=144%20Branch&limit=0 )

Roughly 200,000 Linux-based Framework laptops shipped with a signed UEFI shell command (mm) that can be abused to bypass Secure Boot protections -- allowing attackers to load persistent bootkits like BlackLotus or HybridPetya. Framework has begun patching affected models, though some fixes and DBX updates are still pending. BleepingComputer reports: According to firmware security company Eclypsium, the problem stems from including a 'memory modify' (mm) command in legitimately signed UEFI shells that Framework shipped with its systems. The command provides direct read/write access to system memory and is intended for low-level diagnostics and firmware debugging. However, it can also be leveraged to break the Secure Boot trust chain by targeting the gSecurity2 variable, a critical component in the process of verifying the signatures of UEFI modules.

The mm command can be abused to overwrite gSecurity2 with NULL, effectively disabling signature verification. "This command writes zeros to the memory location containing the security handler pointer, effectively disabling signature verification for all subsequent module loads." The researchers also note that the attack can be automated via startup scripts to persist across reboots.

[ Read more of this story ]( https://it.slashdot.org/story/25/10/14/2123205/secure-boot-bypass-risk-threatens-nearly-200000-linux-framework-laptops?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The U.S. Department of Justice seized about $15 billion in bitcoin from wallets tied to Chen Zhi, founder of Cambodia's Prince Holding Group, who is accused of running one of the world's biggest "pig butchering" scams. Prosecutors say Zhi's network trafficked people into forced-labor scam compounds that defrauded victims worldwide through fake crypto investment schemes. CNBC reports: The seizure is the largest forfeiture action by the DOJ in history. An indictment charging the alleged pig butcher, Chen Zhi, was unsealed Tuesday in federal court in Brooklyn, New York. Zhi, who is also known as "Vincent," remains at large, according to the U.S. Attorney's Office for the Eastern District of New York. He was identified in court filings as the founder and chairman of Prince Holding Group, a multinational business conglomerate based in Cambodia, which prosecutors said grew "in secret .... into one of Asia's largest transnational criminal organizations. [...]

The scams duped people contacted via social media and messaging applications online into transferring cryptocurrency into accounts controlled by the scheme with false promises that the crypto would be invested and produce profits, according to the office. "In reality, the funds were stolen from the victims and laundered for the benefit of the perpetrators," the release said. "The scam perpetrators often built relationships with their victims over time, earning their trust before stealing their funds."

Prosecutors said that hundreds of people were trafficked and forced to work in the scam compounds, "often under the threat of violence." Zhi and a network of top executives in the Prince Group are accused of using political influence in multiple countries to protect their criminal enterprise and paid bribes to public officials to avoid actions by law enforcement authorities targeting the scheme, according to prosecutors.

[ Read more of this story ]( https://slashdot.org/story/25/10/14/2248208/doj-seizes-15-billion-in-bitcoin-from-massive-pig-butchering-scam-based-in-cambodia?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from 404 Media: On Monday, a publicly-sourced archive of more than 10,000 national park signs and monument placards went public as part of a massive volunteer project to save historical and educational placards from around the country that risk removal by the Trump administration. Visitors to national parks and other public monuments at more than 300 sites across the U.S. took photos of signs and submitted them to the archive to be saved in case they're ever removed in the wake of the Trump administration's rewriting of park history. The full archive is available here, with submissions from July to the end of September. The signs people have captured include historical photos from Alcatraz, stories from the African American Civil War Memorial, photos and accounts from the Brown v. Board of Education National History Park, and hundreds more sites. "I'm so excited to share this collaborative photo collection with the public. As librarians, our goal is to preserve the knowledge and stories told in these signs. We want to put the signs back in the people's hands," Jenny McBurney, Government Publications Librarian at the University of Minnesota and one of the co-founders of the Save Our Signs project, said in a press release. "We are so grateful for all the people who have contributed their time and energy to this project. The outpouring of support has been so heartening. We hope the launch of this archive is a way for people to see all their work come together."

[ Read more of this story ]( https://tech.slashdot.org/story/25/10/14/2240240/save-our-signs-preservation-project-launches-archive-of-10000-national-park-signs?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Стартовал конкурс по открытому программному обеспечению - Open OS Challenge 2025, участникам которого предложено решать задачи в области системного программного обеспечения, администрирования и разработки под Linux. Конкурс проводят сообщество разработчиков Linux-дистрибутива OpenScaler, компания Сбербанк-Технологии (СберТех), сервис GitVerse и АНО Центр развития инновационных технологий «ИТ-Планета». Соревнования нацелены на популяризацию системной разработки и открытого программного обеспечения.

https://www.opennet.ru/opennews/art.shtml?num=64047

Фонд СПО официально ввёл в строй проект Librephone, анонсированный десять дней назад на мероприятии, посвящённом сорокалетию организации. В долгосрочной перспективе Librephone сосредоточен на обратном инжиниринге проприетарных блобов, отвечающих за взаимодействие с оборудованием мобильных устройств, а также разработке и продвижении свободных альтернатив для замены проприетарных компонентов, используемых в прошивках на базе Android.

https://www.opennet.ru/opennews/art.shtml?num=64054

Опубликовано: Wed, 15 Oct 2025 06:34:23 GMT
Канал: Все статьи подряд / Системное программирование / Хабр

