Can YouTube capture the hours people spending watching "traditional" TV? YouTube's CEO recently said its viewership on TV sets has "surpassed mobile and is now the primary device for YouTube viewing in the U.S.," writes The Hollywood Reporter. And YouTube is shelling out big money to stay on top: It's come a long way since the 19-second "me at the zoo" video was uploaded in April 2005. Now, per a KPMG report released Sept. 23, YouTube is second only to Comcast in terms of annual content spend, inclusive of payments to creators and media companies, paying out as much as Netflix and Paramount combined, $32 billion... The only question is what genres it will take over next, and how quickly it will do so. From talk shows to scripted dramas to, yes, live sports, there are signs that the platform's ambitions will collide with the traditional TV business sooner rather than later... YouTube has slowly, then all at once, become the de facto home for what had been late night, not only for the shows on linear TV, but for an emerging crop of new talent born on the platform. As it happens, late night itself transformed YouTube when the Saturday Night Live skit "Lazy Sunday" went viral 20 years ago on the platform, which had only been live for a few months... As consumer preferences collide with a burgeoning ecosystem of video podcasts (YouTube now claims more than 1 billion podcast users monthly), the world of late night, and for that matter TV talk shows more generally, increasingly revolves around the platform. One current late night producer says that almost every A-list booking now includes some sort of sketch or bit that they think will play well on YouTube, but booking those guests in the first place has become less of a sure thing. A veteran Hollywood publicist says that for many of their clients, they are now recommending that YouTube podcasts or shows become the first stop, or at least a major stop, on press tours... Nielsen has been tracking the streaming platforms that consumers watch on their TV screens ever since it launched what it calls The Gauge in 2021. But over the past year, YouTube's domination of The Gauge has unnerved executives at some competitors. The most recent Gauge report showed that YouTube was by far the most watched video platform, holding 13.1 percent share. Netflix, in second place, was at 8.7 percent. The article suggests YouTube's last challenge may be "scripted" entertainment — where their business model is different than Netflix or HBO. "On YouTube, it is up to the creator to finance and produce their content, and while the platform regularly releases new tools to help them (including AI-enabled tech that suggests video ideas and can create short background videos for use in Shorts), scripted entertainment is a particularly tricky challenge, requiring writers, directors, sets, costumes, lighting, editing, special effects and other production requirements that may go beyond the typical creator-led show."

Read more of this story at Slashdot.

Long-time Slashdot reader schwit1 shares this article from Interesting Engineering: Bill Gates-backed TerraPower's innovative Natrium reactor project in Wyoming has cleared a critical federal regulatory hurdle. The US Nuclear Regulatory Commission (NRC) has successfully completed its final Environmental Impact Statement (EIS) for the project, known as Kemmerer Unit 1, and found no adverse impacts that would block its construction. The commission officially recommended that a construction permit be issued to TerraPower subsidiary USO for the facility in Lincoln County. This announcement marks a significant milestone, making the Natrium project the first-ever advanced commercial nuclear power plant in the country to successfully complete this rigorous environmental review process... The first-of-a-kind design utilizes an 840 MW (thermal) pool-type reactor connected to a molten salt-based energy storage system. This storage technology is the plant's most unique feature. It is designed to keep the base output steady, ensuring constant reliability, but it also allows the plant to function like a massive battery. The system can store heat and boost the plant's output to 500 MWe when demand peaks, allowing it to ramp up power quickly to support the grid. TerraPower says it is the only advanced reactor design with this unique capability. The Natrium plant is strategically designed to replace electricity generation capacity following the planned retirement of existing coal-fired facilities in the region. While the regulatory process for the nuclear components continues, construction on the non-nuclear portions of the site already began in June 2024. When completed, the Natrium plant is poised to be the first utility-scale advanced nuclear power plant in the United States. The next step for the construction permit application is a final safety evaluation, which is anticipated by December 31, 2025, according to announcement from TerraPower, which notes that the project is being developed through a public-private partnership with the U.S. Energy Department. "When completed, the Natrium plant will be the first utility-scale advanced nuclear power plant in the United States."

