Agregátor RSS

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity flaw impacting BerriAI LiteLLM to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-42271 (CVSS score: 8.7), is a command injection vulnerability that could allow any authenticated user to run arbitrary commands on theRavie Lakshmananhttp://www.blogger.com/profile/[email protected]

Nad západním obzorem září dvě nejjasnější planety Venuše a Jupiter • Obě planety budou v úterý 9. června velmi blízko od sebe • Pozorovat se vyplatí okolo 21:30

Na Computexu prezentoval Gigabyte základní desku s přelepenými nápisy, o které ani na výslovný dotaz neprozradil víc než že jde o „základní desku“. Novinka se socketem LGA-1954 překvapila napájením…

Apple vydal nejnovější operační systémy iOS 27, iPadOS 27, watchOS 27, macOS 27 a visionOS 27 • Kromě číslovky letos sjednocují i hlavní funkce • Důraz je kladen na rychlost, zabezpečení a Apple Intelligence

Byla vydána nová verze 2.4.68 svobodného multiplatformního webového serveru Apache (httpd). Řešeno je mimo jiné 13 zranitelností.

There's another likely North Korean-linked scam hitting developers and their employers, while snarfing up credentials and cryptocurrency - and this one doesn't even involve embedding IT workers at high-profile tech giants. A previously unseen phishing crew, suspected to have DPRK ties, sent more than 250 emails to people working in almost 100 organizations, mostly based in the US, over six weeks in April and May. According to security sleuths, it is yet another digital-heist attempt designed to steal cryptocurrency wallets and developers’ credentials. Proofpoint threat researchers spotted this campaign and tracked the digital thievery as UNK_DeadDrop. Like earlier phishing expeditions from the Norks, including the Contagious Interview campaign, this one uses developer recruitment or code review lures to target victims, primarily in technology, education, business services, and financial services, and ultimately steal credentials and cryptocurrency. In another common tactic seen with DPRK-linked credential-stealing activities, the lures attempt to send victims to attacker-controlled GitHub repositories hosting malicious scripts that execute cross-platform malware across macOS, Linux, and Windows machines. “However, there are several differences between the activity sets, such as the shift in social engineering from arranging fake interviews to unsolicited job offer or code review approaches as well as the move from delivery platforms such as LinkedIn to email,” researchers Saher Naumaan and Carlos Rubio said in a Monday blog, citing other differences between UNK_DeadDrop and Contagious Interview. “Based on the use of email for initial access, the high volume of emails, industrialization and scale of repository creation, a new self-contained payload, and distinct infrastructure from previous Proofpoint observations of Contagious Interview campaigns, Proofpoint Threat Research continues to track UNK_DeadDrop activity as an independent cluster,” the researchers wrote. Full-stack engineer wanted The attacks begin with an email that looks like it originated from a real company, with job offers for developer roles including “Full-Stack Engineer” or “Agent Lead Developer” positions. Proofpoint caught the crooks spoofing a handful of companies to send these emails from attacker-owned sender domains including: Ondo Finance: a decentralized finance (DeFi) platform Empower Pharmacy: a pharmaceutical company NXLog: a log collection and centralization tool OnePlan: a strategic portfolio and work management platform Hypen Connect: a Web3 and AI Talent Agency Valon: a mortgage service provider Nourish: a telehealth company The emails contain links to GitHub repos disguised as coding assignments or cryptocurrency-related projects - part of the phony job application process. All of the emails instructed the target to clone the repository and open it in a code editor like VS Code or Cursor. Proofpoint’s report lists all 10 repositories, all focused on four themes - cryptocurrency platforms, exploit archives, Foundry testing, and AI payments - and all hosted by different GitHub accounts, so be sure to check out the vendor’s list. In May, the attackers switched tactics and began sending victims requests for peer reviews on open-source projects, with a potential job offer based on the fixes. These emails purported to come from cryptocurrency trading or prediction companies, including Pulsynk and Trixauvex. Another UNK_DeadDrop campaign in late May targeted finance and technology companies, requesting recipients to test an ERC-4626 vault in Foundry, a toolkit for Ethereum and smart contract development. In all of these instances, when the victim opens what they believe to be a legit repository folder in an integrated development environment, a pre-configured task silently executes and triggers a platform-specific loader that decodes embedded payloads on whatever system the developer uses, working across Linux, macOS, and Windows machines. The loader installs a malicious VS Code extension (VSIX) masquerading as a legitimate Google service. Every time the user opens the code editor on macOS or Linux, the VSIX extension activates, and relaunches the infection-chain if it’s not already running. The persistence mechanism doesn’t work on Windows machines, however. After installing VSIX, the infection chain looks different, depending on what platform the target uses. The Linux and macOS attacks use a native Go binary that connects to the command-and-control (C2) infrastructure as a persistent remote access trojan (RAT). The Windows chain, however, runs a Node.js pipeline inside the editor's Electron process. Both use the same C2 infrastructure and exfiltration endpoints. Linux, macOS backdoors The Linux and macOS binaries are based on the open-source Overlord C2 framework - this is a legitimate red-team tool that automates covert infrastructure setup and management, and orchestrates post-exploitation activities. This, of course, also makes it a very handy tool for attackers. For this campaign, the North Koreans added three custom modules: browserlogin (Chrome and Firefox credential theft), companywallet (crypto-wallet stealer and exfiltration), and cleanup (anti-forensic removal of workspace artifacts). On macOS, Overlord first collects wallet extension data, browser profile artifacts, and standalone wallet directories, compressing them into a ZIP and uploading them to the C2 server. Five minutes later, the malware moves on to credential theft, using a second embedded Mach-O binary that displays a fake system dialogue and prompts the user to enter their password. The Overlord process validates the credentials, and assuming they are legit, the malware modifies keychain access-control lists across Chrome, Brave, Edge, Opera, Vivaldi, Arc, Yandex, and other Chromium-based web browsers, before extracting Safe Storage keys and sending all of the stolen goods - collected credentials, Safe Storage keys, and keychain data - to the attacker-controlled server. The backdoor also re-launches itself as root, using the stolen password. The Linux malware follows a similar pattern, first scooping up wallet-related data and sending that via ZIP to the C2 server before moving on to credential theft. It, however, uses Zenity, a standard GTK dialog tool, to create a prompt and collect victim credentials. This backdoor attempts to steal passwords from GNOME Keyring by spawning Python 3 processes for each browser, and ultimately re-launches itself as root using a swiped password. Windows attacks Windows attacks run entirely as JavaScript inside the editor's Electron process, which appears as Code.exe in Task Manager. The malware first steals wallet info, targeting 35 wallet extension IDs (MetaMask, Phantom, Rabby, Keplr, and others), 18 standalone wallet applications (Exodus, Electrum, Ledger Live, Monero, Solana CLI, Bitcoin, and others), and Firefox profiles. Next, it installs Python and executes a stealer (detect_malware.py) for each browser profile that collects a ton of credentials across Chromium and Firefox browsers, steals cookies from Chrome/Edge/Brave and uses COM Elevation Moniker to access credentials across these browsers protected by App-Bound Encryption. It also attempts to read locked databases using five cascade methods, and ultimately uploads all the secrets to the same endpoint before terminating. “UNK_DeadDrop activity suggests North Korea-aligned operations targeting developers for financial gain are maturing and evolving,” Naumaan and Rubio wrote. “The shift from active social engineering over social media platforms to conduct fake interviews to large campaigns of recruitment-themed phishing emails distributing links to malicious repositories could indicate an actor industrializing and scaling operations.” ®

