Anthropic employees say they remain confused and increasingly convinced that the Trump administration is singling out the company after officials gave it less than 90 minutes to disable Fable 5 and Mythos 5 over alleged national security concerns. Cybersecurity experts, however, argue that the cited behavior of helping to identify vulnerabilities in software is also available in rival models and is more valuable to defenders than attackers. The New York Times reports: Inside the company, employees' private group chats immediately lit up. Managers were instructed to prepare customers for a potential service disruption to the models, called Fable 5 and Mythos 5. But the messaging kept changing, with workers initially being told that the security problem was the ability of foreign companies to gain access to the systems, and later that a major vulnerability had been discovered in the models.

In employee chats, Anthropic engineers asked one another if the company's plan to go public this year would be harmed by the White House directive. Many shared news reports that offered conflicting information about why the White House had ordered Anthropic to suspend access to Fable 5 and Mythos 5 for all foreign nationals. "What are you telling your clients?" one employee asked in a chat viewed by The New York Times. Another said, "Does anyone know what to believe?" In another message, a worker said, "I don't understand what the issue is."

Six days later, Anthropic's roughly 3,000 employees still have few answers. The San Francisco company is continuing to grapple with internal confusion as Dario Amodei, the chief executive, and some of his lieutenants meet with the Trump administration to try and resolve the situation. But after discussions on Monday and Tuesday, there was no breakthrough over ending the U.S. order to limit access to the company's new A.I. models. In a statement on Monday, Anthropic said it would continue meeting with government officials and pledged its "ongoing commitment to working alongside the administration."

The dispute highlights how singular Anthropic has become in Washington. It was the second time in six months that the fast-growing A.I. start-up has become embroiled in a fight with the Trump administration over its powerful technologies, even as other A.I. companies offer similar models that have not received the same attention. And it has left Anthropic's employees in what they described as a holding pattern, with some wondering if they were being picked on by President Trump. "Are we being bullied based on bad vibes?" one employee asked in a chat viewed by The Times. Yesterday, TechCrunch's Zack Whittaker argued that the move sets a troubling precedent: the government can unilaterally disrupt American software products without court approval, potentially undermining trust in U.S. AI providers.

[ Read more of this story ]( https://yro.slashdot.org/story/26/06/17/1737246/anthropic-employees-accuse-trump-administration-of-targeting-them?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Сформирован выпуск основной ветки nginx 1.31.2, в рамках которой продолжается развитие новых возможностей, а также выпуск параллельно поддерживаемой стабильной ветки nginx 1.30.3, в которую вносятся только изменения, связанные с устранением серьёзных ошибок и уязвимостей. В обновлениях устранено 3 уязвимости.

https://www.opennet.ru/opennews/art.shtml?num=65712

BrianFagioli writes: Google, Microsoft, OpenAI, Arm, Mastercard, Siemens, and other companies have joined the newly launched Appia Foundation under the Linux Foundation. The project aims to create common specifications and assessment frameworks that organizations can use to demonstrate AI systems meet emerging safety, trust, and compliance requirements. According to the Linux Foundation, the framework is designed to allow conformity evidence to be reused across the AI supply chain, potentially reducing duplicate assessments and compliance costs. The announcement comes as governments around the world move toward enforcing AI regulations and organizations face increasing pressure to prove AI systems are trustworthy. "As international standards and legal frameworks become more established, global organizations need a consistent, practical way to verify that AI systems conform to new expectations," said Jim Zemlin, CEO of the Linux Foundation. "The Appia Foundation establishes a neutrally governed environment where the entire industry can collaborate on a common assessment framework. By building this infrastructure in the open, we are helping organizations reduce complexity, lower operational costs and build trust."

Craig Shank, Executive Director of the Appia Foundation, added: "AI systems now make decisions about people's loans, their children's schools and their jobs. People on the receiving end deserve to know those systems were built and assessed against criteria that hold up to scrutiny. The Appia Foundation was formed to do that work: creating publicly available specifications that organizations across the AI value chain use to demonstrate their systems meet those criteria. By establishing this open framework, we are building the accountability layer required to scale safe and trusted AI across major industries."

[ Read more of this story ]( https://linux.slashdot.org/story/26/06/17/201217/google-microsoft-and-openai-back-linux-foundations-appia-ai-standards-initiative?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Carvana is testing a radically different new-car dealership model in Dallas, turning the location into a test-drive center and themed "playground" while requiring every purchase to be completed through its online platform. "Every single car that we sell, whether it's used or new, is online," said Tom Taira, Carvana president of special projects who's leading the new vehicle operations. "That's a very inherent difference. Even coming into the store, you're buying it online, and that's a big difference in how people think about it." The company hopes its no-haggle pricing, hourly employees, service operations, and national logistics network can reshape franchised auto retail. CNBC reports: Through its used vehicles sales, Carvana has become the most valuable auto retailer in the U.S. with a more than $70 billion market cap. Carvana's target with the new vehicle business is to grow its market share and customer base as well as assist used vehicle sales through trade-ins and other means, according to Taira. If the company is successful, the strategy could cause a ripple effect across the U.S. franchised dealership model, which the National Automobile Dealers Association reports includes 16,990 retailers that topped $1.3 trillion in sales last year.

[...] Carvana is using a location in Dallas as a test center for its foray into new vehicle sales. The facility looks like a traditional Stellantis dealership from the outside, but the consumer process for purchasing a vehicle and the responsibilities of its employees are unprecedented. Couches and chairs replace cubicles and sales offices. There are no finance and insurance departments, and instead of an army of commission-based employees, the facility has associates that are paid hourly to assist customers -- if they want the help.

The experience is meant to be as self-guided as a customer wants. By scanning QR codes located on 10-foot-by-10-foot screens inside the building or on vehicles and displays outside, shoppers can customize a vehicle, learn about a product's features and conduct test drives before deciding whether to purchase anything. If they do decide to buy something, it's online and not originated from a sales person, the company said.

The "playground" has roughly 50 vehicles divided by brand, with each having a theme. Jeep has an off-road display. Dodge has race tracks, including a Carvana-themed Charger pace car and part of a traditional track fence barrier. Chrysler minivans, meanwhile, have a soccer net and Ram's area is truck-centric. Carvana is not committing to expanding the exact experience to its other franchised dealer locations, but Taira told CNBC that the overall process of online sales, vehicle testing and service are expected to be consistent throughout the locations. Further reading:: Online Car Retailer Launching Nation's First Car "Vending Machine

[ Read more of this story ]( https://tech.slashdot.org/story/26/06/17/2015221/carvana-is-turning-dealerships-into-playgrounds-test-drive-centers-with-sales-all-online?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

CCS Insight expects global smartphone shipments to fall 15% this year as AI-driven demand pushes memory manufacturers toward higher-margin server chips. "[S]ome entry-level devices have already seen their sticker prices go up by more than 50 percent since last year," reports The Register. From the report: The firm found that the primary smartphone market (meaning new devices) contracted 4.4 percent in the first quarter of this year, despite sales channels front-loading (meaning stockpiling) product inventory, as device prices begin to rise sharply. As CCS notes, this casts an ominous shadow on the outlook for the rest of the year, and it seems things have worsened since The Register first started reporting on the smartphone memory woes.

Back in January, the forecast was for handset price rises of 6-8 percent, while the most pessimistic outlook was that the global market might contract as much as 5.2 percent. By February, analysts were expecting to see a decline in shipments of around 8 percent across the global market, and for prices to increase by about 14 percent.

The root cause of all this is the AI craze, which has seen huge demand for high-performance GPU-filled servers to process it all. Chipmakers have moved to capitalize on this by prioritizing production of high-margin memory components for those servers, rather than making the plain old DRAM and NAND needed for PCs and phones. "The memory chip crisis shows no sign of slowing down in the near future, ramping up the pressure on manufacturers and consumers. Memory components now account for more than 30 percent of a manufacturer's bill of materials in some smartphones." said CCS research analyst Ben Hatton. "The full impact has yet to be felt in many regions, but it's clear that device prices will accelerate over the rest of the year."

