Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror

Submission + - The CVE database almost wasgone. Now 11 months left (theregister.com)

gavron writes: The CVE list contains over 25 years of security vulnerabilities. Stephen J Vaughn-Nichols explains why it's important to ALL countries and ALL ITSEC people. It also almost just went away when rabid DOGGIES tried to cut it.

It also only has 11 months left to live based on funding, so FDJT may try and cripple it again. It helps EVERYONE and only hurts blackhat hackers. Unfortunately nobody in Congress understands anything technical (except for Ron Widen) and they're too busy dismantling their own least favorite part (CDA Sec 230) to worry about this.

Meanwhile the US FBI, UK, and NZ equivs say we should have back doors in encryption.

CVEs are important. This should not be defunded. Call up the office of that idiot in your district and tell their PA that.

Submission + - Hackers can now bypass Linux security thanks to terrifying new Curing rootkit (betanews.com)

BrianFagioli writes: ARMO, the company behind Kubescape, has uncovered what could be one of the biggest blind spots in Linux security today. The company has released a working rootkit called âoeCuringâ that uses io_uring, a feature built into the Linux kernel, to stealthily perform malicious activities without being caught by many of the detection solutions currently on the market.

At the heart of the issue is the heavy reliance on monitoring system calls, which has become the go-to method for many cybersecurity vendors. The problem? Attackers can completely sidestep these monitored calls by leaning on io_uring instead. This clever method could let bad actors quietly make network connections or tamper with files without triggering the usual alarms.

Comment Re: I Have Some Questions (Score 1) 24

I have seen a few stories by AI - seems like they can start in a decent style but then they falls into some incoherent blurb repeating themselves or come up with story parts out of order.

The reason they exist is that those stories only take a few minutes to create and almost every sale will be an immediate profit, even just 10 books. People buying wouldn't necessarily understand that it's an AI generated story.

Submission + - Youtube now home for so many scammy ads

NewtonsLaw writes: YouTube is very quick to demonetize or delete videos it considers to be a scam or deceptive. In fact it will also delete such videos or even entire channels simply because its AI has sometimes erroneously decided something is a scam or deceptive and this can happen within seconds of upload.

However, it's time YouTube itself was held to account because an increasing number of the ads it shows are outright scams and, even after many people have reported those ads, they continue to run — defrauding an unknown number of visitors to the site.

This hypocrisy is outrageous but now more than half the ads I see on YouTube are scams for things such as fake laser welding torches, worthless EMF stickers for phones, drones that don't have the advertised features, devices that allegedly use Starlink to provide limitless *free* internet from a one-time purchase with no monthly or data fees, etc, etc.

Surely, at some stage, YouTube has to be held accountable for effectively being a willing accomplice in such scams and opting to continue taking ad revenues from these scammers rather than taking down fraudulent ads when they're reported.

Submission + - Q-CTRL unveils jam-proof positioning System that's 50X more accurate than GPS (interestingengineering.com)

schwit1 writes: Q-CTRL developed a new system called “Ironstone Opal,” which uses quantum sensors to navigate without GPS. It’s passive (meaning it doesn’t emit signals that could be detected or jammed) and highly accurate.

Instead of relying on satellites, Q-CTRL’s system can read the Earth’s magnetic field, which varies slightly depending on location (like a magnetic fingerprint or map). The system can determine where you are by measuring these variations using magnetometers.

Slashdot Top Deals

% "Every morning, I get up and look through the 'Forbes' list of the richest people in America. If I'm not there, I go to work" -- Robert Orben

Working...