Tech entrepreneur/blogger Anil Dash has been critical of AI browsers like ChatGPT Atlas. (He's written that Atlas "substitutes its own AI-generated content for the web, but it looks like it's showing you the web," while its prompt-based/command-line interface resembles a clunky text adventure, and it's true purpose seems to be ingesting more training data.)

And at the Mozilla Festival in Spain, "Virtually everyone shared some version of what I'd articulated as the majority view on AI, which is approximately that LLMs can be interesting as a technology, but that Big Tech, and especially Big AI, are decidedly awful and people are very motivated to stop them from committing their worst harms upon the vulnerable."

But...

Another reality that people were a little more quiet in acknowledging, and sometimes reluctant to engage with out loud, is the reality that hundreds of millions of people are using the major AI tools every day... I don't know why today's Firefox users, even if they're the most rabid anti-AI zealots in the world, don't say, "well, even if I hate AI, I want to make sure Firefox is good at protecting the privacy of AI users so I can recommend it to my friends and family who use AI"...

My personal wishlist would be pretty simple:
* Just give people the "shut off all AI features" button. It's a tiny percentage of people who want it, but they're never going to shut up about it, and they're convinced they're the whole world and they can't distinguish between being mad at big companies and being mad at a technology so give them a toggle switch and write up a blog post explaining how extraordinarily expensive it is to maintain a configuration option over the lifespan of a global product.

* Market Firefox as "The best AI browser for people who hate Big AI". Regular users have no idea how creepy the Big AI companies are — they've just heard their local news talk about how AI is the inevitable future. If Mozilla can warn me how to protect my privacy from ChatGPT, then it can also mention that ChatGPT tells children how to self-harm, and should be aggressive in engaging with the community on how to build tools that help mitigate those kinds of harms — how do we catalyze that innovation?

* Remind people that there isn't "a Firefox" — everyone is Firefox. Whether it's Zen, or your custom build of Firefox with your favorite extensions and skins, it's all part of the same story. Got a local LLM that runs entirely as a Firefox extension? Great! That should be one of the many Firefoxes, too. Right now, so much of the drama and heightened emotions and tension are coming from people's (well... dudes') egos about there being One True Firefox, and wanting to be the one who controls what's in that version, as an expression of one set of values. This isn't some blood-feud fork, there can just be a lot of different choices for different situations. Make it all work.

[ Read more of this story ]( https://news.slashdot.org/story/25/11/15/2242238/could-firefox-be-the-browser-that-protects-the-privacy-of-ai-users?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Residential utility bills in America "rose 6% on average nationwide in August compared with the same period in the previous year," reports CNBC, citing statistics from the U.S. Energy Information Administration:

The reasons for price increases are often complex and vary by region. But in at least three states with high concentrations of data centers, electric bills climbed much faster than the national average during that period. Prices, for example, surged by 13% in Virginia, 16% in Illinois and 12% in Ohio.

The tech companies and AI labs are building data centers that consume a gigawatt or more of electricity in some cases, equivalent to more than 800,000 homes, the size of a city essentially... "The techlash is real," said Abraham Silverman, who served as general counsel for New Jersey's public utility board from 2019 until 2023 under outgoing Democratic Gov. Phil Murphy. "Data centers aren't always great neighbors," said Silverman, now a researcher at Johns Hopkins University. "They tend to be loud, they can be dirty and there's a number of communities, particularly in places with really high concentrations of data centers, that just don't want more data centers..." [C]apacity prices get passed down to consumers in their utility bills, Silverman said. The data center load in PJM [America's largest grid, serving 13 states] is also impacting prices in states that are not industry leaders such as New Jersey, where prices jumped about 20% year over year...

There are other reasons for rising electricity prices, Silverman said. The aging electric grid needs upgrades at a time of broad inflation and the cost of building new transmission lines has gone up by double digits, he said. The utilities also point to rising demand from the expansion of domestic manufacturing and the broader electrification of the economy, such as electric vehicles and the adoption of electric heat pumps in some regions...

In other states, however, the relationship between rising electricity prices and data centers is less clear. Texas, for example, is second only to Virginia with more than 400 data centers. But prices in the Lone Star state increased about 4% year over year in August, lower than the national average. Texas operates its own grid, ERCOT, with a relatively fast process that can connect new electric supply to the grid in around three years, according to a February 2024 report from the Brattle Group. California, meanwhile, has the third most data centers in the nation and the second highest residential electricity prices, nearly 80% above the national average. But prices in the Golden State increased about 1% in August 2024 over the prior year period, far below the average hike nationwide. One of the reasons California's electricity rates are so much higher than most of the country is the costs associated with preventing wildfires.

[ Read more of this story ]( https://news.slashdot.org/story/25/11/15/069251/are-data-centers-raising-americas-electricity-prices?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader shared this report from The Register:

Yet another supply chain attack has hit the npm registry in what Amazon describes as "one of the largest package flooding incidents in open source registry history" — but with a twist. Instead of injecting credential-stealing code or ransomware into the packages, this one is a token farming campaign.

Amazon Inspector security researchers, using a new detection rule and AI assistance, originally spotted the suspicious npm packages in late October, and, by November 7, the team had flagged thousands. By November 12, they had uncovered more than 150,000 malicious packages across "multiple" developer accounts. These were all linked to a coordinated tea.xyz token farming campaign, we're told. This is a decentralized protocol designed to reward open-source developers for their contributions using the TEA token, a utility asset used within the tea ecosystem for incentives, staking, and governance.

Unlike the spate of package poisoning incidents over recent months, this one didn't inject traditional malware into the open source code. Instead, the miscreants created a self-replicating attack, infecting the packages with code to automatically generate and publish, thus earning cryptocurrency rewards on the backs of legitimate open source developers. The code also included tea.yaml files that linked these packages to attacker-controlled blockchain wallet addresses.

At the moment, Tea tokens have no value, points out CSO Online. "But it is suspected that the threat actors are positioning themselves to receive real cryptocurrency tokens when the Tea Protocol launches its Mainnet, where Tea tokens will have actual monetary value and can be traded..."

In an interview on Friday, an executive at software supply chain management provider Sonatype, which wrote about the campaign in April 2024, told CSO that number has now grown to 153,000. "It's unfortunate that the worm isn't under control yet," said Sonatype CTO Brian Fox. And while this payload merely steals tokens, other threat actors are paying attention, he predicted. "I'm sure somebody out there in the world is looking at this massively replicating worm and wondering if they can ride that, not just to get the Tea tokens but to put some actual malware in there, because if it's replicating that fast, why wouldn't you?"

When Sonatype wrote about the campaign just over a year ago, it found a mere 15,000 packages that appeared to come from a single person. With the swollen numbers reported this week, Amazon researchers wrote that it's "one of the largest package flooding incidents in open source registry history, and represents a defining moment in supply chain security...." For now, says Sonatype's Fox, the scheme wastes the time of npm administrators, who are trying to expel over 100,000 packages. But Fox and Amazon point out the scheme could inspire others to take advantage of other reward-based systems for financial gain, or to deliver malware.

After deplooying a new detection rule "paired with AI", Amazon's
security researchers' write, "within days, the system began flagging packages linked to the tea.xyz protocol...

By November 7, the researchers flagged thousands of packages and began investigating what appeared to be a coordinated campaign. The next day, after validating the evaluation results and analyzing the patterns, they reached out to OpenSSF to share their findings and coordinate a response.

Their blog post thanks the Open Source Security Foundation (OpenSSF) for rapid collaboration, while calling the incident "a defining moment in supply chain security..."