Read more of this story at Slashdot.

Has AI just become an easy excuse for firms looking to downsize, asks CNBC: Fabian Stephany, assistant professor of AI and work at the Oxford Internet Institute, said there might be more to job cuts than meets the eye. Previously there may have been some stigma attached to using AI, but now companies are "scapegoating" the technology to take the fall for challenging business moves such as layoffs. "I'm really skeptical whether the layoffs that we see currently are really due to true efficiency gains. It's rather really a projection into AI in the sense of 'We can use AI to make good excuses,'" Stephany said in an interview with CNBC. Companies can essentially position themselves at the frontier of AI technology to appear innovative and competitive, and simultaneously conceal the real reasons for layoffs, according to Stephany... Some companies that flourished during the pandemic "significantly overhired" and the recent layoffs might just be a "market clearance...." One founder, Jean-Christophe Bouglé even said in a popular LinkedIn post that AI adoption is at a "much slower pace" than is being claimed and in large corporations "there's not much happening" with AI projects even being rolled back due to cost or security concerns. "At the same time there are announcements of big layoff plans 'because of AI.' It looks like a big excuse, in a context where the economy in many countries is slowing down..." The Budget Lab, a non-partisan policy research center at Yale University, released a report on Wednesday which showed that U.S. labor has actually been little disrupted by AI automation since the release of ChatGPT in 2022... Additionally, New York Fed economists released research in early September which showed that AI use amongst firms "do not point to significant reductions in employment" across the services and manufacturing industry in the New York-Northern New Jersey region.

Read more of this story at Slashdot.

"Around tables cluttered with dice, maps and character sheets, players are doing far more than playing," writes Phys.org. It's what sociologists call serious leisure — "a hobby that demands skill, commitment and personal fulfillment," according to an associate professor/program director for Florida International University's Rehabilitation and Recreational Therapy Program: To understand what makes D&D more than just a pastime, [associate professor Emily Messina] studies how games like this promote identity-building and connection... Beyond personal expression, Messina says the social and emotional benefits of D&D reflect the very traits that make serious leisure valuable: the sense of identity, the relationships built through shared experiences and the continued connection with the same group of people over time... The game can also provide structure and purpose for people managing mental illness who might not be able to hold a full-time job because of their symptoms. The game gives them structure versus filling their day with binge streaming... Activities such as D&D can be used by young children as a reward structure or with older adults, such as retirees, to help provide a sense of purpose and daily rhythm. "Post retirement is one of the most dangerous points in an adult's life," she said. "They lose that sense of structure and possibly their social connection." Building structure through leisure pursuits after retirement has been shown to help maintain physical fitness, social interaction, cognitive processing and attention span and decrease depression. "The idea of structure and reward with desired pursuit can work for all ages," Messina said. The research was published in Leisure Studies.

Read more of this story at Slashdot.

Data centers were typically "hulking, chilly buildings lined with stacks of computing gear and bundles of wiring," writes the Washington Post. But "AI experts say that the hubs for computers that power AI are different from the data centers that deliver your Netflix movies and Uber rides. They use a different mix of computer chips, cost a lot more and need a lot more energy. "The question is whether it's necessary and illuminating to rebrand AI-specialized data centers, or if calling them 'AI factories' is just marketing hogwash." The AI computer chip company Nvidia seems to have originated the use of "AI factories." CEO Jensen Huang has said that the term is apt because similar to industrial factories, AI factories take in raw materials to produce a product... The term is spreading. Sam Altman, CEO of ChatGPT parent company OpenAI, recently said that he wants a "factory" to regularly produce more building blocks for AI. Crusoe, a start-up that's erecting a mammoth "Stargate" data center in Texas, calls itself the "AI factory company." The prime minister of Bulgaria recently touted an "AI factory" in his country... Alex Hanna, director of research at the Distributed AI Research Institute and co-author the book, "The AI Con," had a more pessimistic view of the term "AI factories." She said that it's a way to deflect the negative connotations of data centers. Some people and politicians blame power-hungry computing hubs for driving up residential electric bills, spewing pollution, draining drinking water and producing few permanent jobs.