New variants of the NFCShare Android malware are being distributed as fake updates for legitimate banking apps hosted on GitHub. [...]

Od smluv uzavřených na dálku budete moci odstoupit snadněji a na pár kliknutí. Týkat se to bude jak nákupů z e-shopu, tak třeba vybraných online sjednaných finančních produktů.

Novinka převážně investiční slovenské banky láká na nový spořicí účet v korunách. Úrokové sazby spoření se zatím drží a dokonce spíše mírně rostou.

Ve čtvrtek 4. června proběhl další ročník tradiční konference IPv6, která mapuje situaci kolem přechodu na nový internetový protokol a představuje nejnovější trendy. Za deset let jsme se z nuly dostali na 50 %.

Nejprve se budeme zabývat definicí a voláním různých variant funkcí, včetně jejich curryfikace. Dále si ukážeme, jak jsou zpracovávány chyby a na závěr se ve stručnosti seznámíme s definicí uživatelských rekurzivních datových typů.

Nová generace grafických karet zůstává v nedohlednu. Výrobci neočekávají, ani že by mohly být vydané za rok - nejoptimističtější vyhlídka zatím vypadá na druhé pololetí 2027…

…aneb První objev fosilních angiogenních struktur u krále dravých dinosaurů

Ani druhá generace nástrojů pro cílené zásahy do dědičné informace lidských embryí nepřináší bezpečnou cestu k odstraňování genetických defektů. Přesto, anebo právě proto, je kolem nové studie mezinárodního týmu vědců s českým zastoupením takový poprask.

Na řadě míst světa je hmyz oblíbenou pochoutkou. Obyvatel severní části Eurasie se to ale netýká. Analýzy genomů ze zubního kamene dávných lidí prozradily, že živili hmyzem v porovnání s lidmi z teplejších oblastí jen příležitostně. Také mají méně účinné enzymy chitinázy, které hrají klíčovou roli v trávení hmyzu.