[ Read more of this story ]( https://developers.slashdot.org/story/25/11/16/0712239/security-researchers-spot-150000-function-less-npm-packages-in-automated-token-farming-scheme?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

После шести месяцев разработки проект GNU [ представил ]( https://lists.gnu.org/archive/html/taler/2025-11/msg00002.html ) свободную систему электронных платежей [ GNU Taler 1.1 ]( https://taler.net ) . Платформа признана готовой для внедрения рабочих платёжных сервисов и уже может законно применяться для продажи товаров в Швейцарии. Предприятиям, желающим наладить оплату продаж при помощи GNU Taler, достаточно иметь счёт в любом швейцарском банке и запустить предоставляемый платформой бэкенд для организации продаж.

( [ читать дальше... ]( https://www.linux.org.ru/news/opensource/18143495#cut ) )

Опубликовано: Sun, 16 Nov 2025 13:00:34 GMT
Канал: Все статьи подряд / Программирование микроконтроллеров / Хабр

В программировании микроконтроллеров порой надо сделать так, чтобы после сборки артефактов в прошивке глобальные константы оказались в строго заданных адресах NOR Flash памяти. Причем при пересборке проекта эти адреса оставались прежними.Это особенно полезно? если вы решили выделить конфигурационные и калибровочные выделить в отдельный интервал Flash памяти.Потом это требование международного стандарта программирования ISO-26262.Делается это для того, чтобы появилась возможность менять значения в этом интервале утилитой TunerPRO перед прошивкой бинаря.Фиксированные адреса позволят вам всегда иметь один и тот же *.xdf файл для утилиты TunerPRO. Читать далее]]>

https://habr.com/ru/articles/966862/

An anonymous reader shared this report from Electrek:

Solar and wind are growing fast enough to meet all new electricity demand worldwide for the first three quarters of 2025, according to new data from energy think tank Ember.

The group now expects fossil power to stay flat for the full year, marking the first time since the pandemic that fossil generation won't increase. Solar and wind aren't just expanding; they're outpacing global electricity demand itself. Solar generation jumped 498 TWh (+31%) compared to the same period last year, already topping all the solar power produced in 2024. Wind added another 137 TWh (+7.6%). Together, they supplied 635 TWh of new clean electricity, beating out the 603 TWh rise in global demand (+2.7%). That lifted solar and wind to 17.6% of global electricity in the first three quarters of the year, up from 15.2% year-over-year. That brought the total share of renewables in global electricity -solar, wind, hydro, bioenergy, and geothermal — to 43%. Fossil fuels slid to 57.1%, down from 58.7%.

For the first time in 2025, renewables collectively generated more electricity than coal. And fossil generation as a whole has stalled. Fossil output slipped slightly by 0.1% (-17 TWh) through the end of Q3. Ember expects no fossil-fuel growth for the full year, driven by clean power growth outpacing demand.

[ Read more of this story ]( https://hardware.slashdot.org/story/25/11/15/0633205/solar-and-wind-are-covering-all-new-power-demand-in-2025?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Опубликовано: Sun, 16 Nov 2025 12:00:32 GMT
Канал: Все статьи подряд / Raspberry Pi / Хабр

Наконец‑то удалось достичь значительного прогресса в работоспособности графических процессоров Intel Arc на платформах Raspberry Pi. Система работает относительно стабильно. После преодоления множества технических препятствий появилась реальная перспектива интеграции этих GPU в официальную Raspberry Pi OS. В случае успеха, для активации карт Intel пользователям потребуется лишь установить соответствующий пакет прошивок.   Важность этого достижения выходит далеко за рамки экосистемы Raspberry Pi.Программный патч, необходимый для работы карт Arc, запускает их не только на архитектуре Arm, но и на всех системах, не относящихся к x86, включая RISC-V. Сейчас Arm-платформа Raspberry Pi выступает в роли доступной и популярной тестовой площадки для решения фундаментальной задачи совместимости.Успешная интеграция драйвера Intel Xe в ядро Linux для non-x86 архитектур открывает всей линейке Intel Arc доступ к экосистеме RISC-V. Не забываем, что та испытывает острую нехватку мощных GPU с открытыми драйверами. Читать далее]]>

https://habr.com/ru/companies/selectel/articles/966828/

An anonymous reader shared this report from PC World:

It won't whip the llama's ass, but Opera has added a Spotify visualizer to its latest iteration of its free Opera One browser. Known as Sonic, the visualizer will be part of Opera's Dynamic Themes, which use the WebGPU standard to employ a dynamic theme that runs in the background of the browser. It's essentially a shader, which uses your PC's graphics engine to generate the moving background.

The browser also comes with a music player, which is set to Spotify by default. Users will have an opportunity to upgrade to Spotify Premium as part of the browser upgrade, Opera said. Opera's Sonic theme... takes the Spotify input and transforms it into a dynamic background.

"As any old tech head knows, the original visualizer was found in Winamp, which would sync visualizations to the beat and flow of music being played," the article points out.

And 27 years later, WinAmp arrived as an app in Apple's App Store and Google Play and in April of 2024. (The latest version was apparently released this May — and you can also download it to your desktop...)

Somewhere along the way, Winamp also announced "Winamp for Creators," which they're describing as a dedicated platform for music artists with monetization and promotion tools, music management services, and other essential resources "to help creators take control of their careers" (including "a powerful social media publishing tool that lets users write a single post and push it to all their social media channels simultaneously.")

[ Read more of this story ]( https://entertainment.slashdot.org/story/25/11/16/0827245/holy-winamp-opera-puts-a-music-visualizer-inside-its-browser?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Опубликован выпуск дистрибутива Nitrux 5.0.0, построенного на пакетной базе Debian и поставляемого с системой инициализации OpenRC. Размер полного загрузочного образа составляет 3.3 ГБ. Наработки проекта распространяются под свободными лицензиями.

https://www.opennet.ru/opennews/art.shtml?num=64260

TOP10 VISITORS:

[1] 37.252.14.x point=143 web=0 up=27.2MB (45%) <--- ake (6/hr)
[2] Amazon point=0 web=191 up=7.0MB (11%)
[3] PetalBot point=1 web=1029 up=6.0MB (10%) <--- PetalBot
[4] ClaudeBot point=0 web=328 up=5.6MB (9%)
[5] TikTok point=0 web=286 up=3.1MB (5%)
[6] Google point=3 web=381 up=3.0MB (5%) <--- Google
[7] 217.114.158.x point=26 web=0 up=1.1MB (1%) <--- fox (1/hr)
[8] 216.244.66.x point=0 web=19 up=0.9MB (1%)
[9] 91.137.27.x point=0 web=8 up=0.6MB (<1%)
[10] 51.77.216.x point=0 web=8 up=0.5MB (<1%)

TOTAL TRAFFIC: 59MB

fselect — это консольная утилита для поиска файлов с помощью выражений, напоминающих SQL. В некоторых случаях может заменить традиционный find и написание развесистых скриптов с его использованием.

( [ читать дальше... ]( https://www.linux.org.ru/news/opensource/18143836#cut ) )

Аджит Варма (Ajit Varma), вице-президент Mozilla по продукту Firefox, анонсировал новый режим просмотра - "AI Window", в котором будет предложено отдельное пространство взаимодействия с AI, дополняющее имеющийся стандартный режим навигации в Web и режим приватного просмотра. Функциональность AI Window пока находится в стадии разработки и недоступна для тестирования. Утверждается, что данный режим выйдет за рамки уже предлагаемого в Firefox чатбота, встраиваемого боковую панель, и позволит персонализировано взаимодействовать с AI-ассистентом и получать помощь во время просмотра web-страниц. Режим будет активироваться по желанию пользователя (opt-in, по умолчанию отключён). Похожая инициатива недавно была представлена компанией Google для Chrome.

https://www.opennet.ru/opennews/art.shtml?num=64259

Опубликовано: Sun, 16 Nov 2025 07:00:39 GMT
Канал: Все статьи подряд / Программирование микроконтроллеров / Хабр

Minecraft давно вышел за рамки развлечений. Сейчас это еще и площадка для экспериментов. Энтузиасты запускают сервера игры на устройствах, которые вообще не предназначены для такого. Как вам — умная лампочка с мигающим светодиодом, роутер, забытый в шкафу, микроконтроллер ESP32 размером с марку? Подобные проекты рождаются из простого «а что, если…» и показывают, насколько гибкой стала архитектура Minecraft и как далеко можно зайти в оптимизации. В этом материале разберем, как сервер работает на уровне кода и железа и какие приемы позволяют запускать его на слабом, почти игрушечном оборудовании. Ведь классический сервер — это Java-приложение, требующее виртуальной машины и памяти, но в нашем случае правила меняются. Поехали! Читать далее]]>

https://habr.com/ru/companies/ru_mts/articles/966540/

It's been trying to measure the popularity of programming languages since 2000 using metrics like the number of engineers, courses, and third-party vendors. And "The November 2025 TIOBE Index brings another twist below Python's familiar lead," writes TechRepublic. "C solidifies its position as runner-up, C++ and Java lose some ground, and C# moves sharply upward, narrowing the gap with Java to less than a percentage point..."

