The UK's data-protecting Information Commissioner's Office has issued a warning about what it calls a worrying trend, reports the BBC: "students hacking their own school and college IT systems for fun or as part of dares." Since 2022, the the Information Commissioner's Office (ICO) has investigated 215 hacks and breaches originating from inside education settings and says 57% were carried out by children. Other breaches are thought to come from staff, third party IT suppliers and other organisations with access. According to the new data, almost a third of the breaches involved students illegally logging into staff computer systems by guessing passwords or stealing details from teachers. In one incident, a seven-year-old was involved in a data breach and subsequently referred to the National Crime Agency's Cyber Choices programme to help them understand the seriousness of their actions... In another incident three Year 11 students aged 15 or 16 unlawfully accessed school databases containing the personal information of more than 1,400 students. The pupils used hacking tools downloaded from the internet to break passwords and security protocols. When questioned, they said they were interested in cyber security and wanted to test their skills and knowledge. Another example the ICO gave is of a student illegally logging into their college's databases with a teachers' details to change or delete personal information belonging to more than 9,000 staff, students and applicants. The system stored personal information such as name and home address, school records, health data, safeguarding and pastoral logs and emergency contacts. Schools are facing an increasing number of cyber attacks, with 44% of schools reporting an attack or breach in the last year according the government's most recent Cyber Security Breaches Survey. "Youth cyber crime culture is a growing threat linked to English-speaking teen gangs," the article argues, noting breaches at major companies to suggest it's a kind of "gateway" crime. The ICO's principal cyber specialist tells the BBC that "What starts out as a dare, a challenge, a bit of fun in a school setting can ultimately lead to children taking part in damaging attacks on organisations or critical infrastructure."

Read more of this story at Slashdot.

RestOfWorld.org reports on "a global crisis nobody anticipated when governments started subsidizing electric vehicles..." "EVs can lose almost half their driving distance when temperatures drop, and the billions spent on improving technology have failed to fix this fundamental limitation." In January, Seattle-based Recurrent, a company that tests and analyzes EVs, found an average range loss of 20% in extreme cold... Lithium-ion batteries rely on chemical reactions that slow dramatically in cold weather. When temperatures plunge, the electrolyte thickens, ions move sluggishly, and charging becomes not just inefficient but potentially dangerous. Charging in cold weather has been identified as a primary cause of thermal acceleration, which can lead to fires... The failure pattern repeats globally wherever cold weather meets inadequate infrastructure. Manufacturers, too, have acknowledged the problem. Chinese EV maker BYD's user manual, for instance, advises drivers to charge indoors, with the heating on. That advice is useless for farmers parking in open courtyards. In fact, research across 293 Chinese cities "found that many drivers in colder regions buy EVs only as supplementary vehicles," according to the article, "while still relying on gasoline-powered cars during winter." The article also tells the story of an apple grower chilly Kashmir, India who discovered that his Chinese three-wheeler lost 60% of its 10-hour charge overnight. This made it impossible to begin the 56-kilometer (35-mile) trip on a route with no charging stations — and prevented him from selling his produce while it was fresh (to earn the highest prices). And the problem affects the entire region: Desperate drivers have formed WhatsApp groups, such as "EV Apple Transporters" and "Battery Help Kashmir," sharing increasingly absurd workarounds. Some have wrapped batteries in quilts; others have hauled power packs weighing 90 kilograms (over 200 pounds) into their homes for the night. One driver parked his battery in the living room. "The blankets caused overheating on the road; water bottles leaked into the circuits," [orchard owner] Sajad Ahmad said. "We became mechanics, engineers, and fools all at once." EVs are also not considered cost-efficient. "Diesel vans are expensive, but they can do four or five trips a day," Mohammad Yaseen, a driver based in Shopian, told Rest of World. "With EVs, one half-trip and you're stuck." Norway, where winter temperatures average minus 7 degrees Celsius (19 degrees Fahrenheit), achieved 89% EV market share with its comprehensive infrastructure. It offers more than 200 models for year-round usage. "The ability to preheat batteries upon fast charging in winter is by far the most important improvement we have seen in the past five years," Christina Bu, secretary-general of the Norwegian EV Association, told Rest of World. "These features are standard in Norway's mature market, but remain absent from basic models exported to developing countries."