[ Read more of this story ]( https://mobile.slashdot.org/story/26/06/17/2022201/smartphone-market-to-shrink-15-this-year-due-to-memory-crisis?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

wiredmikey shares a report from SecurityWeek: Microsoft on Wednesday published an advisory acknowledging the public disclosure of a vulnerability in Defender that could lead to privilege escalation. The security defect, tracked as CVE-2026-50656 (CVSS score of 7.8), was dropped last week by security researcher Nightmare Eclipse (also known as Chaotic Eclipse). "We are working to provide a high-quality security update that addresses this vulnerability. We will provide information in this CVE when the update is available," Microsoft adds.

RoguePlanet, Nightmare Eclipse explained last week, targets a race condition in Microsoft Defender and allows attackers to gain System privileges. The researcher released a proof-of-concept (PoC) exploit that demonstrates local privilege escalation (LPE) on Windows 11 and Windows 10 systems with the June 2026 patches installed. [...] On Wednesday, Nightmare Eclipse pointed out that the PoC works regardless of whether Defender's real-time protection is enabled or disabled. It may even work in passive mode, the researcher said.

[ Read more of this story ]( https://it.slashdot.org/story/26/06/17/2030228/microsoft-working-to-patch-rogueplanet-zero-day?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from Ars Technica: Tesco, a retail conglomerate headquartered in the United Kingdom, is moving 40,000 server workloads off of VMware amid "abusive conduct" from Broadcom, recent legal filings claim. Tesco filed a lawsuit in the UK's High Court against Broadcom alleging breach of contract last year. According to a September report from The Register, the lawsuit claimed that in January 2021, Tesco bought perpetual licenses for VMware's vSphere Foundation and Cloud Foundation, a subscription to VMware Tanzu, plus support services until 2026, with the option to extend support for four additional years.

But when Broadcom took over VMware in November 2023, it would not honor the deal and instead tried to get Tesco to pay "excessive and inflated prices for virtualization software for which Tesco has already paid" and would not allow it to buy support services for its perpetually licensed software without buying "duplicative subscription-based licenses for those same Software products," the initial complaint read, The Register reported at the time. Tesco, which reported 73.7 billion pounds (about $98.7 billion) in revenue in its fiscal year 2026, has since started migrating away from VMware and Broadcom's mainframe products, according to late-May court filings reported on by The Register today.

In January, Broadcom stopped supporting Tesco's VMware products, Tesco said, and Tesco has been paying for third-party support since. In its initial filing, Tesco also said that Broadcom refused to upgrade software or provide all security updates to customers without subscriptions. One of Tesco's recent filings, per The Register, reads: "Faced with Broadcom's abusive conduct, and given the criticality of virtualization and mainframe software and services to its business, Tesco has been forced to incur material costs to procure alternative solutions with reduced functionality, and to migrate to that software in a manner, and on a timeframe, that creates very significant risks to its business."

If it works "at exceptional pace," Tesco will be completely off VMware by the end of 2027 at the earliest. However, "the timeframe in which that migration must be undertaken has created and continues to create operational and commercial risk, and at material ongoing cost and disruption to the business," Tesco reportedly noted. Tesco is also dealing with migration challenges related to data security because its new, unnamed virtualization software is incompatible with the Veeam and Zerto products it uses. Tesco initially requested at least 100 million pounds (about $133.6 million) in damages each from Broadcom, VMware, and reseller Computacenter, plus interest. In its recent filings, Tesco said it turned down at least four offers from Broadcom to continue using VMware and Broadcom's mainframe tech. [...] The case is expected to go to court between November 1, 2027, and February 25, 2028, The Register reported. Afterward, it could go to trial. Further reading: HPE Tempts VMware Users, Partners With Year of Free Virtualization Software

[ Read more of this story ]( https://yro.slashdot.org/story/26/06/17/2357242/tesco-moving-40000-server-workloads-off-vmware-amid-broadcoms-abusive-conduct?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Инженерный комитет IETF (Internet Engineering Task Force), занимающегося развитием протоколов и архитектуры сети Интернет, придал HTTP-методу QUERY статус "Предложенного стандарта" и опубликовал связанную с ним спецификацию RFC 10008. Метод QUERY по способу отправки данных на сервер повторяет метод POST, но отличается от него ориентацией не на запись данных и изменение состояния, а на формирование запросов на чтение.

https://www.opennet.ru/opennews/art.shtml?num=65713

9 октября в Москве пройдет СисАдмин 2026 — большая конференция для системных администраторов, ИТ-менеджеров, инженеров и специалистов по поддержке инфраструктуры. Место проведения – Москва, кластер «Ломоносов». Офлайн-формат, один день.
Участие бесплатное, нужно только зарегистрироваться на [ sysadminconf.ru ]( https://sysadminconf.ru/ ) .

( [ читать дальше... ]( https://www.linux.org.ru/news/conference/18321745#cut ) )

TOP20 VISITORS:

[1] Amazon point=0 web=514 up=11.0MB (27%)
[2] PetalBot point=3 web=1452 up=8.6MB (21%) <--- PetalBot
[3] ClaudeBot point=0 web=548 up=2.7MB (6%)
[4] 37.252.14.x point=144 web=0 up=2.6MB (6%) <--- ake (6/hr)
[5] 216.244.66.x point=1 web=72 up=2.2MB (5%) <--- 216.244.66.x
[6] 217.114.158.x point=24 web=0 up=1.5MB (3%) <--- fox (1/hr)
[7] 81.167.26.x point=0 web=20 up=1.2MB (3%)
[8] 51.77.43.x point=0 web=12 up=1.2MB (2%)
[9] TikTok point=0 web=94 up=1.0MB (2%)
[10] 62.84.185.x point=0 web=11 up=0.8MB (2%)
[11] 104.250.53.x point=0 web=90 up=0.8MB (1%)
[12] 54.37.252.x point=0 web=6 up=0.7MB (1%)
[13] 65.108.78.x point=0 web=4 up=0.6MB (1%)
[14] Google point=0 web=79 up=0.5MB (1%)
[15] 79.137.67.x point=0 web=6 up=0.4MB (<1%)
[16] DataForSeoBot point=0 web=11 up=0.4MB (<1%)
[17] 147.135.215.x point=0 web=6 up=0.4MB (<1%)
[18] 135.181.180.x point=0 web=3 up=0.3MB (<1%)
[19] 194.247.173.x point=0 web=4 up=0.3MB (<1%)
[20] 51.75.129.x point=0 web=3 up=0.2MB (<1%)

TOTAL TRAFFIC: 40MB

Longtime Slashdot reader schwit1 shares a report from Autoblog: For years, the Chinese auto industry has employed a hostile price war to kneecap global competitors. Armed with massive state subsidies, cheap raw materials, and an aggressive "scale-first" business model, Chinese automakers flooded the market with electric vehicles priced so low that legacy manufacturers stood no chance to compete. How did they do it? Simple, they couldn't. They did it anyway. Reports from CarNewsChina show that Chinese automakers have been selling vehicles at a loss until a recent law passed by the Chinese government banned below-cost sales of new vehicles. During the ongoing sales slump in China caused by rolled-back subsidies and direct government intervention banning below-cost sales, the truth behind the rapid expansion of the Chinese auto industry has been exposed. "By the first quarter of 2026, China captured 32 percent of the global auto market, with its New Energy Vehicles (NEVs) controlling an incredible 61 percent of global share," the report notes. Yet that dominance has come at a steep cost: throughout 2025, "the profit margin for China's auto industry plunged to 4.4 percent and dropped further to a historic low of 3.2 percent in early 2026."

"Gross profit, not net profit, per vehicle, plummeted to a mere $2,000. We can expect the net figure to be loss-making." Autoblog adds: "Data shows over 70 percent of Chinese car sales were loss-making. This left more than half of the country's auto industry in the red. Great Wall Motor (GWM) even saw net profits drop 17 percent despite steady revenue growth."

China's EV price war has now hit a wall. New regulations are discouraging below-cost sales, rising material costs are forcing automakers to cut discounts and raise prices, and reduced tax incentives are weakening domestic demand. To sustain growth, manufacturers are increasingly turning to exports.