TIO CEO Paul Jansen said this month that "Instead of Python, programming language C# is now the fastest rising language,"

How did C# achieve this? Java and C# are battling for a long time in the same areas. Right now it seems like C# has removed every reason why not to use C# instead of Java: it is cross platform nowadays, it is open source and it contains all new language features a developer wants. While the financial world is still dominated by Java, all other terrains show equal shares between Java and C#. Besides this, Microsoft is going strong and C# is still their most backed programming language.

Interesting note: C# has never been higher than Java in the TIOBE index. Currently the difference between the two rivals is less than 1%. There are exciting times ahead of us. Is C# going to surpass Java for the first time in the TIOBE index history?

"The fact that C# has been in the news for the successive betas and pre-release candidates prior to the release of C# 14 may have bumped up its percentage share in the last few months," notes a post on the site i-Programmer. But they also point out that by TIOBE's reckoning, Java — having been overtaken by Python in 2021 — "has been in decline ever since."

TechRepublic summarizes the rest of the Top Ten:

JavaScript stays in sixth place at 3.42%, and Visual Basic edges up to seventh with 3.31%. Delphi/Object Pascal nudges upward to eighth at 2.06%, while Perl returns to the top 10 in ninth at 1.84% after a sharp year-over-year climb. SQL rounds out the list at tenth with 1.80%, maintaining a foothold that shows the enduring centrality of relational databases. Go, which held eighth place in October, slips out of the top 10 entirely.

Here's how TIOBE's methodology ranks programming language popularity in November:

Python
C
C++
Java
C#
JavaScript
Visual Basic
Delphi/Object Pascal
Perl
SQL

[ Read more of this story ]( https://developers.slashdot.org/story/25/11/16/0516224/could-c-overtake-java-in-tiobes-programming-language-popularity-rankings?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Ubuntu 25.10 вновь столкнулась с проблемами при переходе на Rust-утилиты: на этот раз под удар попал sudo-rs — переписанная на Rust версия классической команды sudo. В коде обнаружены две уязвимости средней степени опасности, одна из которых получила идентификатор CVE-2025-64170.

( [ читать дальше... ]( https://www.linux.org.ru/news/ubuntu/18144127#cut ) )

Опубликован выпуск браузерного движка Servo 0.0.2 и развиваемого вместе с ним демонстрационного браузера ServoShell, написанных на языке Rust. По функциональности выпуск аналогичен ночной сборке от 14 ноября, для которой проведено дополнительное ручное тестирование. Готовые сборки предоставлены для Linux, Android, macOS и Windows.

https://www.opennet.ru/opennews/art.shtml?num=64258

Slashdot reader spatwei writes: It is now more common for data to leave companies through copying and pasting than through file transfers and uploads, LayerX revealed in its Browser Security Report 2025. This shift is largely due to generative AI (genAI), with 77% of employees pasting data into AI prompts, and 32% of all copy-pastes from corporate accounts to non-corporate accounts occurring within genAI tools. 'Traditional governance built for email, file-sharing, and sanctioned SaaS didn't anticipate that copy/paste into a browser prompt would become the dominant leak vector,' LayerX CEO Or Eshed wrote in a blog post summarizing the report.

"GenAI now accounts for 11% of enterprise application usage," notes this article from SC World, "with adoption rising faster than many data loss protection (DLP) controls can keep up. Overall, 45% of employees actively use AI tools, with 67% of these tools being accessed via personal accounts and ChatGPT making up 92% of all use..."

"With the rise of AI-driven browsers such as OpenAI's Atlas and Perplexity's Comet, governance of AI tools' access to corporate data becomes even more urgent, the LayerX report notes."

[ Read more of this story ]( https://it.slashdot.org/story/25/11/16/0355217/copy-and-paste-now-exceeds-file-transferring-as-the-top-corporate-data-exfiltration-vector?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

"Google is going to court to help put an end to, or at least limit, the prevalence of phishing scams over text message," reports BGR:

Google said it's bringing suit against Lighthouse, an impressively large operation that allegedly provides tools customers can buy to set up their own specialized phishing scams. All told, Google estimates that Lighthouse-affiliated scams in the U.S. have stolen anywhere between 12.7 million and 115 million credit cards. "Bad actors built Lighthouse as a phishing-as-a-service kit to generate and deploy massive SMS phishing attacks," Google notes. "These attacks exploit established brands like E-Z Pass to steal people's financial information."

Google's legal action is comprehensive and is intent on completely dismantling Lighthouse's operations. The search giant is bringing claims under RICO, the Lanham Act, and the Computer Fraud and Abuse Act (CFAA). RICO, which often comes up in movies and television shows, allows authorities to treat Lighthouse's phishing operation as a broad criminal enterprise as opposed to isolated scams. By using RICO, Google also expands the list of individuals who can be found liable, whether it be the people who started Lighthouse, the people who run it, or even unaffiliated customers who used the company's services. The Lanham Act, for those unaware, targets malicious actors who misappropriate well-known company trademarks in order to confuse consumers. This Lanham Act comes into play because many phishing scams masquerade as legitimate messages from companies like Amazon and FedEx. The Computer Fraud and Abuse Act, meanwhile, is relevant because scammers typically use stolen credentials to gain unauthorized access to financial systems, something the CFAA is designed to target...

The fact that Google is invoking all three of the acts above underscores how serious the company is about putting a stop to SMS-based scams. By using all three, Google's legal attack is more potent and also expands the range of available remedies to include civil damages and criminal penalties. In short, Google isn't merely trying to win a legal case; it's aiming to emphatically and permanently stop Lighthouse in its tracks.

Getting even more aggressive, Google says it's also working with the U.S. Congress to pass new anti-scammer legislation, and endorsed these three new bipartisan bills:

The Scam Compound Accountability and Mobilization (SCAM) Act "would develop a national strategy to counter scam compounds, enhance sanctions and support survivors of human trafficking within these compounds."

The Foreign Robocall Elimination Act "would establish a taskforce focused on how to best block foreign-originated illegal robocalls before they ever reach American consumers."

The Guarding Unprotected Aging Retirees from Deception (GUARD) Act "would empower state and local law enforcement by enabling them to utilize federal grant funding to investigate financial fraud and scams specifically targeting retirees. "

Thanks to Slashdot reader anderzole for sharing the article.

[ Read more of this story ]( https://yro.slashdot.org/story/25/11/16/0112236/google-begins-aggresively-using-the-law-to-stop-text-message-scams?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The dream of quantum computers has been hampered by the challenge of error correction, writes the Harvard Gazette, since qubits "are inherently susceptible to slipping out of their quantum states and losing their encoded information."

But in a newly-published paper, a research team "combined various methods to create complex circuits with dozens of error correction layers" that "suppresses errors below a critical threshold — the point where adding qubits further reduces errors rather than increasing them."