Read more of this story at Slashdot.

The newest weekly test release of Linux 6.17 is now available as we work toward the stable kernel release around the end of September...

Last year Amazon's robotaxi service Zoox held a training session for 20 Las Vegas firefighters, police officers, and other first responders, reports the Washington Post, calling it "a new ritual for emergency workers across the country, as autonomous vehicles begin to spread beyond the handful of cities that served as initial testing grounds..." Questions that came up included: What can first responders do if the nearly 6,000-pound vehicle is blocking a roadway? (Better to pull, not push.) What happens if the vehicle loses its connectivity? (It's designed to pull over.) And can first responders manually shut off the vehicle? (Not yet, but Zoox is working on it....) The vehicles' operators claim they drive more safely than humans, but anything can happen on public roads, and first responders need to know how to intervene if a robotaxi is caught in a collision that traps passengers, catches fire or gets caught doing something that demands a traffic stop... Alphabet's Waymo, which has more than 2,000 vehicles completing hundreds of thousands of paid trips each week across San Francisco and Silicon Valley, Los Angeles, Phoenix, Austin and Atlanta, has trained more than 20,000 first responders in how to interact with its vehicles, the company said. Tesla didn't respond to a request for comment on how many first responders the company has trained, but a representative from the Austin Police Department confirmed that fire, police and transit workers were trained on the company's Robotaxi before the company launched commercial service in June. Tesla, Waymo and Zoox say their vehicles can detect the lights and sirens of emergency vehicles and automatically attempt to pull over. Waymo says its vehicles can interpret first responders' hand signals.... The first responders appeared excited about the potential of the company's artificial intelligence technology to ferry visitors up and down the Vegas Strip without concern that a driver might be inebriated. They were also wary of problems that might unfold: Autonomous vehicles are electric, and when electric vehicles catch fire, they're difficult to extinguish, the firefighters said. The first responders also worried that a secondary air bag deployment could injure an emergency responder, a common concern with conventional vehicles. And if a police officer wanted to view the footage a Zoox vehicle captured on the road, would the company be willing to share it? Turning over footage would require a subpoena, a Zoox official responded. But "those who've been through the trainings and have seen large-scale commercial rollouts say it's difficult to anticipate all the potential issues in a specific market," the article points out. Darius Luttropp, former deputy chief of operations for the San Francisco Fire Department, told the Post last year that Waymo vehicles had blocked city firefighters from leaving and entering firehouses, and also crashed into their equipment. Lt. William White of the Austin Police Department told the Post that more than once Waymo vehicles failed to recognize an officer on a motorcycle with their police lights activated.

Read more of this story at Slashdot.