Read more of this story at Slashdot.

Reason.com explores the fortunes of Aurora Innovation, the first company to put heavy-duty commercial self-driving trucks on public roads (and hopes to expand routes to El Paso, Texas, and Phoenix by the end of the year): An obscure federal rule is slowing the self-driving revolution. When trucks break down, operators are required to place reflective warning cones and road flares around the truck to warn other motorists. The regulations areexacting: Within 10 minutes of stopping, three warning signals must be set in specific locations around the truck. Auroraaskedthe federal Department of Transportation (DOT) to allow warning beacons to be fixed to the truck itself — and activated when a truck becomes disabled. The warning beacons would face both forward and backward, would be more visibleâthan cones (particularly at night), and wouldn't burn out like road flares. Drivers of nonautonomous vehicles could also benefit from that rule change, as they would no longer have to walk into traffic to place the required safety signals. In December 2024, however, the Transportation Department denied Aurora's request for an exemption to the existing rules, even though regulatorsadmittedin theFederal Registerthat no evidence indicated the truck-mounted beacons would be less safe. Such a study is now underway, but it's unclear how long it will take to draw any conclusions. The article notes that Aurora has now filed a lawsuit in federal court that seeks to overturn the Transportation Department's denial... Thanks to long-time Slashdot reader schwit1 for sharing the article.

Read more of this story at Slashdot.

Debian Project Leader Andreas Tille announced today that their "FTP Master" team is being disbanded and instead establishing the Debian Archive Operations Team "Archive Team" and DFSG, Licensing and New Packages Team "DFSG Team" in its place...

"Japan's new HTV-X cargo spacecraft launched on its first-ever mission to the International Space Station on Saturday," reports Space.com: The robotic HTV-X lifted off atop an H3 rocket from Japan's Tanegashima Space Center at 8 p.m. EDT (0000 GMT and 9 a.m local Japan time on October 26). It is expected to arrive at the station for its capture and berthing on Wednesday (Oct. 29) at about 11:50 a.m. EDT (1550 GMT)... The HTV-X's potential uses also extend beyond the ISS, according to JAXA. The agency envisions it aiding "post-ISS human space activities in low Earth orbit" as well as possibly flying cargo to Gateway, the space station NASA may build in lunar orbit as part of its Artemis program. HTV-X's debut increases the stable of ISS cargo craft by one-third. The currently operational freighters are Russia's Progress vehicle and Cygnus and Dragon, spacecraft built by the American companies Northrop Grumman and SpaceX, respectively. Only Dragon is reusable; the others (including HTV-X) are designed to burn up in Earth's atmosphere when their missions are over.

Read more of this story at Slashdot.

Bracelet connecté Xiaomi Smart Band 10 – boîtier aluminium – écran AMOLED 1.72″ très lumineux 1500 nits – notifications – suivi de + de 150 activités sportives – grande autonomie de 21 jours – recharge rapide – suivi de santé – suivi de Sommeil – compatible iOS & Android – résistance à l’eau 5 ATM – bracelet interchangeable – 16 g – Dispo à 39.89€ en aluminium rose et 41.99€ en aluminium brossé.

Voir l’offre sur Amazon

Vidéoprojecteur ETOE Whale Pro – Android TV 11 – 1080p – 1500 lumens ANSI – Décodage 4K – DRM WideVine L1 – mise au point automatique et correction trapézoïdale automatique – 2 haut-parleurs stéréo 10 W – entrée HDMI 2.1 – 1 USB – télécommande –  Wi-Fi6 et Bluetooth 5.1 dispo à 299€ avec le code NNNFRETWP – Stock Pologne et livraison gratuite.