"For the first time, we combined all essential elements for a scalable, error-corrected quantum computation in an integrated architecture," said Mikhail Lukin, co-director of the Quantum Science and Engineering Initiative, Joshua and Beth Friedman University Professor, and senior author of the new paper. "These experiments — by several measures the most advanced that have been done on any quantum platform to date — create the scientific foundation for practical large-scale quantum computation..."

"There are still a lot of technical challenges remaining to get to very large-scale computer with millions of qubits, but this is the first time we have an architecture that is conceptually scalable," said lead author Dolev Bluvstein, Ph.D. '25, who did the research during his graduate studies at Harvard and is now an assistant professor at Caltech. "It's going to take a lot of effort and technical development, but it's becoming clear that we can build fault-tolerant quantum computers...."

Hartmut Neven, vice president of engineering at the Google Quantum AI team, said the new paper came amid an "incredibly exciting" race between qubit platforms. "This work represents a significant advance toward our shared goal of building a large-scale, useful quantum computer," he said... With recent advances, Lukin believes the core elements for building quantum computers are falling into place. "This big dream that many of us had for several decades, for the first time, is really in direct sight," he said.

"In theory, a system of 300 quantum bits can store more information than the number of particles in the known universe..." the article points out.

"The new paper represents an important advance in a three-decade pursuit of quantum error correction."

Thanks to long-time Slashdot reader schwit1 for sharing the article.

[ Read more of this story ]( https://tech.slashdot.org/story/25/11/16/004220/a-quantum-error-correction-breakthrough?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

A new "cold war" between America and China is "pushing leaders to sideline concerns about the dangers of powerful AI models," reports the Wall Street Journal, "including the spread of disinformation and other harmful content, and the development of superintelligent AI systems misaligned with human values..."

"Both countries are driven as much by fear as by hope of progress. "

In Washington and Silicon Valley, warnings abound that China's
"authoritarian AI," left unchecked, will erode American tech
supremacy. Beijing is gripped by the conviction that a failure to
keep
pace in AI will make it easier for the U.S. to cut short China's
resurgence as a global power. Both countries believe market share
for their companies across the world is up for grabs — and with it,
the potential to influence large swaths of the global population.

The U.S. still has a clear lead, producing the most powerful AI
models. China can't match it in advanced
chips and has no answer for the financial firepower of private
American investors, who funded AI startups to the tune of $104
billion in the first half of 2025, and are gearing
up for more. But it has a massive population of capable
engineers, lower costs and a state-led development model that often
moves faster than the U.S., all of which Beijing is working to
harness to tip the contest in its direction. A new "whole of
society" campaign looks to accelerate the construction of computing
clusters in areas like Inner Mongolia, where vast solar and wind
farms provide plentiful cheap energy, and connect hundreds of data
centers to create a shared compute pool — some describe it as a
"national cloud" — by 2028. China is also funneling hundreds of
billions of dollars into its power grid to support AI training and
adoption...

"Our lead is probably in the 'months but not years' realm,"
said Chris McGuire, who helped design U.S. export controls on AI
chips while serving on the National Security Council under the Biden
administration. Chinese AI models currently rank at or near the top
in every task from coding to video generation, with the exception of
search, according to Chatbot Arena, a popular crowdsourced ranking
platform. China's manufacturing sector, meanwhile, is rocketing
past the U.S. in bringing
AI into the physical world through robotaxis, autonomous drones
and humanoid
robots. Given China's progress, McGuire said, the U.S. is
"very lucky" to have its advantage in chips...

If AI surpasses human intelligence and acquires the ability to
improve itself, it could confer unshakable scientific, economic and
military superiority on the country that controls it. Short of that,
AI's ability to automate tedious tasks and process vast amounts of
data quickly promises to supercharge everything from cancer diagnoses
to missile defense. With so much at stake, hacking and cyber
espionage are likely to get worse, as AI gives hackers more powerful
tools, while increasing incentives for state-backed groups to try to
steal AI-related intellectual property. As distrust grows, Washington
and Beijing will also find it hard, if not impossible, to cooperate
in areas like preventing extremist groups from using AI in
destructive ways, such as building bioweapons. "The costs of the
AI Cold War are already high and will go much higher," said Paul
Triolo, a former U.S. government analyst and current technology
policy lead at business consulting firm DGA-Albright Stonebridge
Group. "A U.S.-China AI arms race becomes a self-fulfilling
prophecy, with neither side able to trust that the other would
observe any restrictions on advanced AI capability development...."

The article includes an interesting observation from Helen Toner, director of strategy for Georgetown's Center for Security and Emerging Technology and a former OpenAI board member. Toner points out "We don't actually know" if boosting computing power with better chips will continue producing more-powerful AI models.

So "If performance plateaus," the Journal writes, "despite all the spending by OpenAI and others — a growing concern in Silicon Valley — China has a chance to compete."

[ Read more of this story ]( https://news.slashdot.org/story/25/11/15/2123207/fear-drives-the-ai-cold-war-between-america-and-china?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

"Media headlines suggesting some slowdown in EV sales are simply incorrect," writes the site Electrek, "and leave out the bigger picture that gas car sales actually are dropping..."

Over the course of
the last two years or so, sales of battery electric vehicles, while
continuing to grow, have posted lower year-over-year percentage
growth rates than they had in years prior. EV sales used to grow at
50%+ per year, but for the last couple years, they have grown closer
to ~25% per year. This alone is not particularly remarkable — it
is inevitable that any growing product or category will show slower
percentage growth rates as sales rise, particularly one that has been
growing at such a fast rate for so long. In some recent years, we
had even seen year-over-year
doublings in EV market share (though one of those was 2020->2021,
which was anomalous). To expect improvement at that level perpetually
would be close to impossible — after 3 years of doubling
market share from 2023's 18% number, EVs would account for more
than 100% of the global automotive market, which cannot happen...

We have seen a global EV sales growth rate of 23% in the first 10
months of this year, according to a report just released by Rho
Motion (recently acquired by Benchmark Mineral Intelligence). That
includes a +32% bump in Europe, +22% bump in China, +4% in North
America, and a big +48% bump in the "rest of the world." Notably,
this 23% global growth rate is higher than last year's YTD growth
rate, which was 22%
at this time...

In covering these trends, some journalists have attempted to use
the less-wrong phrase "slower growth," showing that EV sales are
still growing, but at a lower percentage change than previously seen.
But for the first ten months of this year, that isn't true — EV
sales are up more in 2025 than in 2024 by a percentage basis. They
are also up in raw sales numbers — in 2024, EV
sales grew by a larger number than in 2023. And the same is true
so far in 2025. Going back to 2023, 10.7 million EVs were sold
globally in the first 10 months. Then in 2024, 13.3 million were
sold, a difference of 2.6 million. And so far in 2025, 16.5 million
EVs have sold, a difference of 3.2 million. Not only are the numbers
getting bigger, but the growth in unit sales is getting bigger as
well.

Even in America, the
EV market "has increased so far this year, with 11.7%
US EV sales growth YTD."

In terms of US hybrid sales, much has been made of customers
"shifting from EVs to hybrids," which is also not the case.
Conventional gas-hybrid sales are
indeed up and plug-in hybrids, which have grown more slowly
than gas-hybrids/BEVs, have also shown some growth lately. But
gas-hybrid sales have not come at the cost of EV sales, rather at the
cost of gas-only car sales.

Because that's
just the thing: the number of gas-only vehicles
being sold worldwide is a number that actually is falling.
That number continues to go down year over year. Sales of new
gas-powered cars are down by about
a quarter from their peak in 2017, and show no signs of
recovering... And yet, somehow, virtually every headline you read is
about the "EV sales slump," rather than the "gas-car sales
slump." The one you keep hearing about isn't happening,
but the one you rarely hear about is happening... No matter
what region of the world you're in, EV sales were up in the first
10 months of this year.

