Agregátor RSS

InfluxDB OSS 2.7.11 - Operator Token Privilege Escalation

jQuery 3.3.1 - Prototype Pollution & XSS Exploit

Jasmin Ransomware - Arbitrary File Download (Authenticated)

UNA CMS 14.0.0-RC - PHP Object Injection

Nagios Xi 5.6.6 - Authenticated Remote Code Execution (RCE)

WordPress User Registration & Membership Plugin 4.1.1 - Unauthenticated Privilege Escalation

Git (Wikipedie), distribuovaný systém správy verzí vytvořený Linusem Torvaldsem, původně pro vývoj Linuxu, má 20 let. Vývoj Gitu započal 7. dubna 2005 prvním commitem. Bylo potřeba nahradit proprietární BitKeeper.

A tiny sensor to control devices with your thoughts—no surgery required.

Brain-computer interfaces are typically unwieldy, which makes using them on the move a non-starter. A new neural interface small enough to be attached between the user’s hair follicles keeps working even when the user is in motion.

At present, brain-computer interfaces are typically used as research devices designed to study neural activity or, occasionally, as a way for patients with severe paralysis to control wheelchairs or computers. But there are hopes they could one day become a fast and intuitive way for people to interact with personal devices through thoughts alone.

Invasive approaches that implant electrodes deep in the brain provide the highest fidelity connections, but regulators are unlikely to approve them for all but the most pressing medical problems in the near term.

Some researchers are focused on developing non-invasive technologies like electroencephalography (EEG), which uses electrodes stuck to the outside of the head to pick up brain signals. But getting a good readout requires stable contact between the electrodes and scalp, which is tricky to maintain, particularly if the user is moving around during normal daily activities.

Now, researchers have developed a neural interface just 0.04 inches across that uses microneedles to painlessly attach to the wearer’s scalp for a highly stable connection. To demonstrate the device’s potential, the team used it to control an augmented reality video call. The interface worked for up to 12 hours after implantation as the wearer stood, walked, and ran.

“This advance provides a pathway for the practical and continuous use of BCI [brain-computer interfaces] in everyday life, enhancing the integration of digital and physical environments,” the researchers write in a paper describing the device in the Proceedings of the National Academy of Sciences.

To create their device, the researchers first molded resin into a tiny cross shape with five microscale spikes sticking out of the surface. They then coated these microneedles with a conductive polymer called PEDOT so they could pick up electrical signals from the brain.

Besides firmly attaching the sensor to the head, the needles also penetrate an outer layer of the scalp made up of dead skin cells that acts as an insulator. This allows the sensor to record directly from the epidermis, which the researchers say enables much better signal acquisition.

The researchers also attached a winding, snake-like copper wire to the sensor and connected it to the larger wires that carry the recorded signal away to be processed. This means that even if the larger wires are jostled as the subject moves, it doesn’t disturb the sensor. A module decodes the brain readings and then transmits them wirelessly to an external device.

To show off the device’s capabilities, they used it to control video calls conducted on a pair of Nreal augmented reality glasses. They relied on “steady-state visual evoked potentials,” in which the brain responds in a predictable way when the user looks at an image flickering at a specific frequency.

By placing different flickering graphics next to different buttons in the video call interface, the user could answer, reject, and end calls by simply looking at the relevant button. The system correctly detected their intention in real-time with an average accuracy of 96.4 percent as the user carried out a variety of movements. They also showed that the recording quality remained stable over 12 hours, while a gold-standard EEG electrode fell off over the same period.

The device was fabricated using a method that would allow mass production, the researchers say, and could also have applications as a wearable health monitor. If they can scale the approach up, an always-on connection between our brains and personal devices may not be so far away.

The post This Brain-Computer Interface Is So Small It Fits Between the Follicles of Your Hair appeared first on SingularityHub.

Kdo žádá o dávku, když je dítě ve střídavé péči? Co musí rozvedení rodiče doložit úřadu práce? S kalkulačkou přídavku na dítěte si navíc rovnou spočítáte, zda na dávku dosáhnete.

Výživné 300 000 Kč měsíčně? Ano, a to i zpětně. Manželka žádala více než 800 000 Kč za měsíc, ale nedostala nic. Takový požadavek však nelze odmítnout jen proto, že má sama svého majetku dost.

Ventoy umožňuje vytvořit bootovací flash disk, ze kterého je možné nabootovat několik různých systémů výběrem z menu. Ukážeme si, jak ho použít s živou linuxovou distribucí Sysrescue určenou k záchraně jiných systémů.

Na předchozí dvojici článků o rozšíření instrukční sady SSE2 dnes navážeme. Popíšeme si zbývající instrukce ze sady SSE2, které slouží pro operace prokládání prvků, extrakci či naopak spojování prvků vektorů a podobně.

Vidinu záchrany zakázkové výroby Intelu pomocí společného podniku s TSMC analytici Citigroup nesdílejí. Intel by podle nich měl snahy, na kterých proinvestoval desítky miliard dolarů, konečně vzdát…

Romulus, Remus a Khaleesi nejsou vzkříšení pravlci. Jsou to lehce „zpravlkovatělí“ vlci s genetickým mejkapem, vytvořeným rekordními 20 lokálními editacemi vlčího genomu. Stejně ale představují ohromný úspěch. Dokazují, že technologie de-extinkce funguje, a že už v podstatě máme pohromadě vše potřebné vzkříšení vyhynulých druhů. Teď už je to jenom otázkou času.

EncryptHub, a notorious threat actor linked to breaches at 618 organizations, is believed to have reported two Windows zero-day vulnerabilities to Microsoft, revealing a conflicted figure straddling the line between cybercrime and security research. [...]

Mercurial (Wikipedie), software pro SCM (Source Code Management), byl vydán v nové major verzi 7.0. Přehled novinek v poznámkách k vydání.

Byla vydána (𝕏) březnová aktualizace aneb nová verze 1.99 editoru zdrojových kódů Visual Studio Code (Wikipedie). Přehled novinek i s náhledy a videi v poznámkách k vydání. Ve verzi 1.99 vyšlo také VSCodium, tj. komunitní sestavení Visual Studia Code bez telemetrie a licenčních podmínek Microsoftu.

But this mystery isn't over yet, Unit 42 opines

That massive GitHub supply chain attack that spilled secrets from countless projects? It traces back to a stolen token from a SpotBugs workflow - exposed way back in November, months earlier than previously suspected.…

Microsoft announced today that, based on customer feedback, it will indefinitely delay removing driver synchronization in Windows Server Update Services (WSUS). [...]

Spain's police arrested six individuals behind a large-scale cryptocurrency investment scam that used AI tools to generate deepfake ads featuring popular public figures to lure people. [...]