"There has never been a successful, widespread malware attack against iPhone," notes Apple's security blog, pointing out that "The only system-level iOS attacks we observe in the wild come from mercenary spyware... historically associated with state actors and [using] exploit chains that cost millions of dollars..." But they're doing something about it — this week announcing a new always-on memory-safety protection in the iPhone 17 lineup and iPhone Air (including the kernel and over 70 userland processes)... Known mercenary spyware chains used against iOS share a common denominator with those targeting Windows and Android: they exploit memory safety vulnerabilities, which are interchangeable, powerful, and exist throughout the industry... For Apple, improving memory safety is a broad effort that includes developing with safe languages and deploying mitigations at scale... Our analysis found that, when employed as a real-time defensive measure, the original Arm Memory Tagging Extension (MTE) release exhibited weaknesses that were unacceptable to us, and we worked with Arm to address these shortcomings in the new Enhanced Memory Tagging Extension (EMTE) specification, released in 2022. More importantly, our analysis showed that while EMTE had great potential as specified, a rigorous implementation with deep hardware and operating system support could be a breakthrough that produces an extraordinary new security mechanism.... Ultimately, we determined that to deliver truly best-in-class memory safety, we would carry out a massive engineering effort spanning all of Apple — including updates to Apple silicon, our operating systems, and our software frameworks. This effort, together with our highly successful secure memory allocator work, would transform MTE from a helpful debugging tool into a groundbreaking new security feature. Today we're introducing the culmination of this effort: Memory Integrity Enforcement (MIE), our comprehensive memory safety defense for Apple platforms. Memory Integrity Enforcement is built on the robust foundation provided by our secure memory allocators, coupled with Enhanced Memory Tagging Extension (EMTE) in synchronous mode, and supported by extensive Tag Confidentiality Enforcement policies. MIE is built right into Apple hardware and software in all models of iPhone 17 and iPhone Air and offers unparalleled, always-on memory safety protection for our key attack surfaces including the kernel, while maintaining the power and performance that users expect. In addition, we're making EMTE available to all Apple developers in Xcode as part of the new Enhanced Security feature that we released earlier this year during WWDC... Based on our evaluations pitting Memory Integrity Enforcement against exceptionally sophisticated mercenary spyware attacks from the last three years, we believe MIE will make exploit chains significantly more expensive and difficult to develop and maintain, disrupt many of the most effective exploitation techniques from the last 25 years, and completely redefine the landscape of memory safety for Apple products. Because of how dramatically it reduces an attacker's ability to exploit memory corruption vulnerabilities on our devices, we believe Memory Integrity Enforcement represents the most significant upgrade to memory safety in the history of consumer operating systems.

Read more of this story at Slashdot.

The oldest person living in Japan is 114 years old, reports the BBC. But "The number of people in Japan aged 100 or older has risen to a record high of nearly 100,000, its government has announced." Setting a new record for the 55th year in a row, the number of centenarians in Japan was 99,763 as of September, the health ministry said on Friday. Of that total, women accounted for an overwhelming 88%... Health minister Takamaro Fukoka congratulated the 87,784 female and 11,979 male centenarians on their longevity and expressed his "gratitude for their many years of contributions to the development of society".... The higher life expectancy is mainly attributed to fewer deaths from heart disease and common forms of cancer, in particular breast and prostate cancer. Japan has low rates of obesity, a major contributing factor to both diseases, thanks to diets low in red meat and high in fish and vegetables. The obesity rate is particularly low for women, which could go some way to explaining why Japanese women have a much higher life expectancy than their male counterparts... But it's not just diet. Japanese people tend to stay active into later life, walking and using public transport more than elderly people in the US and Europe... However, several studies have cast doubt on the validity of global centenarian numbers, suggesting data errors, unreliable public records and missing birth certificates may account for elevated figures. A government audit of family registries in Japan in 2010 uncovered more than 230,000 people listed as being aged 100 or older who were unaccounted for, some having in fact died decades previously. The miscounting was attributed to patchy record-keeping and suspicions that some families may have tried to hide the deaths of elderly relatives in order to claim their pensions.

Read more of this story at Slashdot.

"When residents of Equatorial Guinea's Annobón island wrote to the government in Malabo in July last year complaining about the dynamite explosions by a Moroccan construction company, they didn't expect the swift end to their internet access..." reports the Associated Press. "Residents and activists said the company's dynamite explosions in open quarries and construction activities have been polluting their farmlands and water supply..." Dozens of the signatories and residents were imprisoned for nearly a year, while internet access to the small island has been cut off since then, according to several residents and rights groups. Local residents interviewed by The Associated Press left the island in the past months, citing fear for their lives and the difficulty of life without internet. Banking services have shut down, hospital services for emergencies have been brought to a halt and residents say they rack up phone bills they can't afford because cellphone calls are the only way to communicate... The company's work on the island continues. Residents hoped to pressure authorities to improve the situation with their complaint in July last year. Instead, [the country's president] then deployed a repressive tactic now common in Africa to cut off access to internet to clamp down on protests and criticisms.

Read more of this story at Slashdot.