Voir l’offre chez Geekbuying

 

Ordinateur portable Lenovo IdeaPad Slim 3 14AMN8 – écran 14″ IPS 1920 x 1080  60 Hz – AMD Ryzen 5 7520U – 16 Go LPDDR5-5500 – SSD M.2 2242 512 Go NVMe PCIe 4.0 x2 – 2 USB 3.1 Type-A – 1 USB 3.2 Type-C – HDMI 1.4b – lecteur de cartes SDXC – jack audio combo 3.5 mm – Wi-Fi6 et Bluetooth 5.2 – webcam – 7 heures d’autonomie – Adaptateur 65 w – Windows 11 – 1.37 Kg – 32.43 x 21.38 x 1.79 cm – Dispo à 479.99€ à la Fnac et chez Darty

Voir l’offre sur FNAC ou DARTY

 

Vélo électrique Touroll MA2 – moteur central 250 W, batterie 36 V 13 Ah, pneus 27,5 pouces, vitesse maximale 25 km/h, autonomie maximale 100 km, frein à disque hydraulique, fourche à suspension avec blocage, transmission Shimano 7 vitesses dispo à 769€ avec le code NNNFRTMA2 stock Pologne et livraison gratuite.

Voir l’offre chez Geekbuying

Ordinateur portable Lenovo Yoga Pro 7 14 – écran 14,5″ OLED 2880 x 1800 120 Hz 100 % DCI-P3  400 nits – AMD Ryzen AI 9 365 – 32 Go LPDDR5x-7500 – SSD M.2 2242 1 To NVMe PCIe 4.0 x4 – 1 USB 3.2 Gen 2 Type-A – 1 USB4- 2 USB 3.2 Gen2 Type-C PD3.0 & DP1.4 – HDMI 2.1 – jack audio combo 3.5 mm – Wi-Fi6E et Bluetooth 5.3 – webcam + IR – 8 heures d’autonomie – Adaptateur 100 w – Windows 11 – 1.59 Kg – 32.55 x 22.65 x 1.56 cm. Dispo chez Lenovo à 1199€ avec livraison gratuite.

Voir l’offre chez Lenovo

 

Déshumidificateur HUMILABS OL12-BD023F – 12L/Jour, Réservoir 2L, Minuterie 24h, 3 Modes, Dégivrage Automatique, Écran Tactile LED & Indicateurs d’Humidité, Faible Bruit Dispo à 105€ avec le code NNNFROL12 Livraison gratuite et stock EU

Voir l’offre chez Geekbuying

 

Chargeurs UGREEN en promo chez Amazon :

• UGREEN Nexode 500W Station de Charge, Chargeur USB C Rapide 6 Ports PD 3.1 240W à 189.99€ (-24%)
• UGREEN Uno 65W 3 Ports Chargeur USB C Rapide GaNFast en forme de Robot à 35.99€ (-10%)
• UGREEN Nexode 100W Chargeur USB C Rapide 4 Ports GaN à 39.99€ (-28%)
• UGREEN Nexode 65W Chargeur USB C Rapide 3 Ports GaN à 24.99€ (-29%)
• UGREEN Nexode 100W 5 Ports Chargeur USB C Rapide Tech GaNInfinity à 47.99€ (-20%)
• UGREEN Nexode 200W 6 Ports Chargeur USB C Rapide Bureau GaN II 100W 65W à 88.71€ (-33%)

Console de jeu ANBERNIC RG557 – Android 14 –  12 Go LPDDR5X – 256 Go UFS4.0 – Ecran 5.48″ AMOLED – Wi-Fi6E et Bluetooth 5.3 blanche dispo à 229€ avec le code NNNABRG57 stock Pologne et livraison gratuite 

Voir l’offre chez Geekbuying

Petit hub USB Type-C de voyage SABRENT HB-TC5P – 5 en 1 – adaptateur USB 3.0 Type C vers HDMI 2.0 4K 60Hz – Power Delivery 100W – 2 ports USB 2.0 pour connecter clavier et souris –  1 USB 3.0 Type-A pour stockage – parfait pour augmenter les possibilités d’un portable ou d’une tablette mais aussi suppléer un dock plus encombrant pour un Steam Deck ou autre. Dispo à 13.99€.