[ Read more of this story ]( https://tech.slashdot.org/story/26/06/18/0033211/chinas-ev-price-war-was-built-on-cars-sold-at-a-loss?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Special-effects designer Brian Johnson, known for his groundbreaking work on Space: 1999, The Empire Strikes Back, Alien, and Aliens, has died at the age of 86. Johnson began his career creating models and explosions for Gerry and Sylvia Anderson productions, later designed the iconic Eagle Transporter, and became one of science fiction cinema's most influential behind-the-scenes artists. Longtime Slashdot reader sandbagger remembers the SFX legend, writing: "The Space: 1999 Eagle is one of the great space ships of science fiction."

[ Read more of this story ]( https://entertainment.slashdot.org/story/26/06/18/0048244/brian-johnson-special-effects-artist-behind-space-1999-dies-at-86?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Компания Valve представила выпуск операционной системы SteamOS 3.8.10, который отмечен как первый стабильный выпуск в ветке 3.8. Операционная система SteamOS поставляется в устройствах Steam Deck и с недавних пор System Update Channel". В прошлом энтузиастами развивались неофициальные сборки HoloISO и SteamFork, но они находятся в заброшенном состоянии.

https://www.opennet.ru/opennews/art.shtml?num=65716

Компания Mozilla представила список возможностей, развиваемых для будущих выпусков Firefox. Среди намеченных для добавления в Firefox изменений.

https://www.opennet.ru/opennews/art.shtml?num=65714

Инженерный комитет IETF (Internet Engineering Task Force), занимающийся развитием протоколов и архитектуры сети Интернет, [ придал ]( https://mailarchive.ietf.org/arch/msg/ietf-announce/uNaYyRDGKjyOn_KDT2JaGLlm9fE/ ) HTTP-методу QUERY статус «Предложенного стандарта» и опубликовал связанную с ним спецификацию [ RFC 10008 ]( https://www.rfc-editor.org/info/rfc10008/ ) . Метод QUERY по способу отправки данных на сервер повторяет метод POST, но отличается от него ориентацией не на запись данных и изменение состояния, а на формирование запросов на чтение.

По решаемым задачам новый метод близок к GET и позволят отправлять запросы, которые могут быть повторены или перезапущены без изменения состояния на сервере. Как и в методе POST параметры запроса в QUERY передаются не в URI, а в теле запроса. Подобный подход даёт возможность передавать большой объём параметров в запросе, превышающий лимит на размер параметров в методе GET (8000 байт).

( [ читать дальше... ]( https://www.linux.org.ru/news/internet/18322124#cut ) )

В контексте этой новости подумалось, что вот ведь повод снова вернуться к старым добрым временам, когда был КПК и мобильный телефон.

Покупать смартфон в качестве КПК и отдельно неубиваемую вечную "трубку" без функций смартфона (но с функцией BT-модема, например).

Вышел Qt Creator 20 — новая версия IDE для разработки приложений на Qt, C++, QML и смежных технологиях. В [ официальном анонсе ]( https://www.qt.io/blog/qt-creator-20-released ) Qt Company называет ключевыми новшествами поддержку AI coding agents, новый режим Zen Mode, поддержку системы сборки GN и набор улучшений для CMake, QML, Android, iOS и удалённой разработки под Linux.

Главное изменение выпуска — интеграция с AI-агентами через ACP Client. Новый компонент добавляет в Qt Creator панель чата с агентами, которые могут понимать кодовую базу и выполнять действия от имени разработчика: анализировать код, редактировать файлы, запускать команды и инициировать сборки. Интеграция построена на [ Agent Client Protocol ]( https://agentclientprotocol.com/ ) , а готовые шаблоны подключения берутся из публичного ACP Registry. Среди поддерживаемых конфигураций в анонсе упомянуты Claude Code, Codex, Gemini CLI и GitHub Copilot.

Основные изменения Qt Creator 20

( [ читать дальше... ]( https://www.linux.org.ru/news/development/18321844#cut ) )

[ Скачать исходный код и бинарные файлы ]( https://download.qt.io/official_releases/qtcreator/20.0/20.0.0/ )

Longtime Slashdot reader schwit1 shares a report from PetaPixel: China dominates the consumer drone market, so it is perhaps surprising that it is no longer possible to fly or even purchase a drone in Beijing. The new law that passed last month makes it illegal to buy, rent, or fly a drone without prior approval from the authorities. Users must also complete an online training session and pass a test on drone regulations. Under the new rules, drone users are also not allowed to repair or replace their drones in Beijing. Not only that, but a drone in a repair shop must be picked up in-person, rather than sent back by delivery.

The BBC reports that drones must now be registered before being brought into and out of the Chinese capital. "I have to apply for permission for each flight, which is very inconvenient," drone enthusiast Steven Wang tells CNN. "And starting this year, the wait time is getting longer, and the reasons for rejection are becoming more vague." Despite China being the birthplace of the consumer drone industry, it is increasingly difficult for hobbyists to fly there. Beijing authorities say that the rules are made to "strengthen the management of unmanned aerial vehicles" and "safeguard the security of the capital."

[ Read more of this story ]( https://news.slashdot.org/story/26/06/18/0040249/you-can-no-longer-fly-or-purchase-a-drone-in-beijing?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from MacRumors: Apple is raising its prices to offset the high cost of memory and storage, CEO Tim Cook told The Wall Street Journal. Apple is no longer able to absorb the increased prices and will need to pass some of the cost on to consumers. "Unfortunately, price increases are unavoidable," said Cook. "We're doing our best to mitigate the huge increases that are being passed to us, and we've been trying to shield our customers from the increases, but the situation has become unsustainable."

Growing demand for memory and storage chips from AI companies has led to chip shortages and higher costs. The Wall Street Journal suggests Apple will need to increase device costs "substantially" to maintain its current profit margins given the cost of memory chips and SSDs. Research firm TechInsights claims Apple will need to make the iPhone 18 Pro around $270 more expensive to keep its existing profit margin.

Apple is struggling more with memory chips, but storage chips are also an issue. "There's less supply at a time when consumers want devices and the memory guys are passing along huge price increases," Cook told The Wall Street Journal. Cook said Apple will use its cash to increase memory supply, but he did not give details on what that means. Apple does not plan to create its own memory and storage factories. "We can't do everything," Cook said. "We know what we're good at." Cook likened the memory shortages to a hundred-year flood. "I've never seen anything like it in any area in over 40 years," he said.

Further reading: Smartphone Market To Shrink 15% This Year Due To Memory Crisis

[ Read more of this story ]( https://news.slashdot.org/story/26/06/18/0054201/tim-cook-says-apple-price-increases-are-unavoidable-due-to-memory-costs?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Security researcher Justin O'Leary says Google initially accepted his Config Connector privilege-escalation report as a high-priority, high-severity bug, then denied a bounty by declaring the behavior "working as intended." According to The Register, a Google rep initially praised O'Leary's report with a "Nice catch!" before the cloud giant reversed course, declaring that no vulnerability existed and therefore no fix or reward was warranted. "The bug report, however, is still marked high-priority and accepted," the publication notes. The alleged flaw, dubbed ConfigConfusion, could let a Kubernetes namespace user exploit an overprivileged service account to become a GCP organization owner with only a few lines of YAML and little apparent audit visibility. O'Leary details the incident in a blog post. The Register reports: According to O'Leary, Config Connector doesn't perform an authorization check, and this allows any Config Connector service account with org-level permissions to bypass Identity and Access Management (IAM) authorization and gain the highest level of control (roles/owner) to an entire GCP Organization -- the root node of all of a company's resources within Google Cloud. On March 27, a Google security engineer accepted O'Leary's report and told him: "Nice catch!" The employee said that they filed a bug based on O'Leary's report with the relevant product team and assured him the Chocolate Factory's security squad would work with relevant Google Cloud people to fix the flaw. "We'll work with the product team to ensure this issue is address. We'll let you know when the issue was fixed," the engineer said. "In the meantime, review the payment option selected in your bughunters.google.com profile."