America's Federal Trade Commission is investigating whether Amazon and Google misled advertisers placing ads on their websites, reports Bloomberg, and specifically whether the two companies "properly disclosed the terms and pricing for ads." The FTC is seeking details about Amazon's auctions and whether it disclosed "reserve pricing" for some search ads — price floors that advertisers must meet before they can buy an ad, the people said. Separately, the FTC is examining practices by Google, including its internal pricing process and whether it increased the cost of ads in ways that weren't disclosed to advertisers, the people said... According to one of the people, the FTC's latest investigation emerged from its earlier antitrust case. In that complaint, the agency alleges that Amazon litters its marketplace with irrelevant results for search queries, making it harder for shoppers to find what they are looking for and more expensive for sellers to use the platform. The practice effectively forces sellers to buy ads to make their product appear in response to consumer searches.

Read more of this story at Slashdot.

Many coral reefs "have now turned ghostly white," reports CBS News — and "a major culprit is climate change." SFGate adds that more than 50% of the world's coral reefs have been lost, mostly over the past 10 years, according to coral reef scientist Rebecca Albright at the California Academy of Sciences. "If changes aren't made soon, 90% to 99% of the coral reefs that are remaining could be deteriorated by 2050, Albright said..." But CBS News notes that Albright's lab is the first in America to successfully spawn coral to regenerate the reefs: The lab is mastering the art and science of creating baby corals, and the scientists have brought their expertise into the wild. The location: the second-largest reef in the world, known as the Mesoamerican Reef, stretching some 700 miles along the coasts of Mexico, Belize, Guatemala, and Honduras... Armed with test tubes, the scientists quickly dove into the water and collected the tiny packets of gametes. Back on land, the eggs were fertilized, incubated, and then brought back into the wild. "Then we planted over 3,000 baby corals back to the reef," explained Albright. The baby corals are now two months old. The Roatan staff will dive in a few months to see how many survived. Scientists are worried because bleaching events "are becoming more common," notes SFGate, "happening more frequently and affecting more parts of the world... The most current event was confirmed on April 15, 2024, and is still ongoing, impacting approximately 84% of the world's coral reefs as of August 31. "It has been documented in at least 83 countries and territories."

Read more of this story at Slashdot.

TechCrunch reports: Thanks to a pledge to unbundle its corporate messaging app Teams from its productivity suites, Microsoft has managed to slip unscathed through a major antitrust investigation by the European Commission that could have resulted in massive fines for the tech giant. The Commission on Friday okayed Microsoft's concessions to address the EU's competition concerns over the company including Teams along with the rest of its Office productivity suite for free, concluding a multi-year investigation that was sparked by complaints from rival office messaging app Slack in 2020. Microsoft has promised that for the next seven years, it will provide Microsoft 365 and Office 365 without Teams at a lower price and will let customers choose whether they want to pay more to add the collaboration app to the suites... Microsoft is voluntarily offering some versions of both its productivity suites without Teams at a 50% lower price compared to versions that bundle the app, worldwide. And Microsoft dodged punitive measures and a big fine, as the Commission's penalties for breaching competition rules can reach up to 10% of annual global revenue — which, considering the tech giant last year recorded $245 billion in revenue, would have been truckloads of money. The article adds one more interesting detail. "The Commission has also managed to get Microsoft to agree to open up its APIs to enable interoperability for key features between its suite and third-party messaging and collaboration tools, as well as let them export their data out of teams for the next five years..." The Commission's official announcement says this will "open up the market for other providers of communication and collaboration tools in Europe." And Microsoft will also allow customers with long-term licenses the option of switching to a suite switch without Teams...

Read more of this story at Slashdot.