A planetary defense system would blunt solar storms with hundreds of tons of gas. Emerging heavy-lift rockets could deploy it in under two months.

Extreme space weather could wreak havoc on the satellites, communications networks, and electrical grids that modern society depends on. Researchers have now proposed an ambitious space-based planetary defense system that would weaken solar storms before they hit Earth.

The sun regularly emits massive pulses of radiation, energetic particles, and magnetic fields that interact with the Earth’s own magnetic field. This activity is the source of auroras like the northern lights, but the most violent eruptions can cause geomagnetic storms with the power to disrupt GPS and radio communications and fry electrical equipment.

While the impact of most of these events is limited, there is precedent for more catastrophic outcomes. In 1859, the Carrington Event, the most powerful solar storm ever recorded, knocked out telegraph lines across North America and Europe. In today’s highly electrified world, a similar event could cause between $2.4 and $3.4 trillion in damage to the power grid alone.

Now, researchers at Boston University and the University of Michigan have come up with a potential solution. In a paper published in Space Weather, they propose a constellation of satellites called StormWall that would release hundreds of tons of gas into orbit to blunt the force of an incoming solar storm.

“It’s as if you could install an airbag in the magnetosphere,” co-author Daniel Welling, a space physicist from the University of Michigan, told Science.

Solar storms have the potential to sow chaos because they weaken the magnetic shield protecting Earth from space radiation. Powerful enough storms disrupt the Earth’s magnetic field and cause it to reconnect to the sun’s, allowing energy from the solar storm to pour into the magnetosphere.

The Earth already has a natural defense against this—a doughnut-shaped reservoir of ionized gas, or plasma, sitting just above the atmosphere. When the planet’s magnetic field is disturbed, a plume of this plasma flows toward the sun and slows the rate at which the magnetic fields reconnect.

StormWall would turbocharge this process by releasing massive amounts of artificial plasma into the outer atmosphere. The researchers sketch out a system involving a constellation of satellites orbiting about 22,000 miles from Earth. The satellites would carry canisters of lithium, barium, or sodium gases to be ejected when a large solar storm is inbound. The gases, rapidly ionized by solar radiation, would add to the planet’s natural plasma shield.

Based on simulations, the researchers estimate that releasing around 400 tons of gas could reduce the strength of a major geomagnetic storm by over 50 percent. Crucially, the intervention would be swift and reversible. The plasma cloud could be in position by the time a storm hits, and it would dissipate just a few hours later.

Launching this much material into orbit would be a big undertaking, but the researchers say it could be within reach of emerging heavy-lift vehicles like SpaceX’s Starship or China’s Long March 9 rocket. They calculate that six launches could deploy the full constellation in under two months.

Outside experts have been broadly positive. Allison Jaynes, a space physicist at the University of Iowa, told Science the idea was “highly innovative and appears to be quite feasible in the near term.”

But getting the satellites into orbit is only part of the puzzle. Accurate and timely space weather forecasts would also be a prerequisite. And gaining international buy-in for a system that would drastically alter the near-Earth space environment, even if only temporarily, could be challenging.

The researchers flag potential side effects that need more study, including the generation of electromagnetic waves as the released material ionizes. Still, given the devastation a Carrington-sized event could unleash on the modern world, the potential downsides may be worth the risk.

The post Orbital Airbag Could Shield Earth From Devastating Solar Storms appeared first on SingularityHub.

SoFi Hong Kong is warning that it suffered a data breach after hackers gained access to a database at a third-party vendor containing customer information. [...]

There were several key components to emerge from Apple’s developer conference Monday as the company sought to reassure users (and investors) that it has met the existential challenge represented by AI. Aside from a serious focus on Siri AI and embedded Apple Intelligence across its varied platforms, officials also hailed a slew of performance/usability tweaks, described new child safety tools, gave macOS 27 a real name, “Golden Gate” — and offered a standing ovation in farewell to outgoing CEO Tim Cook.

Before the Worldwide Developer Conference (WWDC), analysts seemed optimistic about the company’s plans, most of which had already leaked. Analysts didn’t expect Apple to announce anything that would transform the AI industry (it didn’t), but they did hope the company would introduce tools to keep it competitive with rivals (it did). That’s assuming all the demos at the event were live, actual feature demos, rather than faked set-ups as seen before.

Hard, hard work

Apple’s teams have evidently worked incredibly hard to come this far, and execs did introduce truly impressive new AI features focused on what customers and developers actually need. The company also played to its strengths, particularly around vision intelligence; private-by-design (large language models) LLMs; highly useful contextual awareness; and Siri AI, which works as an app and lets you carry on conversational quests securely across all your Apple devices.

As anticipated, Apple also introduced APIs developers will be able to use to provide new AI features in their apps.