Google assigned the bug P1 priority and S1 severity, signifying a flaw worthy of urgent repair because it affects a large percentage of users and can disrupt core organizational functions. "I figured that was the end of that," O'Leary said in a phone interview with The Register. Eleven days later, on April 7, he received a new message from a Google Security Bot reversing the earlier decision. The Reg viewed the email, and O'Leary included a screenshot in his Thursday writeup. The message said that the Cloud Vulnerability Reward Program panel decided that the "security impact of this issue does not meet the criteria to qualify for a reward."

After reviewing the bug report, Google determined the software "is working as intended," the message continued. It also noted that the program's decision not to pay a bounty "does not mean that the product team won't fix the issue." Nearly three months later, the case remains P1/S1 with the status "in progress (accepted)." Google hasn't assigned a CVE or issued a fix. O'Leary didn't receive any reward for his research. [...] "This is a pattern," O'Leary told [The Register]. "This is just how these trillion-dollar companies deal with people like me. In my day job, we use GKE, and it's incredibly frustrating on my end, when I find a critical vulnerability in the system that's being widely used, and I can't even get the vendor to patch their own stuff." A Google spokesperson told The Register: "The issue reported does not qualify for a reward because the GCP IAM authorization bypass is only exploitable if an attacker has access to a Config Connector Service Account that's been granted the Organization Admin role by the organization (i.e., it is privileged). Additionally, an attacker would first need to gain entry to an organization's environment (e.g., an exposed container) in order to leverage the privileged Config Connector instance and execute commands with administrative authority, such as the IAM bypass. Granting this level of access to the Config Connector Service Account goes against Google Cloud's publicly shared best practices and the principle of least privilege."

[ Read more of this story ]( https://it.slashdot.org/story/26/06/18/1656252/google-told-researcher-nice-catch-then-denied-bug-bounty-for-flaw-it-still-hasnt-fixed?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Google has begun rolling out Android 17, the June Pixel Feature Drop, and Wear OS 7 simultaneously across supported Pixel phones and watches. Highlights include floating app bubbles, improved foldable multitasking and gaming, tighter location and contact permissions, stronger lost-device protections, new Pixel AI tools, and up to 10% better Pixel Watch battery life. PhoneArena reports: Pixel owners are the clear winners, since everything here reaches Pixel first and a lot of it goes back to the Pixel 6. Fold owners get the most toys, with the Bubble Bar and foldable gaming mode built for the big screen. Watch wearers get the quietly important upgrade. Better battery and Live Updates make an everyday wearable easier to rely on, especially if you keep it on overnight. Google's latest Pixel Drop combines several AI-powered tools with a broader slate of Android 17 upgrades. Pixel owners gain Lyria 3 for generating music from text or images, Gemini Omni for creating custom video clips, enhanced call translation and screening, AirDrop-compatible Quick Share, expanded Magic Cue support, and conversational photo editing.

Android 17 builds on those additions with floating app Bubbles, selfie-camera Screen Reactions, and a split-screen gaming mode for foldables, while also strengthening privacy and security with more granular location and contact permissions, improved lost-device protection, tighter PIN-guessing limits, and enhanced threat detection.

Other additions include expanded parental controls, separate assistant volume and app memory settings, and an option to hide app names for greater privacy.

You can read more about everything new in Android 17 in Google's blog post.

[ Read more of this story ]( https://mobile.slashdot.org/story/26/06/18/1733258/android-17-drops-for-pixel-phones-and-watch?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Компания Canonical ужесточила правила формирования релизов официальных редакций Ubuntu, к которым относятся Lubuntu, Kubuntu, Ubuntu Budgie, Ubuntu Studio, Xubuntu, Ubuntu Kylin, Ubuntu Mate, Ubuntu Unity, Edubuntu и Ubuntu Cinnamon. Изменения введены для подтверждения готовности редакций к финальному релизу, который теперь будет допускаться только в случае успешного формирования бета-версии в срок, соответствующий намеченному плану. При этом изменения в пакетах между бета-версией и релизом должны быть минимальными и могут включать только исправление ошибок.

https://www.opennet.ru/opennews/art.shtml?num=65717

Canonical представила проект Myna — новую систему преобразования речи в текст для Ubuntu Desktop. Проект нацелен на встроенную диктовку: пользователь нажимает горячую клавишу, говорит, а распознанный текст появляется в активном приложении. В анонсе подчёркивается, что Myna должна ощущаться как естественная часть рабочего стола Ubuntu и при этом работать с учётом приватности пользователя. Список поддерживаемых языков ввода на момент публикации новости не оглашён.

( [ читать дальше... ]( https://www.linux.org.ru/news/ubuntu/18321937#cut ) )

Apple is allowing iPhone developers in Brazil to distribute apps through authorized alternative marketplaces and use third-party payment systems following action by the country's competition regulator. "In other words, developers in Brazil will be able to circumvent the App Store and Apple's in-app purchase system, but there are still fees," reports MacRumors. Apple will collect commissions ranging from 5% on externally distributed apps to as much as 26% for some App Store transactions using its payment system. From the report: Alternative app marketplaces will have to be authorized by Apple and will need to meet ongoing requirements. For apps that are still distributed through the App Store, developers will be able to include an alternative payment processing method in their app and/or link users to a website to complete a transaction. These changes are available on iOS 26.5 and later, and they are the result of regulatory action from Brazil's competition regulator. Apple has added a new page on its website with additional details for developers in Brazil.

Apple said these changes introduce privacy and security risks for users, including children. The company has introduced safeguards to mitigate these risks, including a notarization process for iOS apps, an authorization process for app marketplaces, and limitations on external links and alternative payments for users under the age of 18. Apple has already allowed alternative app stores and/or third-party payment systems on iOS in the EU, Japan, and South Korea, and it will likely be forced to do so in the UK and Australia too, due to similar regulations in those countries.

[ Read more of this story ]( https://apple.slashdot.org/story/26/06/18/1811250/apple-announces-major-app-store-changes-on-ios-in-brazil?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from the Associated Press: As artificial intelligence companies reshape the economy and race toward trillion-dollar valuations, Sen. Bernie Sanders is proposing a sweeping transfer of wealth and power from the industry to the American public. The legislation, shown first to The Associated Press, would create a sovereign wealth fund overseen by an independent commission and financed through a one-time 50% tax on the stock of the largest AI companies. Sanders estimates that the tax would create a nearly $7 trillion fund that would generate hundreds of billions of dollars annually in direct payments to Americans and programs such as health care, education and housing.

[...] The 50% tax would apply to AI companies that reach $200 million in annual AI sales. Any new AI company that reaches that benchmark would also be subject to the tax. It would create a sovereign wealth fund -- similar to those used by countries around the world and some U.S. states -- that Sanders estimates would be worth around $7 trillion. Unlike a traditional tax, the proposal would require companies to transfer stock rather than cash, effectively making the American public a major shareholder in the country's largest AI firms.

A seven-person independent commission -- nominated by the president and confirmed by the Senate -- would manage the fund and use its voting shares "to block decisions that hurt the American people and to push for policies that help them," the bill summary says. Sanders proposes that a 5% annual dividend from the fund would provide direct payments of more than $1,000 to every American. If companies grow, the gains would be used for public goods such as education, housing and health care. Sanders argues taxpayers would not bear the losses if AI company valuations decline. "We're not going to lose any money, even if there is a bust in the bubble," Sanders said. The commission would be directed to "to block decisions that hurt the American people and to push for policies that help them," according to the summary. "The benefits cannot simply go to the handful of wealthy corporations. They will be shared by the American people," the independent Vermont senator said in an interview Wednesday. "The public has got to have a significant seat at the table to make sure that terrible things do not happen to ordinary people, and that in fact, AI benefits ordinary people, not hurts them," Sanders said.