Il est donc temps, de vous parler un peu plus dans le détail du vélo OT05 Pro par Onesport que l'on a déjà déballé et monté. Un vélo qui arrive bien protégé, qui est facile et rapide à monter. Ce vélo, qui exploite des roues de 27.5 pouces et un cadre aluminium, accuse quelque 29 kilos sur la balance. […]

Lire la suite

One of the worlds in the TRAPPIST-1 system, a mere 40 light-years away, just might be clad in a life-supporting atmosphere," reports ScienceAlert. "In exciting new JWST observations, the Earth-sized exoplanet TRAPPIST-1e shows hints of a gaseous envelope similar to our own, one that could facilitate liquid water on the surface." Although the detection is ambiguous and needs extensive follow-up to find out what the deal is, it's the closest astronomers have come yet in their quest to find a second Earth... [T]he first step is finding exoplanets that are the right distance from their host star, occupying a zone where water neither freezes under extreme cold nor evaporates under extreme heat. Announced in 2016, the discovery of the TRAPPIST-1 system was immediately exciting for this reason. The red dwarf star hosts seven exoplanets that have a rocky composition (as opposed to gas or ice giants), several of which are bang in the star's habitable, liquid water zone... Red dwarf stars are also much more active than Sun-like stars, rampant with flare activity that, scientists have speculated, may have stripped any planetary atmospheres in the vicinity. Closer inspections of TRAPPIST-1d, one of the other worlds in the star's habitable zone, have turned up no trace of an atmosphere. But TRAPPIST-1e is a little more comfortably located, at a slightly greater distance from the star... [T]he spectrum is consistent with an atmosphere rich in molecular nitrogen, with trace amounts of carbon dioxide and methane. This is pretty tantalizing. Earth's atmosphere is roughly 78 percent molecular nitrogen. If the results can be validated, TRAPPIST-1e might just be the most Earth-like exoplanet discovered to date. That is not a small if, though. Luckily, more JWST observations are in the pipeline, and the researchers should be able to validate or rule out an atmosphere very soon. After analyzing four transits of TRAPPIST-1e across TRAPPIST-1, "We are seeing two possible explanations," says astrophysicist Ryan MacDonald of the University of St Andrews in the UK. "The most exciting possibility is that TRAPPIST-1e could have a so-called secondary atmosphere containing heavy gases like nitrogen. "But our initial observations cannot yet rule out a bare rock with no atmosphere..." Astrophysicist Ana Glidden of MIT led the second team interpreting the results, and says "We are really still in the early stages of learning what kind of amazing science we can do with Webb. It's incredible to measure the details of starlight around Earth-sized planets 40 light-years away and learn what it might be like there, if life could be possible there." "We're in a new age of exploration that's very exciting to be a part of."

Read more of this story at Slashdot.

Pour les processeurs cette semaine, nous avons le droit à des belles baisses, mais plutôt chez les bleus que chez les rouges. On commence avec le 14700K qui baisse de 19 euros cette semaine, il est presque de nouveau à son prix le plus bas. On continue avec le 19400K qui recule de 4 eptits euros. Ensuite, le 265K perd 7 euros et le 285K est à son prix le plus bas jamais constaté, à savoir 578 euros, il perd 32 euros cette semaine. […]

Lire la suite

Et c'est reparti pour une deuxième saison de montage et de watercooling en tout genre. Comme l'année dernière, nous ne parlons pas forcément de mode, mais surtout de beaux montages. Cette année, nous n'en ferons plus qu'un par semaine, le rythme fut parfois délicat à tenir. Comme toujours, n'hésitez pas à envoyer vos montages à Lucas. Ce dimanche, nous vous proposons de découvrir l'Oasis V2 par AK Mod : […]

Lire la suite

"Facebook users who filed a claim in parent company Meta's $725 million settlement related to the Cambridge Analytica scandal may soon get a payment," reports CNN, since "on August 27, the court ordered that settlement benefits be distributed." It's been over two years since Facebook users were able to file claims in Meta's December 2022 settlement. The class-action lawsuit began after the social media giant said in 2018 that as many as 87 million Facebook users' private information was obtained by data analytics firm Cambridge Analytica... Meta was accused of allowing Cambridge Analytica and other third parties, including developers, advertisers and data brokers, to access private information about Facebook users. The social media giant was also accused of insufficiently managing third-party access to and use of user data. Meta did not admit wrongdoing as part of the settlement. Following the Cambridge Analytica incident, Facebook restricted third-party access to user data and "developed more robust tools" to inform users about how data is collected and shared, according to court documents... Any US Facebook user who had an active account between May 24, 2007, and December 22, 2022, was eligible to file a claim, even if they have deleted the account. The deadline to file was August 25, 2023. Almost 29 million claims were filed and about 18 million were validated as of September 2023, according to Meta's response in a 2024 legal document... Payments will either be sent directly to the bank account provided on the claim form, or via PayPal, a virtual prepaid Mastercard, Venmo or Zelle. Unsuccessful or expired payments will receive a "second chance email" to update the payment method.