[ Read more of this story ]( https://hardware.slashdot.org/story/25/11/15/1943200/ev-sales-are-still-rising-they-have-not-slumped?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

From the personal blog of interface expert Bruce Ediger:

Early in March 2025, I noticed that a web crawler with a user
agent string of

meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)

was hitting my blog's machine at an unreasonable rate.

I followed the URL and discovered this is what Meta uses to gather premium,
human-generated content to train its LLMs. I found the rate of
requests to be annoying.

I already have a PHP program that creates the illusion of an infinite website. I decided to answer any HTTP request that had
"meta-externalagent" in its user agent string with the contents
of a bork.php generated file...

This worked
brilliantly. Meta ramped up to requesting 270,000 URLs on May 30 and
31, 2025...

After about 3 months, I got scared that Meta's insatiable
consumption of Super Great Pages about condiments, underwear and
circa 2010 C-List celebs would start costing me money. So I switched
to giving "meta-externalagent" a 404 status code. I decided to
see how long it would take one of the highest valued companies in the
world to decide to go away.

The answer is 5 months.

[ Read more of this story ]( https://tech.slashdot.org/story/25/11/15/2023242/while-meta-crawls-the-web-for-ai-training-data-bruce-ediger-pranks-them-with-endless-bad-data?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader shared this post from the gaming news site Aftermath:

Concord, Sony Interactive Entertainment and Firewalk Studios' Overwatch-like shooter, was live for just two weeks before it was pulled offline. Though Concord certainly had some dedicated players, it didn't have many — which is why it may be surprising to hear that a group of players are reverse-engineering the game and its servers to bring it back to life.

Publisher Sony removed Concord from stores and digital marketplaces, automatically refunded some, and, later, shut down Firewalk Studios. Two hundred or so people were laid off, and any hopes of Concord's return were dashed. Poor sales — estimated to be under 25,000 copies sold — and low player numbers marred the release. Firewalk Studios' game director Ryan Ellis said in a blog post that pieces of the game "resonated with players," but "other aspects of the game and [Concord's] initial launch didn't land the way [Firewalk Studios] intended."

Concord wasn't a bad game, but it just didn't generate enough interest with enough players. Now, a group of three hobbyist reverse-engineers, who go by real, Red, and gwog online, are trying to make it playable again... "Sometimes there's enough of the server left in the game, that we can 'activate' that code and make the game believe it's a server," Red said. "We do pretty much always need to fill in the gaps though..." Concord used an anti-tamper software to keep people from cheating, which also creates a problem for people reverse engineering. It's "nearly impossible" to crack, Red said, so the group didn't — they found an exploit to "forcefully decrypt the game's code" to "restore the game and start working on servers...."

It's not open to the public, but people can sign up for future tests. Even former Firewalk Studios employees have joined the server. They're excited to see Concord come back to life, too, the developers said.

"Friday morning, a video of the playtest was posted to the Concord Reddit page," according to the article. (Though ironically by Friday night YouTube had had removed the video "due to a copyright claim by MarkScan Enforcement."

[ Read more of this story ]( https://games.slashdot.org/story/25/11/15/0521203/sony-killed-this-game-in-2024-three-developers-reverse-engineered-it-back-to-life?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Long-time Slashdot reader schwit1 shares a Substack post by economist/entrepreneur Skander Garroum:

You know that feeling when you're waiting for the cable guy, and they said 'between 8am and 6pm, and you waste your entire day, and they never show up? Now imagine that, except the cable guy is 'electricity,' the day is '50 years,' and you're one of 600 million people. At some point, you stop waiting and figure it out yourself.

What's happening across Sub-Saharan Africa right now is the most ambitious infrastructure project in human history, except it's not being built by governments or utilities or World Bank consortiums. It's being built by startups selling solar panels to farmers on payment plans. And it's working. Over 30 million solar products sold in 2024. 400,000 new solar installations every month across Africa. 50% market share captured by companies that didn't exist 15 years ago. Carbon credits subsidizing the cost. IoT chips in every device. 90%+ repayment rates on loans to people earning $2/day.
And if you understand what's happening in Africa, you understand the template for how infrastructure will get built everywhere else for the next 50 years.

[ Read more of this story ]( https://news.slashdot.org/story/25/11/15/0433216/why-solarpunk-is-already-happening-in-africa?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Rust Coreutils задействован по умолчанию в выпуске Ubuntu 25.10 и применяется в дистрибутивах AerynOS (Serpent OS) и Apertis (развивается компанией Collabora). В отличие от GNU Coreutils реализация на Rust распространяется под пермиссивной [ лицензией MIT ]( https://mit-license.org ) , вместо [ копилефт-лицензии GPL ]( https://www.gnu.org/licenses/gpl-3.0.html ) . Дополнительно той же командой разработчиков развиваются написанные на Rust аналоги наборов утилит [ util-linux ]( https://github.com/uutils/util-linux ) , [ diffutils ]( https://github.com/uutils/diffutils ) , [ findutils ]( https://github.com/uutils/findutils ) и [ procps ]( https://github.com/uutils/procps ) , а также программ [ sed ]( https://github.com/uutils/sed ) и [ login ]( https://github.com/uutils/login ) .

В новой версии Rust Coreutils:

•

Улучшена совместимость с эталонным тестовым набором GNU Coreutils, при прохождении которого успешно выполнено 544 теста, что на 12 больше, чем в прошлой версии (532). 56 (68) тестов завершилось неудачей, а 33 (33) теста было пропущено. Заявлен уровень совместимости 85.80% (было 83.91%).

•

В утилите date [ улучшена ]( https://github.com/uutils/coreutils/pull/8944 ) совместимость с GNU date при обработке часовых поясов (добавлена возможность указания сокращённых наименований часовых поясов в опции –set).

*В утилите factor задействован пакет num_prime для ускорения факторизации типов u64/u128.

*В утилите tsort реализация алгоритма обхода DFS [ переведена ]( https://github.com/uutils/coreutils/pull/8737 ) с рекурсивного на итеративный метод работы для предотвращения переполнения стека.

•

В утилите cksum реализована поддержка хэшей sha2 и sha3. Добавлены тесты для отслеживания изменения производительности cksum. Функциональность hashsum перенесена в cksum.

•

В утилите mkdir [ устранено ]( https://github.com/uutils/coreutils/pull/8947 ) переполнение стека, приводящее к аварийному завершению при создании большого (200+) числа вложенных каталогов.

•

В утилитах stdbuf и uptime реализована поддержка платформы OpenBSD.

•

Улучшена сборка и тестирование на платформе FreeBSD.

•

Внесены общие улучшения для повышения переносимости.
Расширены возможности, устранены проблемы и добавлены недостающие опции для утилит base64, cat, chown, chsum, date, dd, du, factor, hashsum, install, ls, mkdir, od, printenv, printf, readlink, stdbuf, timeout, truncate, tsort, uptime, uudoc.

Стоит отметить [ расхождение ]( https://askubuntu.com/questions/1559396/the-new-du-command-in-lib-cargo-bin-coreutils-outputs-wrong-sizes-in-ubun ) в поведении утилиты du из наборов uutils и GNU Coreutils, всплывшее после перехода Ubuntu 25.10 на uutils. Разработчики ещё [ не решили ]( https://github.com/uutils/coreutils/issues/9202 ) трактовать ли данное расхождение как ошибку, так как с одной стороны в поведении uutils есть логика и тестовый набор GNU Coreutils не выявляет проблем, но с другой стороны несовместимости с GNU Coreutils предписано обрабатывать как ошибки и поведение Busybox соответствует GNU Coreutils.

Разное поведение наблюдается при указании в числе аргументов утилиты du нескольких каталогов в ситуации, когда некоторые из каталогов являются подкаталогами других каталогов (например, /var и /var/log). Uutils показывает фактический размер каждого отдельного каталога, а в итоговой строке выводит суммарный размер всех указанных каталогов. GNU Coreutils показывает в итоговой строке фактический размер, который указанные каталоги занимают на диске, но в раздельном списке показывает размеры каждого каталога с вычетом вложенных каталогов, из-за чего их размер получается меньше фактического. Кроме того, значения, выводимые в GNU Coreutils и Busybox, меняются в зависимости от порядка указания каталогов.