[ Read more of this story ]( https://yro.slashdot.org/story/26/06/18/1914206/bernie-sanders-unveils-7-trillion-plan-to-give-americans-control-of-ai-industry?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

В JCE (Joomla Content Editor), одном из старейших и популярнейших расширений в экосистеме Joomla, устранена критическая уязвимость (CVE-2026-48907), позволяющая импортировать свой профиль без аутентификации. Атакующий может использовать уязвимость для размещения профиля, отключающего проверку MIME-типов и реализующего загрузку PHP-скриптов на сервер. Зафиксировано использование уязвимости злоумышленниками для установки webshell, предоставляющего удалённый доступ к системе.

https://www.opennet.ru/opennews/art.shtml?num=65715

Midjourney is expanding beyond AI image generation with plans for a medical-imaging business built around a water-based, full-body ultrasound scanner that uses hundreds of thousands of sensors and AI to reconstruct MRI-like images. "As you descend into the water, hundreds of thousands of tiny elements take turns, sending out waves, listening together, compressing and then streaming data to a massive cluster where thousands of computers split the task," Midjourney explained in the announcement. "By looking at how the shapes of all the waves change, we reconstruct a detailed map or 'image' which basically lets us figure out what's in there." The company hopes to open a San Francisco scanning "spa" in late 2027, with 50,000 or more deployed around the world by 2031. The Register reports: It's not clear how fast the process is with the prototype unit, but Midjourney said its goal is for the whole thing to take around a minute. "We think it's completely possible that with enough early imaging in the future, the world could avoid 30% of all deaths and 50% of all healthcare costs," the company added.

According to a "technical" video included in the announcement, there's a ring of 40 scanners included in the prototype unit the company has built. That ring of 40 elements contains 358,000 ultrasonic elements made up of tiny transducers that create ultrasound waves in water while listening for how they change when they slap the body of whoever is in Midjourney's dunk tank up to a thousand times a second.

[...] Midjourney said that it's planning to open its first ultrasound scanner spa at the end of 2027, but it has another hurdle to jump: FDA approval. Beyond improving its tech so that the second-generation scanner is ready for its 2027 spa date, "regulation is the next limit," the company said. "Normally, for every diagnostic medical capability you need FDA approval," Midjourney explained. "We're starting by just giving you detailed body composition maps -- and we'll be submitting regular test results to the FDA for increased capabilities."

Midjourney also fails to mention how it will store and secure those scans, whether it will use said scans to train its body composition-detection algorithms, and how it's ensuring those algorithms get things right that it usually take a human a few years of education and training to learn.

[ Read more of this story ]( https://science.slashdot.org/story/26/06/18/1939203/midjourney-pivots-from-ai-image-generation-to-body-scanning-medical-spa?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

California's proposed "billionaire tax" has gathered enough signatures to qualify for the November ballot, setting up a major fight between labor unions and some of Silicon Valley's richest figures. From the report: The California Billionaire Tax Act, colloquially known as the billionaire tax, would levy a one-time 5% tax on any California resident worth more than $1bn. The proposal is backed by the Service Employees International Union-United Healthcare Workers West as a means of funding California's strained healthcare and education programs. The proposal has become one of the state's biggest political flashpoints as it gained momentum throughout the year, with prominent billionaires, such as the Google co-founder Larry Page, making moves to cut ties with the state and Newsom vowing to block it from going to a vote. Although it has gained enough signatures for the ballot, the groups backing the measure have until June 25 to decide whether to move forward or potentially strike a deal with the state.

While unions backing the group have framed the proposal as a way of getting the ultra-rich to pay their fair share, many of the state's tech elites have condemned the tax and spent millions attempting to crush it. The Google co-founder Sergey Brin has spent $82m alone on efforts to fight the tax, while joining other Silicon Valley billionaires in declaring he will leave California if it goes through. The Palantir co-founder Peter Thiel, crypto billionaire Chris Larsen and Ring founder James Siminoff are among the other tech moguls who have made huge political donations to groups opposing the tax. California has the most billionaires out of any state, many of whom have increased their wealth in recent years amid the AI boom.

[ Read more of this story ]( https://news.slashdot.org/story/26/06/18/2035253/california-billionaire-tax-makes-ballot-despite-opposition-from-tech-moguls?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Adobe is expanding its Firefly AI assistant into Premiere, Illustrator, InDesign, and Frame.io, where it can automate all sorts of tasks such as organizing clips, renaming assets, adding interview markers, rearranging layers, and finding missing fonts. It's available starting today as part of a public beta. TechCrunch reports: Adobe is slowly transforming Firefly to increasingly resemble Canva, at least when it comes to AI features, loading up the app with AI tools that can generate images, videos and storyboards. The company is now adding a new feature called Elements that can save AI-generated characters, objects and locations for later use.

Firefly is also getting a Projects feature that can store existing assets in one place, and share context. This could be useful for teams creating a video series or brand campaigns. Both of these features are currently available in a private beta.

The company said users can now describe a brand and its style, or upload existing collateral, in Firefly to have it generate a brand kit, complete with logos, brand identity and color palettes, or even generate product videos from photos. Users can also create storyboards to create videos.

[ Read more of this story ]( https://tech.slashdot.org/story/26/06/18/2044250/adobe-adds-its-ai-assistant-to-premiere-illustrator-and-indesign?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from The Guardian: In May, the federal government announced without warning that it would take apart a network of ocean monitoring systems that it had spent over $350 million to build. No reason was given for the decision to shut down the Ocean Observatories Initiative (OOI), but suspicion immediately focused on the network's role in tracking climate change. But the OOI also provides data that's useful for weather forecasting and fisheries management, leading to widespread opposition. Today, it appears that the opposition has won, as the government will announce that it's reversing the decision. The big remaining question is how much damage the OOI took during the intervening month.

[...] The OOI is a federally supported resource that provides ocean data for use by academic researchers, government planners, and private companies. It consists of arrays of monitoring systems in several locations in both the Atlantic and Pacific Oceans that can track things like currents, salinity, chemical levels, temperatures, and tectonic activity. (There are over 100 individual entries on the page that display the data gathered by the system.) Obviously, there are many potential uses of that data. The fact that it has been gathered continuously for a decade means it can help track changes in how carbon dioxide and heat enter the oceans. This is probably what made it a target for the climate change denialists who helped set the Trump administration's policy.

Those policymakers are perfectly happy to annoy people with environmental concerns, but they apparently neglected to consider how upset everyone else would be about losing access to the other data. The ensuing public backlash led the Senate on Wednesday to unanimously agree with a measure that would block the government from taking down the OOI. Today's decision may indicate that the administration recognized it had gotten itself into a fight it knew it was losing. The National Science Foundation formally announced the decision, stating: "effective immediately, [it] will not proceed with further removal or descoping of equipment from the remaining arrays and will continue operations including planned maintenance." The agency added that it "appreciates the concerns raised by the range of stakeholders that have informed us they rely on data" from the OOI.

The NSF also said it would "issue a Dear Colleague Letter to collect input from stakeholders and convene an expert panel to assess observational needs, evaluate available data sources, consider responses ... and help the agency identify a sustainable path for NSF's ocean observing systems."

[ Read more of this story ]( https://news.slashdot.org/story/26/06/18/2052239/trump-admin-backs-off-plans-to-kill-ocean-monitoring?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

TOP20 VISITORS:

[1] Amazon point=0 web=515 up=9.9MB (21%)
[2] PetalBot point=10 web=1618 up=9.1MB (20%) <--- PetalBot
[3] 216.244.66.x point=0 web=89 up=3.7MB (8%)
[4] Google point=0 web=453 up=2.9MB (6%)
[5] 37.252.14.x point=144 web=0 up=2.6MB (5%) <--- ake (6/hr)
[6] ClaudeBot point=0 web=462 up=2.6MB (5%)
[7] 217.114.158.x point=26 web=0 up=1.5MB (3%) <--- fox (1/hr)
[8] TikTok point=0 web=120 up=1.4MB (2%)
[9] 147.135.213.x point=0 web=11 up=0.8MB (1%)
[10] 147.135.212.x point=0 web=7 up=0.7MB (1%)
[11] 81.167.26.x point=0 web=7 up=0.6MB (1%)
[12] 104.250.53.x point=0 web=69 up=0.5MB (1%)
[13] 51.91.242.x point=0 web=3 up=0.5MB (1%)
[14] 54.37.252.x point=0 web=6 up=0.5MB (1%)
[15] 88.134.110.x point=0 web=3 up=0.2MB (<1%)
[16] 145.239.65.x point=0 web=3 up=0.2MB (<1%)
[17] 136.248.244.x point=0 web=2 up=0.1MB (<1%)
[18] 51.77.216.x point=0 web=2 up=0.1MB (<1%)
[19] 213.219.254.x point=0 web=1 up=0.1MB (<1%)
[20] 43.173.181.x point=0 web=7 up=0.1MB (<1%)

TOTAL TRAFFIC: 45MB

Rolls-Royce SMR has secured a multibillion-pound agreement to build three small modular reactors on Sweden's west coast, "marking a major step in the British engineering group's ambition to become a leading supplier of the technology in Europe," reports Euronews. From the report: Following a rigorous selection process that started in 2022, UK engineering giant Rolls-Royce's nuclear division, Rolls-Royce SMR, won the contract to build nuclear reactors for Sweden. As part of the deal, the group, selected by Videberg Kraft as its partner, will deliver three Small Modular Reactors (SMRs) to Sweden's west coast, at the Varo Peninsula. "The Videberg Project will build Sweden's first new nuclear power plant in more than forty years, supporting industries and households in southern Sweden," a press statement from Rolls-Royce said. The partnership with utility Vattenfall and developer Karnfull Next is seen as one of the most advanced opportunities for deployment outside of the UK.