Voir l’offre chez Amazon

Les bons plans du dimanche (26/10/2025) © MiniMachines.net. 2025

The talented FFmpeg developers continue to be quite innovative with their performance optimizations and other features for this widely-used, open-source multimedia library. The latest addition to FFmpeg this weekend is introducing Vulkan accelerated video decoding for Apple ProRes content...

Following the initial VFS changes last year for supporting block sizes larger than the kernel's page size along with the initial XFS file-system patches, Btrfs recently landed its support for block sizes greater than the page size. Now EXT4 is preparing to join the party too for allowing larger block sizes...

As part of their Project Battlematrix effort, Intel has been working on enhancing their Linux graphics driver support for multi-device usage scenarios with wanting to support up to eight Intel Arc Pro graphics cards per system to help with AI LLMs and other larger use-cases. The latest code posted from Intel engineers is their initial implementation of multi-device Shared Virtual Memory (SVM) support...

Derek Clark who has been leading the efforts around Lenovo Legion gaming drivers for Linux and ensuring good support for the Lenovo Legion Go handheld on Linux sent out a new Linux patch series this weekend...

On passe aux prix des processeurs AMD et Intel cette semaine. Chez les bleus, nous avons le 14600K qui baisse de 9 euros, le 14700K qui perd 4 euros, le 14900K qui prend 2 euros, le 245K qui baisse de 2 euros, le 265K qui fait + 4 euros et enfin le 285K qui fait + 2 euros. Chez AMD, le 7600X fait + 3 euros, le 7900X prend 6 euros, le 7800X3D augmente de 14 euros, le 9700X grimpe de 5 euros, le 9900X fait + 4 euros et enfin le 9950X3D prend 22 euros cette semaine. […]

Lire la suite

Et c'est reparti pour une deuxième saison de montage et de watercooling en tout genre. Comme l'année dernière, nous ne parlons pas forcément de mode, mais surtout de beaux montages. Cette année, nous n'en ferons plus qu'un par semaine, le rythme fut parfois délicat à tenir. Comme toujours, n'hésitez pas à envoyer vos montages à Lucas. Ce dimanche, nous vous proposons de découvrir la HAVN X MetallicAcid par Mettalicacid Customs PCs : […]

Lire la suite

25 years ago today on Slashdot... Hemos linked to a site called Joystick101 describing the crowd camping out to buy the limited number of just-released PlayStation 2 consoles (and games). "500,000 lucky members of the American gaming public are sneaking a few minutes of playing Madden 2001, Tekken, or Ridge Racer V before school or work..." wrote Joystick101. That same day CmdrTaco posted reports PS2s were selling for over $1,000 on eBay. And then Timothy updated that post to note someone saw one selling for $5,000. But there was a third PS2 link posted on October 26, 2000... Hemos wrote a post titled "The PS2 — A Betamax In the Making?" — linking to an article by Mark Pesce (co-inventor of VRML and, in 1993, an Apple consulting engineer). "Microsoft promises Xbox will deliver ten times the performance of the PS2," Pesce wrote, noting Microsoft had partnered with Intel and "upstart video-chip developer Nvidia": The strangest thing about this battle of giants is that Microsoft has become a champion of open standards, encouraging developers to write Xbox titles without requiring them to pay any licensing fees. In comparison, Sony charges a minimum of $25,000 for access to the documentation and technology of the PlayStation2, plus a hefty license fee on every game sold. In the video-game industry, the Big Three — Sony, Nintendo, and Sega — sell the hardware at a loss (the PS2 costs nearly the $300 it will retail for) and recover their investment in the stiff licensing fees paid by game developers for the "key" that allows their software to work on Sony's platform... Having committed an astounding $500 million to market the Xbox next Christmas, it's clear that Microsoft doesn't mind taking a short-term loss to ensure an eventual win. If Sony's not careful, this could turn into "Betamax, the Sequel." Twenty years ago, Sony tightly controlled the titles made available for its technically superior videocassette player — specifically, no adult content — and found themselves quickly locked out of an incredibly lucrative market for adult and family content. If Sony keeps a tight grip on the PS2, they may actually help Microsoft create the new VHS. But even if Sony loses this round (and no one wants to wager which way this battle will turn), they've already set their sights on the PlayStation3, to be released five years from now. Sony promises it will be a thousand times faster than the PS2. Ironically, Pesce's warning about possible threats to the PS2's longevity was published by online magazine Feed-- which seven months later went out of business. And this week it was announced that even Microsoft's Halo Campaign Evolved will now be coming to PlayStation 5, with Slashdot publishing six PlayStation-related stories in just the last three months in 2025. Thanks to long-time Slashdot reader crunchy_one for suggesting a "25 Years Ago" Slashdot post.