Например, при проверке размера каталогов /var/log и /var, фактический размер которых 1540 и 35495 блоков (МБ).

В GNU Coreutils будет выведено:

du -smc /var/log /var
1540 /var/log
33955 /var # меньше фактического
35495 total

du -smc /var /var/log
35495 /var # показан только /var и не показан /var/log
35495 total

В uutils:

du -smc /var/log /var
1540 /var/log
35495 /var
37034 total # больше фактического, но соответствует сумме /var и /var/log

du -smc /var /var/log
35495 /var
1540 /var/log
37034 total # больше фактического, но соответствует сумме /var и /var/log

В Busybox:

du -smc /var/log /var
1540 /var/log
33955 /var # меньше фактического
35495 total

du -smc /var /var/log
35495 /var # показан только /var и не показан /var/log
35495 total

https://www.linux.org.ru/news/opensource/18143451

Simple Viewer GL – лёгкий просмотрщик изображений.

Simple Viewer GL – это однооконное приложение. В строке статуса, которую можно отключать клавишей i, отображается базовая информация: формат, разрешение, размер в памяти, размер на диске. В режиме информации о пикселе, который включается клавишей p, отображается бабл с информацией о позиции, цвете пикселя, параметрах выделенной области.

Simple Viewer GL умеет определять тип файла по его сигнатуре (параметр -a), а не только по расширению файла. Поддерживается рекурсивный обход директории (параметр -r).

Есть возможность менять в рантайме тип фона (три базовых цвета + шахматная доска) окна или задавать кастомный цвет, что удобно при просмотре изображений с прозрачными пикселями.

( [ читать дальше... ]( https://www.linux.org.ru/news/opensource/18143858#cut ) )

Разработчики репозитория Python-пакетов PyPI (Python Package Index) внедрили дополнительный этап проверки во время входа, требующий подтверждения операции по email в случае подключения с устройства или браузера, с которого раннее не производился вход. Подтверждение требуется в дополнение к имеющейся двухфакторной аутентификации, требующей ввода одноразового кода (TOTP - Time-based One-Time Password) помимо обычных учётных данных. При использовании в качестве второго фактора аутентификации ключей на базе технологий WebAuthn или Passkeys, дополнительное подтверждение по email не требуется.

https://www.opennet.ru/opennews/art.shtml?num=64257

It was the first allegation of a crime committed in space — back in 2019. But by 2020 it had led to
charges of lying to federal authorities.

And now a former Air Force intelligence officer "has pleaded guilty to lying to a federal agent," reports CNBC, "by falsely claiming that her estranged astronaut wife illegally accessed her bank account while aboard the International Space Station for six months, prosecutors in Houston, Texas, said Friday."

The guilty plea by Summer Worden, 50, on Thursday comes more than five years after she was indicted in the space case for lying about actions by her wife, Anne McClain, a U.S. Army colonel, West Point graduate and Iraq war combat veteran, while they were in the midst of a divorce. The claim came at a time when Worden said that the couple was engaged in a custody battle over what Worden's then-6-year-old son, who had been conceived through in vitro fertilizationand carried by a surrogate...

McClain was aboard the Space Station from December 2018 through June 2019. She recently commanded the SpaceX Crew-10 crew mission to the Space Station from March this year until August.

Worden, who remains free on bond, is scheduled to be sentenced on February 12. She faces a maximum possible sentence of up to five years in prison.

[ Read more of this story ]( https://yro.slashdot.org/story/25/11/15/0547207/woman-pleads-guilty-to-lying-about-astronaut-accessing-bank-account-from-international-space-station?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

В ноябрьском бюллетене безопасности Android опубликована информация об уязвимости CVE-2025-48593 в подсистеме Bluetooth, которая затрагивает версии Android с 13 по 16. Уязвимости присвоен критический уровень опасности (9.8 из 10) так как она может привести к удалённому выполнению кода при обработке специально оформленных Bluetooth-пакетов.

https://www.opennet.ru/opennews/art.shtml?num=64255

"The International Energy Agency's latest outlook signals that oil demand could keep growing through to the middle of the century," reports CNBC, "reflecting a sharp tonal shift from the world's energy watchdog and raising further questions about the future of fossil fuels."

In its flagship World Energy Outlook, the Paris-based agency on Wednesday laid out a scenario in which demand for oil climbs to 113 million barrels per day by 2050, up 13% from 2024 levels. The IEA had previously estimated a peak in global fossil fuel demand before the end of this decade and said that, in order to reach net-zero emissions by 2050, there should be no new investments in coal, oil and gas projects... The IEA's end-of-decade peak oil forecast kick-started a long-running war of words with OPEC, an influential group of oil exporting countries, which accused the IEA of fearmongering and risking the destabilization of the global economy.

The IEA's latest forecast of increasing oil demand was outlined in its "Current Policies Scenario" — one of a number of scenarios outlined by the IEA. This one assumes no new policies or regulations beyond those already in place. The CPS was dropped five years ago amid energy market turmoil during the coronavirus pandemic, and its reintroduction follows pressure from the Trump administration... Gregory Brew, an analyst at Eurasia Group's Energy, Climate and Resources team, said the IEA's retreat on peak oil demand signified "a major shift" from the group's position over the last five years. "The justifications offered for the shift include policy changes in the U.S., where slow EV penetration indicates robust oil [consumption], but is also tied to expected increases in petrochemical and aviation fuel in East and Southeast Asia," Brew told CNBC by email. "It's unlikely the agency is adjusting based on political pressure — though there has been some of that, with the Trump administration criticizing the group's supposed bias in favor of renewable energy — and the shift reflects a broader skepticism that oil demand is set to peak any time soon," he added...

Alongside its CPS, the IEA also laid out projections under its so-called "Stated Policies Scenario" (STEPS), which reflects the prevailing direction of travel for the global energy system. In this assumption, the IEA said it expects oil demand to peak at 102 million barrels per day around 2030, before gradually declining. Global electric car sales are much stronger under this scenario compared to the CPS. The IEA said its multiple scenarios explore a range of consequences from various policy choices and should not be considered forecasts.

Thanks to Slashdot reader magzteel for sharing the news.

[ Read more of this story ]( https://hardware.slashdot.org/story/25/11/15/0352221/a-peak-oil-prediction-surprise-from-the-international-energy-agency?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Сформировано второе корректирующее обновление дистрибутива Debian 13, в которое включены накопившиеся обновления пакетов и добавлены исправления в инсталлятор. Выпуск включает 123 обновления с устранением проблем со стабильностью и 55 обновлений с устранением уязвимостей.

https://www.opennet.ru/opennews/art.shtml?num=64256

Опубликовано: Sat, 15 Nov 2025 14:05:08 GMT
Канал: Все статьи подряд / DIY или Сделай сам / Хабр

Будучи творческим человеком и техногиком, я обожаю при первой возможности апгрейдить своё оборудование. Время от времени я мониторю маркетплейсы в поисках чего-то новенького и в этот раз я наткнулся на настоящий мультитул для Embedded-разработчика — контроллер I2C/SPI/UART/JTAG в одной коробочке и всё это всего за 1.000 рублей... Конечно я не смог пройти мимо этой штучки и в рамках сегодняшней статьи хочу рассказать что оно из себя представляет и как с ним работать. Жду вас под катом! Читать далее]]>

https://habr.com/ru/companies/timeweb/articles/966104/

Опубликовано: Sat, 15 Nov 2025 12:06:13 GMT
Канал: Все статьи подряд / Программирование микроконтроллеров / Хабр