[...] The European Commission considers small modular reactors (SMRs) to be a promising low-carbon technology that could help support the bloc's clean energy and energy security goals. In order to remove regulatory barriers, the EU's SMR strategy was adopted in March 2026 to accelerate the development and deployment of the technology across Europe. SMRs are smaller than conventional nuclear power plants, typically generating between 20 and 300 megawatts of electricity. At the upper end of that range, a reactor could produce around 7.2 million kilowatt-hours of electricity per day -- enough to power hundreds of thousands of homes. The International Energy Agency (IEA) estimates that more than 1,000 small modular reactors could be deployed worldwide by 2050 under a supportive policy scenario, requiring cumulative investment of around $670 billion.

[ Read more of this story ]( https://hardware.slashdot.org/story/26/06/18/2335235/rolls-royce-secures-deal-to-build-small-nuclear-reactors-for-sweden?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

NASA has selected Relativity Space to build and launch Aeolus, a 2028 Mars orbiter that would provide daily global measurements of dust, winds, and atmospheric temperatures to support future robotic and human missions. TechCrunch reports: The structure of the contract is akin to the deals that NASA made with SpaceX to fly cargo to the International Space Station, or Firefly Aerospace to put a lander on the Moon. The government agency handles the science, while the private company provides low-cost infrastructure. Aeolus, as the mission is dubbed, will contain four instruments to measure and image Mars from orbit, providing what NASA expects to be the first daily, global view of dust, winds, and temperature in its atmosphere. The agency said that data will make it safer for landers and, someday, astronauts, to visit the surface of the Red Planet.

By pairing NASA's world-class instruments with commercial innovation and investment, we can deliver more science, more often, and reduce the time it takes to get essential data into the hands of researchers preparing for future human missions to Mars," NASA administrator Jared Isaacman said in statement. The mission is set to launch in 2028 -- a rapid pace that will require Relativity to design and build the spacecraft to carry the Aeolus instruments, and finish building the rocket that will carry it to space, all on a tight timeline. NASA did not disclose how much it is paying Relativity for the mission, and Relativity did not respond to questions from TechCrunch.

Relativity was founded in 2015 by two former SpaceX and Blue Origin engineers, with the idea of using 3D printing to its maximum potential as a path to building a cheaper rocket. The company's first design, Terran-1, launched in March 2023 and failed mid-flight. Relativity doubled down by moving on to a larger design, dubbed the Terran R. Before Relativity could get it to the launch pad, the company ran into fundraising challenges, and Schmidt took a majority stake in the company in it last year, installing himself as CEO. He's been tight-lipped about the investment but has expressed interest in orbital data centers, and is thought to be using Relativity to launch a space telescope, Lazuili, financed by his family philanthropy, Schmidt Sciences.

[ Read more of this story ]( https://science.slashdot.org/story/26/06/18/2349246/nasa-picks-eric-schmidts-rocket-company-for-mars-mission?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Доступен корректирующий выпуск Firefox 152.0.1, в котором устранены проблемы, приводившие к аварийным завершениям на системах с процессорами Intel на базе микроархитектуры Raptor Lake. Проблема возникла из-за ошибки в CPU, приводящей к неверной обработке инструкций, генерируемых для функций кэширования промежуточного представления кода в JIT-компиляторе, написанном на C++. Примечательно, что месяц назад похожие проблемы с CPU Intel Raptor Lake были исправлены в выпуске Firefox 151.0.1. Прошлые проблемы проявлялись из-за неверной обработки процессорами Intel Raptor Lake инструкции "mov byte ptr [rsi + rdi + 1], ch", генерируемой для кода библиотеки zlib-rs на языке Rust.

https://www.opennet.ru/opennews/art.shtml?num=65723

Опубликовано обновление дистрибутива Linux "Альт Рабочая станция К 11.4", предлагающего среду рабочего стола KDE и ориентированного для работы в офисе и дома. Сборка подготовлена для архитектуры x86_64 и построена на 11 платформе ALT. Для загрузки сформированы установочный iso-образ (10.7 ГБ) и отдельная Live-сборка (6.4 ГБ).

https://www.opennet.ru/opennews/art.shtml?num=65724

Доступен минорный релиз операционной системы «Альт Рабочая станция К» 11.4. Сборка подготовлена на x86_64 на базе ядра 6.12.

Скачать образ

• [ ftp.altlinux.org ]( http://ftp.altlinux.org/pub/distributions/ALTLinux/p11/images/kworkstation/ )

• [ download.basealt.ru ]( https://download.basealt.ru/pub/distributions/ALTLinux/p11/images/kworkstation/ )

• [ mirror.yandex.ru ]( https://mirror.yandex.ru/altlinux/p11/images/kworkstation/ )

В новом образе

( [ читать дальше... ]( https://www.linux.org.ru/news/russia/18322934#cut ) )

Longtime Slashdot reader schwit1 shares a report from Reuters: Meta has lobbied the U.S. Congress for legal immunity from child-harm claims tied to social media products such as Instagram, as it faces thousands of lawsuits from young users and their families, according to a source familiar with the matter and proposed legislative language reviewed by Reuters. If adopted by lawmakers and passed into law as part of the Kids Online Safety Act (KOSA) under consideration in the U.S. Senate, such a provision could undermine thousands of lawsuits against Meta and other online platforms over harms to children. Meta and Google's YouTube face a combined $6 million in damages after they lost the first case at trial early this year. While legislators have given no indication of adopting the language, the lobbying effort shows the kind of legal protections Meta is seeking amid the biggest attempt to regulate online platforms in the U.S. since the 1990s. Meta has reportedly proposed the language in exchange for dropping its opposition to KOSA. Under the law, platforms would be required to mitigate harms to minors tied to features such as infinite scrolling, notifications, and appearance-altering filters.

[ Read more of this story ]( https://tech.slashdot.org/story/26/06/18/2342227/meta-lobbies-congress-for-protection-from-child-harm-lawsuits?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Проект Raspberry Pi опубликовал новую версию дистрибутива Raspberry Pi OS 2026-06-18 (Raspbian). Дистрибутив основан на пакетной базе Debian 13 и содержит около 35 тысяч пакетов в репозитории. Среда рабочего стола базируется на композитном сервере labwc, использующем библиотеку wlroots от проекта Sway. Для загрузки подготовлены три сборки: сокращённая (537МБ) для серверных систем, с базовым рабочим столом (1.2 ГБ) и полная с дополнительным набором приложений (1.9 ГБ). Сборки доступны для 32- и 64-разрядных архитектур. Дополнительно сформировано обновление для старой редакции Raspberry Pi OS (Legacy), построенное на пакетной базе Debian 12.

https://www.opennet.ru/opennews/art.shtml?num=65725

An anonymous reader quotes a report from Wired: The Trump administration's move to impose export controls on Anthropic's most powerful AI technology followed a spat over the company granting South Korean telecom giant SK Telecom access to its Claude Mythos model, according to people familiar with the matter. US officials were concerned about what they alleged were SK Telecom's ties to China, those people said. Those concerns appear to have compounded when Amazon later flagged vulnerabilities to the White House it identified in Fable 5, a highly safeguarded version of Mythos that Anthropic released to the public on June 9. The Amazon researchers claimed that it was possible to circumvent some of Fable 5's guardrails and access Mythos' formidable cybercapabilities, though Anthropic and outside cybersecurity experts have argued these risks are not unique to Claude.