Последняя релизная версия ReactOS 0.4.15 выпущена 21 марта 2025 г. А в начале октября 2025 Вадим Галянт выпустил экспериментальную сборку ReactOS, предназначенную для отработки загрузки операционной системы на реальном железе. Сборка должна быть совместима с железом, предназначенным для загрузки Windows XP (NT5.x). На более новом железе система скорее всего грузиться не будет. В конце статьи приведены ссылки на скачивание и порядок создания загрузочной флешки. Читать далее]]>

https://habr.com/ru/articles/955656/

TOP10 VISITORS:

[1] 37.252.14.x point=144 web=0 up=27.0MB (39%) <--- ake (6/hr)
[2] 45.135.180.x point=241 web=0 up=20.8MB (30%) <--- yesterlink (10/hr)
[3] Amazon point=0 web=216 up=6.8MB (10%)
[4] PetalBot point=3 web=1025 up=6.0MB (8%) <--- PetalBot
[5] 217.114.158.x point=25 web=0 up=1.0MB (1%) <--- fox (1/hr)
[6] Google point=0 web=103 up=0.8MB (1%)
[7] TikTok point=0 web=31 up=0.6MB (<1%)
[8] 51.161.37.x point=0 web=35 up=0.2MB (<1%)
[9] 216.244.66.x point=0 web=20 up=0.2MB (<1%)
[10] 54.39.210.x point=0 web=32 up=0.2MB (<1%)

TOTAL TRAFFIC: 67MB

A new study shows that common baker's yeast (Saccharomyces cerevisiae) can survive Mars-like conditions, including meteorite shock waves and toxic perchlorate salts found in Martian soil. Phys.org reports: Published in PNAS Nexus, Purusharth I. Rajyaguru and colleagues subjected Saccharomyces cerevisiae, which is a widely used model yeast, to shock waves and perchlorates. The authors chose the yeast in part because it has already been studied in space. When stressed, yeast, humans, and many other organisms form ribonucleoprotein (RNP) condensates, structures made of RNA and proteins that protect RNA and affect the fates of mRNAs. When the stressor passes, the RNP condensates, which include subtypes known as stress granules and P-bodies, disassemble.

The authors simulated Martian shock waves at the High-Intensity Shock Tube for Astrochemistry (HISTA) housed in the Physical Research Laboratory in Ahmedabad, India. Yeast exposed to 5.6 Mach intensity shock waves survived with slowed growth, as did yeast subjected to 100 mM sodium salt of perchlorate (NaClO4) -- a concentration similar to that in Martian soils. Yeast cells also survived exposure to the combined stress of shock waves and perchlorate stress. In both cases, the yeast assembled RNP condensates. Shock waves induced the assembly of stress granules and P-bodies; perchlorate caused yeast to make P-bodies but not stress granules. Mutants incapable of assembling RNP condensates were poor at surviving the Martian stress condition. Transcriptome analysis identified specific RNA transcripts perturbed by Mars-like conditions.

[ Read more of this story ]( https://science.slashdot.org/story/25/10/15/032207/common-yeast-can-survive-martian-conditions?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Опубликовано: Wed, 15 Oct 2025 08:09:02 GMT
Канал: Все статьи подряд / DIY или Сделай сам / Хабр

Приветствую, глубокоуважаемые! Мы будем делать угломерную гидроакустическую систему на основе антенны из 4 (четырех) приемников и при ее помощи определять угол прихода сигнала. Конечно, в предельном случае хватило бы и двух - как у всех живых существ, но чтобы добиться приемлемого результата с двумя "ушами" нужен хотя бы рептильный мозг, а у нас нет никакого. Поэтому качество будем компенсировать количеством - это распространенная практика в природе, социальной жизни и технике. Начать погружение!]]>

https://habr.com/ru/articles/956676/

Опубликовано: Wed, 15 Oct 2025 08:00:11 GMT
Канал: Все статьи подряд / Робототехника / Хабр

Искусственный интеллект — это уже не только чат-боты и генераторы изображений. Еще он помогает машинам анализировать обстановку, строить планы и справляться с новыми обстоятельствами. Недавно Google DeepMind представила демонстрацию thinking robotics AI — интеграцию моделей Gemini 1.5 в робототехнические сценарии.Две экспериментальные версии Gemini 1.5 — VLA (vision-language-action) и ER (embodied reasoning) — работают вместе, чтобы машины могли действовать в реальном мире. Это не просто очередной шаг в развитии автоматизации, а попытка научить роботов понимать, что они делают и зачем. Чем интересен этот подход, где его можно применить и какие вопросы он вызывает? Давайте разберемся. Читать далее]]>

https://habr.com/ru/companies/ru_mts/articles/956658/

Проект GNOME прекратил разработку, сопровождение и поддержку расширения "org.gnome.Platform.i386.Compat", применяемого в GNOME Flatpak Runtime для обеспечения совместимости с 32-разрядными приложениями. В расширении предлагались 32-разрядные версии GTK и библиотек GNOME, используемые для поставки 32-разрядных приложений во flatpak-пакетах, пригодных для установки в 64-разрядных дистрибутивах, прекративших поставку 32-разрядных библиотек (multilib). GNOME Flatpak Runtime теперь доступен только для архитектур x86_64 и AArch64.

https://www.opennet.ru/opennews/art.shtml?num=64056