Read more of this story at Slashdot.

It's unfortunate the number of significant Linux engineering losses at Intel this year. Beyond the staffing reductions throughout the company, seeing the loss of Linux engineering talent and many of their open-source contributors outside of kernel space too has been especially hard hitting to see. Intel for years has been very well regarded for their prolific open-source contributions and typically leading early hardware enablement within the Linux kernel, compiler toolchains, and related components. There's another hit to the Intel Linux team with one of their USB4/Thunderbolt maintainers departing the company...

The input subsystem fixes for the week were sent out on Saturday ahead of the Linux 6.17-rc6 kernel due out later today. Notable with this batch of "fixes" is enabling support for the high-end FLYDIGI APEX 5 gaming controller...

Adding to the list of feature caveats around the different Qualcomm Snapdragon X Elite laptops and the varying Linux state is video acceleration support. But patches were posted this week by a Linaro engineer enabling hardware accelerated video playback for two X Elite laptop models...

The Samsung Exynos 7870 Octa SoC released back in 2016 on a 14nm process and powered by eight Arm Cortex-53 cores and a Mali T830 GPU. Finally now for late 2025 there is open-source display driver happenings going mainline for this aging SoC...

They stole a woman's phone in Barcelona. Unfortunately, her husband was security consultant/penetration tester Martin Vigo, reports Spain's newspaper El Pais. "His weeks-long investigation coincided with a massive two-year police operation between 2022 and 2024 in six countries where 17 people were arrested: Spain, Argentina, Colombia, Chile, Ecuador, and Peru...." In Vigo's case, the phone was locked and the "Find my iPhone" feature was activated... Once stolen, the phones are likely wrapped in aluminum foil to prevent the GPS from tracking their movements. "Then they go to a safe house where they are gathered together and shipped on pallets outside of Spain, to Morocco or China." This international step is vital to prevent the phone from being blocked if the thieves try to use it again. Carriers in several European countries share lists of the IMEIs (unique numbers for each device) of stolen devices so they can't be used. But Morocco, for example, doesn't share these lists. There, the phone can be reconnected... With hundreds or thousands of stored phones, another path begins: "They try to get the PIN," says Vigo. Why the PIN? Because with the PIN, you can change the Apple password and access the device's content. The gang had created a system to send thousands of text messages like the one Vigo received. To know who to target with the bait message, the police say, "the organization performed social profiling of the victims, since, in many cases, in addition to the phone, they also had the victim's personal belongings, such as their ID." This is how they obtained the phone numbers to send the malicious SMS... Each victim received a unique link, and the server knew which victim clicked it... With the first click, the attackers would redirect the user to a website they believed was credible, such as Apple's real iCloud site... [T]he next day you receive another text message, and you click on it, more confidently. However, that link no longer redirects you to the real Apple website, but to a flawless copy created by the criminals: that's where they ask for your PIN, and without thinking, full of hope, you enter it... "The PIN is more powerful than your fingerprint or face. With it, you can delete the victim's biometric information and add your own to access banking apps that are validated this way," says Vigo. Apple Wallet asks you to re-authenticate, and then everything is accessible... In the press release on the case, the police explained that the gang allegedly used a total of 5,300 fake websites and illegally unlocked around 1.3 million high-end devices, about 30,000 of them in Spain. Vigo tells El Pais that if the PIN doesn't unlock the device, the criminal gang then sends it to China to be "dismantled and then sent back to Europe for resale. The devices are increasingly valuable because they have more advanced chips, better cameras, and more expensive materials." To render the phone untraceable in China, "they change certain components and the IMEI. It requires a certain level of sophistication: opening the phone, changing the chip..."

Read more of this story at Slashdot.