The confluence of events is what ultimately led the White House to determine that it could not trust Anthropic to safeguard its most advanced AI technology, according to a person close to the administration. On Friday, the Trump administration ordered Anthropic to revoke access to Mythos and Fable 5 for all foreign nationals, including immigrants inside the US. Rather than gate access to its technology based on nationality, a process that would be difficult to implement while also preserving privacy, Anthropic decided it was better to disable access to the models entirely. The White House and Anthropic still remain at odds after days of negotiations about bringing Claude Mythos and Fable 5 back online. SK Telecom was one of roughly 150 organizations granted early access to Anthropic's vulnerability-detection model Claude Mythos through Project Glasswing, notes Wired. The White House later asked Anthropic to revoke the company's access, reportedly amid concerns about alleged China ties, and Anthropic immediately complied. There was, however, no mention of the telecom in the government's formal demand to restrict Mythos and Fable 5 to U.S. nationals.

SK Telecom told a Korean newspaper that the "anonymous insider's remarks in foreign media lack verified facts, and our company has no ties to China."

[ Read more of this story ]( https://slashdot.org/story/26/06/19/007201/the-korean-telecom-giant-at-the-center-of-anthropics-mythos-controversy?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The European Commission is reportedly preparing to provisionally classify Amazon Web Services and Microsoft Azure as "gatekeepers" under the Digital Markets Act, bringing cloud infrastructure under the law's stricter competition rules for the first time. The designation could require greater interoperability and data portability, making it easier for customers to switch providers, with a final decision expected by the end of 2026. Heise reports: This investigation began in November 2025, when the EU targeted the cloud power of US tech giants. The trigger was outages in cloud services with sometimes significant impacts on other internet services. Shortly before, an approximately 15-hour outage of the AWS cloud in the US meant that not only Amazon's own streaming services but also Atlassian, Docker, Epic Games, and the Signal messenger were unavailable or severely restricted. Shortly thereafter, Microsoft Azure also struggled with an outage, preventing air passengers from checking in and interrupting votes in the Scottish Parliament.

As a result, European antitrust authorities have also scrutinized cloud services under the Digital Markets Act for the first time. The major cloud providers, primarily from the US, have so far evaded the EU's Digital Markets Act because a large part of their business is handled through corporate contracts. This makes it difficult to determine the number of individual users. However, this is one of the EU's most important criteria for determining the market power of companies. [...] As gatekeepers, AWS and Azure would be obliged to ensure interoperability and data portability. This would, for example, simplify switching cloud providers and allow customers to link other services with AWS or Azure clouds, instead of being limited to AWS and Azure offerings. Significant fines could also be imposed if the cloud services are found to be in violation of existing regulations.

[ Read more of this story ]( https://slashdot.org/story/26/06/19/1643240/eu-to-soon-classify-aws-and-azure-as-gatekeepers-under-dsa?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Researchers have disclosed a new unpatchable BootROM exploit affecting Apple devices with A12, A13, S4, and S5 chips. The attack requires physical USB access and DFU mode, but can let an attacker run code before iOS loads, bypass signature checks, and boot modified software. 9to5Mac reports the details: In a highly detailed technical post published today, the Paradigm Shift Team details usbliter8, a new exploit that "leverages both a hardware bug in the USB controller and a specific configuration flaw present in the device firmware" and cannot be patched. The PS Team explains that ahead of today's disclosure, it shared its findings and worked with Apple Product Security to coordinate the release. The researchers also thanked Apple's security team for its "prompt response, constructive engagement, and cooperation throughout" the process.

In a nutshell, this bug affects the following Apple SoCs: A12, S4, S5, and A13. [...] They add that "technical support for A12X/Z is possible," but "it is not currently implemented." That could add the 2018 and 2020 iPad Pro lineups to the list. The way usbliter8 works is: it sends specially crafted data to a device over USB while it is in DFU mode, confusing the USB controller and causing it to write data to the wrong part of memory. That gives an attacker with physical access to the device control over its startup process. From there, they can run their own code before iOS loads, bypass signature checks, and boot modified system software.

Importantly, the exploit does not affect or compromise the device's Secure Enclave, which in practice means that data such as passcodes and encrypted user data remain secure. That said, PS Team says that "although usbliter8 doesn't affect SEP itself, it opens up wider attack vectors to compromise the Secure Enclave," adding that "by releasing this exploit publicly, we hope to highlight the real-world impact of these hardware flaws and contribute to a broader understanding of modern SecureROM security." [...] Given that this is also an unpatchable exploit, the researchers note that "affected users should be aware that migrating to newer hardware remains the most effective mitigation."

[ Read more of this story ]( https://it.slashdot.org/story/26/06/19/1723242/new-unpatchable-exploit-targets-apple-devices-with-a12-and-a13-chips?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Компания Google опубликовала график перехода к обязательной регистрации разработчиков и приложений в сертифицированных сборках Android. Предполагается, что верификация разработчиков усложнит распространение вредоносных приложений с использованием мошеннических схем, предлагающих загрузить и установить apk-пакет в обход каталога Google Play Store.

https://www.opennet.ru/opennews/art.shtml?num=65726

An anonymous reader quotes a report from Wired: A report from Canada's Transportation Safety Board has highlighted regulatory failures that allowed OceanGate's unregistered, unflagged, and uncertified Titan submersible to operate out St. John's, Newfoundland, for years before it imploded on a tourist trip to the wreck of the Titanic in 2023. "When it came to the Titan, critical information existed across multiple federal government organizations, but no one was responsible for connecting the dots," says TBS chair Yoan Marier in a statement. "Without a complete picture of the operation, the Titan continued to operate in Canada without regulatory oversight." [...] As OceanGate continued to operate from St. John's in 2021 and 2022, the Titan made successful dives to the Titanic and several sites within Canadian waters. The company eventually interacted with a total of 10 Canadian federal agencies, including Parks Canada, the Department of National Defense, and the Royal Canadian Mounted Police. But the company's operations were never directly reported to the team responsible for marine safety. "In terms of the actual people that were responsible for marine oversight, their focus was on the Canadian support vessel," says TSB investigator Jason Melvin.

While TSB investigators did not have access to the wreckage of the Titan itself, which remains with the US Coast Guard, they did analyze portions of the carbon fiber left over from its manufacture. They calculated that a hull made to OceanGate's exact specifications might have been able to make hundreds of millions of dives to Titanic depths before failing. However, the composite samples as built had porosity and waviness between layers and were ground down in a way that might have introduced defects. When the TSB tested the compressive strength of the carbon fiber, it indicated the material could fail in as few as 30 deep dives. [...] The TSB is recommending increased oversight of the riskiest vessels and improvements in information sharing between departments, and is requiring that all human-occupied submersibles be subject to international construction and safety standards.

[ Read more of this story ]( https://news.slashdot.org/story/26/06/19/1743202/canada-missed-chances-to-inspect-oceangates-titan-before-fatal-implosion?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Hyundai Motor Group is acquiring SoftBank's remaining 9.65% stake in Boston Dynamics for $325 million, "closing out SoftBank's last piece of Boston Dynamics and turning the Waltham, Massachusetts robotics company into a wholly owned Hyundai business," reports Startup Fortune. From the report: The price is $325 million for the remaining stake, according to the deal terms, and it follows the put option SoftBank retained when Hyundai bought control of Boston Dynamics in 2021. You should read that as a signal, not a footnote. Hyundai paid about $880 million for an 80% stake in Boston Dynamics in the 2021 transaction, valuing the company at roughly $1.1 billion at the time. SoftBank had bought Boston Dynamics from Alphabet in 2017, after Google had acquired the robotics lab in 2013. It was a strange ownership path for a company whose robots became famous on YouTube long before they became obvious commercial products.