TunerPRO это бесплатный бинарный редактор прошивок. Это аналог STM32Studio.Эта программа позволит вам редактировать константы в готовом bin файле. Минуя стадию повторной пере сборки всего проекта прошивки. Можно сказать, что TunerPRO хакерская tool-а. Эта утилита связывает в едино всю информацию про переменные. Это адрес ячейки памяти в bin-аре, размерность переменной, размер параметра, формат ее хранения в памяти, имя переменной, множитель, единицу измерения, максимальное и минимальное значение. В то время как map файл дает только инфу про имя адрес в памяти и размер. Читать далее]]>

https://habr.com/ru/articles/965828/

Опубликовано: Sat, 15 Nov 2025 11:20:33 GMT
Канал: Все статьи подряд / DIY или Сделай сам / Хабр

В данной статье я хочу сделать попытку обоснования выбора реализуемой мною системы «Умный дом». Это уже третий вариант разработанного мной «Умного дома» (вообще эта тема меня заинтересовала с середины 90-х годов) Читать далее]]>

https://habr.com/ru/articles/966620/

schwit1 shares a report from the Business Times: General Motors (GM) has directed several thousand of its suppliers to scrub their supply chains of parts from China, four people familiar with the matter said, reflecting automakers' growing frustration over geopolitical disruptions to their operations. GM executives have been telling suppliers they should find alternatives to China for their raw materials and parts, with the goal of eventually moving their supply chains out of the country entirely, the people said. The automaker has set a 2027 deadline for some suppliers to dissolve their China sourcing ties, some of the sources said. GM approached some suppliers with the directive in late 2024, but the effort took on fresh urgency this past spring, during the early days of an escalating US-China trade battle, the sources said.

[ Read more of this story ]( https://tech.slashdot.org/story/25/11/15/0040214/gm-wants-parts-makers-to-pull-supply-chains-from-china?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

( [ читать дальше... ]( https://www.linux.org.ru/news/opensource/18143411#cut ) )

Опубликован очередной еженедельный отчёт о разработке KDE. Наиболее заметные изменения, развиваемые для выпуска KDE Plasma 6.6, запланированного на 12 февраля.

https://www.opennet.ru/opennews/art.shtml?num=64254

TOP10 VISITORS:

[1] 37.252.14.x point=144 web=0 up=27.4MB (43%) <--- ake (6/hr)
[2] 51.222.154.x point=0 web=22 up=6.8MB (10%)
[3] Amazon point=0 web=192 up=6.5MB (10%)
[4] PetalBot point=5 web=1028 up=6.0MB (9%) <--- PetalBot
[5] ClaudeBot point=3 web=244 up=4.8MB (7%) <--- ClaudeBot
[6] BLEXBot point=0 web=49 up=2.6MB (4%)
[7] Google point=5 web=321 up=2.4MB (3%) <--- Google
[8] TikTok point=0 web=197 up=1.3MB (2%)
[9] 217.114.158.x point=25 web=0 up=1.0MB (1%) <--- fox (1/hr)
[10] 216.244.66.x point=0 web=19 up=0.8MB (1%)

TOTAL TRAFFIC: 63MB

Опубликован экспериментальный выпуск открытой реализации Win32 API - Wine 10.19. С момента выпуска 10.18 было закрыто 34 отчёта об ошибках и внесено 439 изменений.

https://www.opennet.ru/opennews/art.shtml?num=64253

alternative_right shares a report from ScienceAlert: A thorough investigation published in May 2023 found that the inner core of the Moon is, in fact, a solid ball with a density similar to that of iron. To figure it out once and for all, [astronomer Arthur Briaud of the French National Centre for Scientific Research in France] and his colleagues collected data from space missions and lunar laser-ranging experiments to compile a profile of various lunar characteristics. These include the degree of its deformation by its gravitational interaction with Earth, the variation in its distance from Earth, and its density.

... they found that the lunar core is very similar to that of Earth â" with an outer fluid layer and a solid inner core. According to their modeling, the outer core has a radius of about 362 kilometers (225 miles), and the inner core has a radius of about 258 kilometers (160 miles). That's about 15 percent of the entire radius of the Moon. The inner core, the team found, also has a density of about 7,822 kilograms per cubic meter. That's very close to the density of iron. [...] The research has been published in Nature.

[ Read more of this story ]( https://science.slashdot.org/story/25/11/15/0037256/scientists-confirmed-what-is-inside-our-moon?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from the Washington Post: Winning the lottery isn't what brought Carrie Edwards her 15 minutes of fame. It was giving it all away. Standing alone in her kitchen one day in September, the Virginia woman was thunderstruck to discover she had won $150,000 in a Powerball drawing. As she was absorbing her windfall, she said, "I just heard as loud as you can hear God or whoever you believe in the universe just say, this is -- it's not your money." Then came a decision: She would donate it all to her three most cherished charities (source paywalled; alternative source). [...] Her journey to the lucky prize started when she walked into a 7-Eleven with a friend who wanted to buy two Powerball tickets. The jackpot for the Sept. 6 drawing was topping $1.7 billion, the second-largest amount ever. Edwards, 68, hardly ever played the lottery, but her friend was an active player who gave her two pieces of advice: Always buy a paper ticket, rather than getting them online. And the Powerball multiplier is a scam, don't do it. She ignored him on both accounts.

She created a Virginia Lottery account on her phone. Then, instead of the typical strategies of using family birthdays and lucky numbers, she went to ChatGPT -- which she had only recently started using for research -- and asked, "Do you have any winning numbers for me?" "Luck is luck," replied the chatbot. Then it gave numbers that she plugged in -- paying the extra dollar for the Power Play to multiply anything she might win. She initially thought luck wasn't on her side when she didn't win the massive jackpot. But what she didn't realize is that she'd picked the "draw two" option, meaning her numbers were reentered for the next drawing. When she got a notification on her phone that she had won, she said, she thought it was a scam, or maybe she'd won something small, like $10. Just to satisfy her curiosity, she logged into her account and saw that she had matched four of the five numbers plus the Powerball in that second drawing. It would have been a $50,000 payout, but the multiplier tripled her winnings.

[ Read more of this story ]( https://news.slashdot.org/story/25/11/15/0025246/she-used-chatgpt-to-win-the-virginia-lottery-then-donated-every-dollar?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

YouTube TV and Disney have ended their two-week carriage standoff, restoring ESPN, ABC, and other Disney networks under a new multiyear deal. Variety reports: Under the new agreement, ESPN's full lineup of sports -- including content from ESPN Unlimited -- will be made available on YouTube TV to base-plan subscribers at no additional cost by the end of 2026. In addition, access to a selection of live and on-demand programming from ESPN Unlimited will be available inside YouTube TV.

The deal also lets YouTube include the Disney+ and Hulu bundle as part of "select YouTube offerings." According to Disney, "select networks" will be included in various genre-specific packages that YouTube TV expects to launch in the future. [...] The deal supersedes their prior distribution agreement, inked in December 2021 after a two-day blackout.

[ Read more of this story ]( https://entertainment.slashdot.org/story/25/11/15/019213/youtube-tv-and-disney-reach-deal-ending-two-week-blackout-of-espn-abc?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Apple's limited-edition "iPhone Pocket" sold out almost instantly worldwide despite its $150-$230 price tag. Appleinsider reports: Longtime Apple users immediately saw the resemblance with the old iPod socks, and everyone saw the price. Apple and Japan's Issey Miyake fashion house partnered to create a limited edition iPhone Pocket, a stretched sock-like bag or shoulder strap.

There was no denying that an iPhone in this Pocket looked snuggly. There was definitely no denying that the accessory was well designed. There's also no question that it was about as goofy as the iPod Sock from back the in the day. But there was every denying of the price. The iPhone Pocket came in a short version for $150, and a longer one for $230.

For comparison, the Apple Watch SE starts at $250. As ever, though, if you liked it, if you had a use for it, and if you had the budget, there was no reason left not to buy. But if you have hesitated because of the cost, you are now out of luck. There are none left in the US.