Read more of this story at Slashdot.

Les rumeurs à ce sujet bruissent depuis des semaines, mais c’est GMKtec qui est le premier à les confirmer. La marque de MiniPC annonce par email une hausse générale de ses tarifs suite à la hausse de la mémoire vive et du stockage.

Le message est très clair, indiquant que la montée régulière des tarifs de composants clés ces derniers mois rendent la situation impossible. Si la marque a tenté d’absorber ces augmentations dans la mesure du possible, ce n’est plus envisageable pour le moment. Les prix de la mémoire vive et du stockage ont connu une fièvre trop importante pour être ignorée. 

Début octobre, c’était Raspberry Pi qui indiquait augmenter les tarifs de ses produits pour cette même raison. La marque Anglaise commercialisant des produits à prix plus bas, il lui a sans doute été impossible de gérer la hausse en rognant sur ses marges. GMKtec assure que cette décision est la seule solution pour lui permettre de continuer à proposer des composants de qualité au sein de ses machines. Et d’assurer une stabilité de sa production.

Pour observer de près les fluctuations de tarifs de ce marché. La hausse de la mémoire a déjà fait des dégâts chez de nombreux constructeurs à plus ou moins grande échelle. Les prix ont toujours tendance à remonter entre la période creuse des vacances d’été et celle plus faste de la rentrée de septembre. Ainsi, dès la fin du mois d’août, il n’était plus possible d’obtenir un MiniPC sous Intel N150 en 16 Go de mémoire et 512 Go de stockage SSD à 130/140€ comme au creux de la vague entre juillet et août. Mais au lieu de remonter vers des tarifs de 170/180€, les marques ont petit à petit fait grimper leurs tarifs entre 200 et 220€.

Sont également apparues plus souvent des machines proposant 12 Go de mémoire au lieu de 16 chez des constructeurs n’ayant pourtant pas cette habitude. Tous ces signes marquent une pression importante sur ces composants qui ne présage rien de bon pour les tarifs constructeurs. 

Beaucoup d’acteurs rappellent que l’impact de la construction de serveurs liés à l’IA commence à poser de nombreux problèmes sur les chaînes de production. Comme je vous le disais en setptembre, les tarifs de ces composants ne cessent de gonfler. Rendant la demande toujours plus importante et tirant les tarifs à la hausse. Les serveurs en question ne consomment ni la mémoire ni les stockages employés dans nos MiniPC mais le prix des composants augmente simplement par ricochet. Chaque composant est en hausse, même ceux absolument sans rapport avec les besoins spécifiques des serveurs. Ne serait-ce que parce que les fabricants ont reporté une bonne partie de leur production pour répondre à l’énorme demande du marché IA.

Le temps n’est donc pas au beau fixe et, à moins d’un éclatement de la bulle IA et d’une baisse des investissements, certains parlent d’une situation qui va se tendre pour les années à venir.

Le communiqué de GMKtec

« Dear GMKtec Community,

We’d like to share an important update with you.

In recent months, the global costs of key components—especially memory and storage—have continued to rise sharply, leading to increased supply expenses across the tech industry. Despite our ongoing efforts to absorb these changes, we now have to adjust the prices across our entire GMKtec product lineup to reflect the new market conditions and ensure a sustainable supply for the future.