That part is changing. At CES in Las Vegas on January 5, 2026, Hyundai and Boston Dynamics showed the electric Atlas humanoid robot in public, with the Associated Press reporting that the life-sized robot stood up, walked around the stage and was remotely piloted for the demonstration. The useful detail was not the stagecraft. It was the deployment plan. A production version of Atlas is expected to begin work at Hyundai's electric vehicle plant near Savannah, Georgia, by 2028. [...] If Hyundai can turn that into repeatable manufacturing value, the SoftBank exit will look less like a tidy cleanup and more like the moment Hyundai stopped borrowing a robotics future and decided to own it outright.

[ Read more of this story ]( https://hardware.slashdot.org/story/26/06/19/198218/hyundai-takes-full-control-of-boston-dynamics-as-softbank-exits-for-325-million?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Состоялся выпуск интегрированной среды разработки Qt Creator 20, предназначенной для создания кроссплатформенных приложений с использованием библиотеки Qt. Поддерживается как разработка классических программ на языке C++, так и использование языка QML, в котором для определения сценариев используется JavaScript, а структура и параметры элементов интерфейса задаются CSS-подобными блоками. Готовые сборки сформированы для Linux, Windows и maсOS.

https://www.opennet.ru/opennews/art.shtml?num=65719

Video game composer and sound designer Bobby Prince has died at age 81 following an illness. Developer id software shared the news. Engadget reports: Prince was perhaps best known for his pioneering work on the Doom series. The Library of Congress inducted his soundtrack for the original game into the National Recording Registry just last month. "Despite the limitations of the 1993-era sound card drivers, Prince composed the perfect riff-shredding accompaniment for the game's demon-slaying journey to hell and back," the Library of Congress stated.

"Taking advantage of his knowledge of MIDI, Prince even worked to ensure that the sound effects he created could cut through the music by assigning them to different MIDI frequencies." Prince also worked on games such as Wolfenstein 3D, Rise of the Triad and Duke Nukem 3D. In 2006, the Game Audio Network Guild honored Prince with a lifetime achievement award.

[ Read more of this story ]( https://games.slashdot.org/story/26/06/19/1918208/doom-composer-bobby-prince-has-died?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Norway will largely prohibit generative AI use for elementary kids ages 6 to 13 beginning with the new school year, while allowing limited, teacher-supervised use for older students. The government says the restrictions are intended to prevent children from skipping foundational reading, writing, and mathematics skills amid declining test scores. Reuters reports: Facing a broad decline in education test scores, the government in 2024 banned smartphones from schools and has given teachers back more powers to enforce discipline in the classroom. Using AI increases the risk that young children skip important steps in their education, Prime Minister Jonas Gahr Stoere told a press conference on Friday. "The most important thing in school is that our children learn to read, write and do mathematics," Stoere said, adding that the new standards will be imposed from the new school year beginning in late August.

Pupils from first through seventh grade, aged 6 to 13, should as a general rule not be using AI, while those in lower secondary school, aged 14 to 16, can cautiously adopt tools under teachers' supervision, the government said. In upper secondary education, from ages 17 to 19, students should learn to use AI appropriately so that they are prepared for further education and work, it added. In a related statement, the Norwegian government also said it would propose legislation to fund the use of more books in classrooms, reversing the trend towards computer tablets.

[ Read more of this story ]( https://yro.slashdot.org/story/26/06/19/2140248/norway-imposes-near-ban-on-ai-in-elementary-school?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Amazon MGM has dropped Luca Guadagnino's nearly completed Sam Altman biopic Artificial and is seeking another distributor for the film. The move comes months after Amazon expanded its multibillion-dollar partnership with OpenAI, fueling speculation about a potential conflict given the movie's reportedly unflattering portrayal of Altman. The Independent reports: Artificial would have marked the Oscar-nominated Call Me By Your Name director's third Amazon film, following the critically acclaimed Zendaya-led tennis romance Challengers (2024) and the academic scandal drama After the Hunt (2025), starring Julia Roberts. The new movie is said to chronicle the brief period when Altman was abruptly ousted as OpenAI's CEO in 2023 and subsequently rehired. Monica Barbaro and Ike Barinholtz star alongside Garfield as former OpenAI CTO Mira Murati and SpaceX founder Elon Musk, while Yura Borisov, Cooper Hoffman, Jason Schwartzman, Cooper Koch, Billie Lourd, Zosia Mamet, Angus Imrie, Chris O'Dowd, Mark Rylance and Margo's Got Money Troubles breakout Thaddea Graham round out the cast.

It is unclear exactly why the film was dropped, but according to Variety, the news came after it had already undergone positive screen tests. An early viewer told the publication that the film's portrayals of Altman and newly minted trillionaire Musk are the two characters audiences would "like the least." It was also reported that Amazon had already seen every early iteration of the script before Guadagnino was hired to direct. Altman and Amazon founder Jeff Bezos have developed a high-profile friendship over the years. In fact, the former was in attendance at Bezos's wedding to Lauren Sanchez, which took place in Venice, Italy, in 2025. In recent months, the two have continued to deepen their professional partnership that began in 2015, when Amazon became one of OpenAI's first investors. Ten years later, the companies closed their first major deal in November 2025, allowing the ChatGPT maker to run its systems on Amazon's U.S. data centers.

[ Read more of this story ]( https://entertainment.slashdot.org/story/26/06/19/2146253/amazon-drops-sam-altman-movie-after-announcing-openai-partnership?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Researchers developed an ultrasonic espresso process that uses high-frequency sound waves instead of hot water to produce espresso-strength coffee at room temperature. And, not only did coffee drinkers find it comparable to traditional espresso, but the brewing process cut energy use by up to 75%. An anonymous reader quotes a report from The Conversation: We have developed what we call an ultrasonic espresso: a room-temperature brewing process that uses high-frequency sound waves to extract the flavor, oils, aroma and caffeine from coffee grounds. The result is an espresso-strength coffee made in under three minutes, but needing far less energy than the conventional method. Saving up to 75% of energy by not heating the water is a minor benefit for home users or small coffee shops. But for companies making ready-to-drink coffee products at industrial scale, it could be very significant indeed. A concentrated room-temperature coffee could be used directly in bottled drinks, milk-based beverages or cold coffee products. It can also be shipped as a concentrate and diluted later. This would reduce not only energy use, but potentially processing time as well.

The key to the new process is ultrasound. These are sound waves above the range of human hearing. In our system, a small metal device called a transducer presses against the side of a traditional espresso basket and makes it vibrate rapidly. Those vibrations move through the water and coffee grounds. This creates a phenomenon known as acoustic cavitation. Tiny bubbles form and collapse in the liquid. When these bubbles collapse near coffee particles, they produce microscopic jets and forces that act a little like scrubbing brushes. They pit and fracture the surface of the coffee grounds, helping flavor compounds, oils and caffeine move into the water much faster than they normally would at room temperature. In other words, ultrasound helps us replace heat with mechanical energy.

[...] In earlier work, we used ultrasound to speed up cold brew dramatically. But the challenge in this project was different: could we produce something with the strength, body and intensity of espresso, without heating the water? To do that, we adjusted several variables. Brew ratio was one of the most important: how much water we used for each gram of coffee. Too much water and the drink becomes diluted; too little and extraction becomes difficult. Grind size also mattered. Finer grounds allowed us to extract flavor more rapidly. Finally, we tested how long the ultrasound should be applied. We found the sweet spot was about two-and-a-half to three minutes. Of course, making a concentrated coffee in the laboratory is one thing. The real test is whether people want to drink it. [...] For the espresso samples, participants could not reliably tell the traditional and ultrasonic versions apart. There were no significant differences in aroma, flavor, bitterness or overall liking. For filter coffee, the ultrasound version was actually preferred overall, with participants rating its bitterness more pleasantly.

[ Read more of this story ]( https://developers.slashdot.org/story/26/06/19/2159245/using-sound-waves-to-make-espresso-could-cut-coffee-brewing-energy-use-by-75?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Опубликован очередной еженедельный отчёт о разработке KDE, в котором представлена порция изменений для ветки KDE Plasma 6.8, релиз которой запланирован на 14 октября.

https://www.opennet.ru/opennews/art.shtml?num=65728