[ Read more of this story ]( https://apple.slashdot.org/story/25/11/15/0011232/apples-230-iphone-pocket-sells-out-nearly-immediately?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

"Within the past year, stories have been posted on Slashdot about people helping North Koreans get remote IT jobs at U.S. corporations, companies knowingly assisting them, how not to hire a North Korean for a remote IT job, and how a simple question tripped up a North Korean applying for a remote IT job," writes longtime Slashdot reader smooth wombat. "The FBI is even warning companies that North Koreans working remotely can steal source code and extort money from the company -- money that goes to fund the North Korean government. Now, five more people have plead guilty to knowingly helping North Koreans infiltrate U.S. companies as remote IT workers." TechCrunch reports: The five people are accused of working as "facilitators" who helped North Koreans get jobs by providing their own real identities, or false and stolen identities of more than a dozen U.S. nationals. The facilitators also hosted company-provided laptops in their homes across the U.S. to make it look like the North Korean workers lived locally, according to the DOJ press release. These actions affected 136 U.S. companies and netted Kim Jong Un's regime $2.2 million in revenue, said the DOJ. Three of the people -- U.S. nationals Audricus Phagnasay, Jason Salazar, and Alexander Paul Travis -- each pleaded guilty to one count of wire fraud conspiracy.

Prosecutors accused the three of helping North Koreans posing as legitimate IT workers, whom they knew worked outside of the United States, to use their own identities to obtain employment, helped them remotely access their company-issued laptops set up in their homes, and also helped the North Koreans pass vetting procedures, such as drug tests. The fourth U.S. national who pleaded guilty is Erick Ntekereze Prince, who ran a company called Taggcar, which supplied to U.S. companies allegedly "certified" IT workers but whom he knew worked outside of the country and were using stolen or fake identities. Prince also hosted laptops with remote access software at several residences in Florida, and earned more than $89,000 for his work, the DOJ said.
Another participant in the scheme who pleaded guilty to one count of wire fraud conspiracy and another count of aggravated identity theft is Ukrainian national Oleksandr Didenko, who prosecutors accuse of stealing U.S. citizens' identities and selling them to North Koreans so they could get jobs at more than 40 U.S. companies. According to the press release, Didenko earned hundreds of thousands of dollars for this service. Didenko agreed to forfeit $1.4 million as part of his guilty plea. The DOJ also announced that it had frozen and seized more than $15 million in cryptocurrency stolen in 2023 by North Korean hackers from several crypto platforms.

[ Read more of this story ]( https://yro.slashdot.org/story/25/11/14/2143240/five-people-plead-quilty-to-helping-north-koreans-infiltrate-us-companies?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from The Record: Russian telecom operators have begun cutting mobile internet access for 24 hours for citizens returning to the country from abroad, in what officials say is an effort to prevent Ukrainian drones from using domestic SIM cards for navigation. "When a SIM card enters Russia from abroad, the user has to confirm that it's being used by a person -- not installed in a drone," the Digital Development Ministry said in a statement earlier this week.

Users can restore access sooner by solving a captcha or calling their operator for identification. Authorities said the temporary blackout is meant to "ensure the safety of Russian citizens" and prevent SIM cards from being embedded in "enemy drones." The new rule has led to unexpected outages for residents in border regions, whose phones can automatically connect to foreign carriers. Officials advised users to switch to manual network selection to avoid being cut off.

[ Read more of this story ]( https://tech.slashdot.org/story/25/11/14/2153236/russia-imposes-24-hour-mobile-internet-blackout-for-travelers-returning-home?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

BrianFagioli writes: Logitech has confirmed a cybersecurity breach after an intruder exploited a zero-day in a third-party software platform and copied internal data. The company says the incident did not affect its products, manufacturing or business operations, and it does not believe sensitive personal information like national ID numbers or credit card data were stored in the impacted system. The attacker still managed to pull limited information tied to employees, consumers, customers and suppliers, raising fair questions about how long the zero-day existed before being patched.

Logitech brought in outside cybersecurity firms, notified regulators and says the incident will not materially affect its financial results. The company expects its cybersecurity insurance policy to cover investigation costs and any potential legal or regulatory issues. Still, with zero-day attacks increasing across the tech world, even established hardware brands are being forced to acknowledge uncomfortable weaknesses in their internal systems.

[ Read more of this story ]( https://yro.slashdot.org/story/25/11/14/2140205/logitech-reports-data-breach-from-zero-day-software-vulnerability?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

>> теперь снова забирает :)
> но не откликается на запросы :(
> https://ii.yester.link/list.txt
> http://ii.yester.link:1110/list.txt

А теперь опять не забирает - с 11 ноября

Похоже yesterlink окончательно сгинул…

According to CNBC, JPMorgan Chase has secured deals ensuring it will get paid by the fintech firms responsible for nearly all the data requests made by third-party apps connected to customer bank accounts. From the report: The bank has signed updated contracts with the fintech middlemen that make up more than 95% of the data pulls on its systems, including Plaid, Yodlee, Morningstar and Akoya, according to JPMorgan spokesman Drew Pusateri. "We've come to agreements that will make the open banking ecosystem safer and more sustainable and allow customers to continue reliably and securely accessing their favorite financial products," Pusateri said in a statement. "The free market worked."

The milestone is the latest twist in a long-running dispute between traditional banks and the fintech industry over access to customer accounts. For years, middlemen like Plaid paid nothing to tap bank systems when a customer wanted to use a fintech app like Robinhood to draw funds or check balances. [...] After weeks of negotiations between JPMorgan and the middlemen, the bank agreed to lower pricing than it originally proposed, and the fintech middlemen won concessions regarding the servicing of data requests, according to people with knowledge of the talks.

Fintech firms preferred the certainty of locking in data-sharing rates because it is unclear whether the current CFPB, which is in the process of revising the open-banking rule, will favor banks or fintech companies, according to a venture capital investor who asked for anonymity to discuss his portfolio companies. The bank and the fintech firms declined to disclose details about their contracts, including how much the middlemen agreed to pay and how long the deals are in force.

[ Read more of this story ]( https://news.slashdot.org/story/25/11/14/2135239/jpmorgan-chase-wins-fight-with-fintech-firms-over-fees-to-access-customer-data?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from Ars Technica: On Thursday evening, OpenAI CEO Sam Altman posted on X that ChatGPT has started following custom instructions to avoid using em dashes. "Small-but-happy win: If you tell ChatGPT not to use em-dashes in your custom instructions, it finally does what it's supposed to do!" he wrote.

The post, which came two days after the release of OpenAI's new GPT-5.1 AI model, received mixed reactions from users who have struggled for years with getting the chatbot to follow specific formatting preferences. And this "small win" raises a very big question: If the world's most valuable AI company has struggled with controlling something as simple as punctuation use after years of trying, perhaps what people call artificial general intelligence (AGI) is farther off than some in the industry claim. "The fact that it's been 3 years since ChatGPT first launched, and you've only just now managed to make it obey this simple requirement, says a lot about how little control you have over it, and your understanding of its inner workings," wrote one X user in a reply. "Not a good sign for the future."

[ Read more of this story ]( https://slashdot.org/story/25/11/14/2129248/sam-altman-celebrates-chatgpt-finally-following-em-dash-formatting-rules?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Группой депутатов во главе с первым зампредом комитета по информационной политике, информационным технологиям и связи Антоном Горелкиным внесен в Госдуму законопроект, устанавливающий административную ответственность за авторизацию в интернете на сайтах/приложениях/информационных системах не предусмотренными законом способами.

Сами требования к авторизации пользователей вступили в силу с 01 декабря 2023 года, однако за их неисполнение до настоящего времени не предусмотрено какой-либо ответственности.

( [ читать дальше... ]( https://www.linux.org.ru/news/internet/18142916#cut ) )