Among the many individual tools most of us can expect to use this fall, are:

• Siri AI, which can help users search for information across their messages, emails, photos, and more; answer questions about virtually any topic; and take action in apps. 
• Apple Passwords, which now automatically fix weak and compromised passwords with agentic AI.
• Spatial reframing, which lets users recompose a photo after it’s been taken by dragging to shift perspective, as if repositioning the camera in the original scene.
• A new Extend Tool, which expands the edges of an image to add breathing room, fix a crooked horizon, or change aspect ratio without losing the original subject.
• A Notify Me tool that monitors web pages for changes such as price drops or restocks and sends a notification when something changes.
• Photorealistic image generation, which supports the creation of high-quality photo-realistic images via a new generative model running on Private Cloud Compute.
• One-tap contextual suggestions in Messages, which surface actions such as creating reminders and notes, or finding relevant photos based on conversation context.
• And Describe a Shortcut, which means users can describe an automation they want in plain language and Shortcuts assembles the required steps automatically.

All about you, not AI

Apple did not seek to introduce AI features for their own sake; instead, it remains deeply focused on how to make its devices more useful to customers. As Craig Federighi, Apple’s senior vice president of software engineering, said: 

“Truly helpful AI must be centered on our users’ needs, deeply integrated into the products they rely on every day, grounded in personal context, and built with privacy at every step. That is our vision for Apple Intelligence. With useful features for browsing the web, expressing creativity, editing photos, and so much more, today marks a big step forward on our journey to integrate powerful AI into the core of our platforms and make our products even more personal and useful.”

Apple is not Gemini

Apple confirmed that it worked with Google Gemini to create some of the AI models highlighted today. This led some analysts before the event to say: “For Apple, the bull case is that a working Siri reframes it as an AI winner; the bear case is that paying a rival for core intelligence caps the premium investors assign to the stock.”

Perhaps they need not worry, as what we now seem to have is a far more solid base from which to continue to develop AI services and tools that compete against others in the space. Not only that, but Apple is not using rebranded Gemini — it simply worked with Google to build its own models, as Federighi insisted. In meetings at the show, Apple explained the full extent of the work it did with Google, stressing that none of the new features should be considered white label versions of Google’s LLMs. 

(Even Apple’s new search tools are based on its own search database, rather than anybody else’s. And when advanced searches are shared with Google-hosted Nvidia processors, Apple puts privacy protection in place.)

In the end, the most important consideration — for customers and developers — is that Apple seems to have succeeded in bringing dozens and dozens of powerful new on-device AI tools to its customers, giving it a firmer, more impressive peer position in the business. (It’s also true that investors were disappointed that the new AI features won’t be made available in Europe or China due to regulatory challenges, putting developers in both nations at a disadvantage.) Developers elsewhere will be able to explore Apple’s Foundation Models and its new Core AI APIs to their heart’s content. 

First reactions to Apple’s news

While Apple’s stock value dipped as investors sold on the news and invested into the speculation, I do think Apple successfully turned this corner — though it will need to continue to invest heavily in AI across its platforms. The work is far from over.

“It is great to see Apple continue to pursue a vision of AI that leverages local systems, preserves privacy, and integrates with third party tools,” Ken Case, CEO of the Omni Group, told me. “A lot of our work around the Apple Foundation Models and automation, App Intents, and adopting Swift look to be fruitful investments, but it’s clear there’s more to do starting this summer.”

Creative Strategies President and Principal Analyst Carolina Milanesi explained why it matters Apple is deploying these capabilities across its ecosystem, as it gives the company a unique market position. “Where Apple Intelligence is today is different than what Claude or ChatGPT are because is it really embedded in the devices, and we need to remember that Apple sells devices,” she said.

Apple did also note that the new Siri AI will be available in beta this year. “Investors wanted it in September. That means the real version is likely early to mid 2027,” said Gene Munster at Deepwater Asset Management. “Funny that the stock actually ticked up 0.5% on the “beta later this year” update given [that] while it’s later than what they wanted, it is at least a date that investors can focus on.”

It is also true that what Apple did achieve this year at WWDC is to offer up a set of new AI features that investors already see as having significant value.

You can follow me on social media! Join me on BlueSky,  LinkedIn, Mastodon and The Core.

At WWDC 26, Apple announced an Apple Intelligence-powered feature that can automatically fix weak and compromised passwords. This works in Safari, and it's rolling out with iOS 27. [...]

Apple na své vývojářské konferenci WWDC26 (Worldwide Developers Conference, keynote) představil řadu novinek. Vypíchnout lze novou generaci Apple Intelligence a zbrusu novou Siri, která dostala název Siri AI. Kvůli Aktu o digitálních trzích (DMA) však funkce Siri AI nebudou v systémech iOS 27 a iPadOS 27 k dispozici uživatelům v Evropské unii.