Some of our products have already had price updates, and the rest will be adjusted by Nov. 1st. We’ll continue delivering GMKtec’s signature mix of top performance and fair pricing.

This decision allows us to continue providing stable product availability, uncompromised quality, and dependable customer support—core commitments that remain central to everything we do. These changes are essential to ensure that the GMKtec experience continues to deliver superior performance, reliability, and long-term value, no matter how the market evolves.

If you’re planning to buy or upgrade your device, we recommend placing your order soon, as prices may rise again due to market fluctuations.

We sincerely appreciate your understanding and continued support. At GMKtec, our mission remains unwavering: to bring you premium Mini PCs that embody innovation, reliability, and excellence.

Striving for excellence has always been the cornerstone of our philosophy, driving us to create products that not only meet but exceed expectations.

Thank you for being part of the GMKtec community.

GMKtec Official Team« 

Les besoins de l’IA continuent de tendre le marché du stockage

Hausse de la mémoire : GMKtec va augmenter ses prix © MiniMachines.net. 2025

Critics question why basic flaws like buffer overflows, command injections, and SQL injections are "being exploited remain prevalent in mission-critical codebases maintained by companies whose core business is cybersecurity," writes CSO Online. Benjamin Harris, CEO of cybersecurity/penetration testing firm watchTowr tells them that "these are vulnerability classes from the 1990s, and security controls to prevent or identify them have existed for a long time. There is really no excuse." Enterprises have long relied on firewalls, routers, VPN servers, and email gateways to protect their networks from attacks. Increasingly, however, these network edge devices are becoming security liabilities themselves... Google's Threat Intelligence Group tracked 75 exploited zero-day vulnerabilities in 2024. Nearly one in three targeted network and security appliances, a strikingly high rate given the range of IT systems attackers could choose to exploit. That trend has continued this year, with similar numbers in the first 10 months of 2025, targeting vendors such as Citrix NetScaler, Ivanti, Fortinet, Palo Alto Networks, Cisco, SonicWall, and Juniper. Network edge devices are attractive targets because they are remotely accessible, fall outside endpoint protection monitoring, contain privileged credentials for lateral movement, and are not integrated into centralized logging solutions... [R]esearchers have reported vulnerabilities in these systems for over a decade with little attacker interest beyond isolated incidents. That shifted over the past few years with a rapid surge in attacks, making compromised network edge devices one of the top initial access vectors into enterprise networks for state-affiliated cyberespionage groups and ransomware gangs. The COVID-19 pandemic contributed to this shift, as organizations rapidly expanded remote access capabilities by deploying more VPN gateways, firewalls, and secure web and email gateways to accommodate work-from-home mandates. The declining success rate of phishing is another factor... "It is now easier to find a 1990s-tier vulnerability in a border device where Endpoint Detection and Response typically isn't deployed, exploit that, and then pivot from there" [says watchTowr CEL Harris]... Harris of watchTowr doesn't want to minimize the engineering effort it takes to build a secure system. But he feels many of the vulnerabilities discovered in the past two years should have been caught with automatic code analysis tools or code reviews, given how basic they have been. Some VPN flaws were "trivial to the point of embarrassing for the vendor," he says, while even the complex ones should have been caught by any organization seriously investing in product security... Another problem? These appliances have a lot of legacy code, some that is 10 years or older. Attackers may need to chain together multiple hard-to-find vulnerabilities across multiple components, the article acknowleges. And "It's also possible that attack campaigns against network-edge devices are becoming more visible to security teams because they are looking into what's happening on these appliances more than they did in the past... " The article ends with reactions from several vendors of network edge security devices. Thanks to Slashdot reader snydeq for sharing the article.

Read more of this story at Slashdot.

Thursday Ubuntu-maker Canonical "officially launched Canonical Academy, a new certification platform designed to help professionals validate their Linux and Ubuntu skills through practical, hands-on assessments," writes the blog It's FOSS: Focusing on real-world scenarios, Canonical Academy aims to foster practical skills rather than theoretical knowledge. The end goal? Getting professionals ready for the actual challenges they will face on the job. The learning platform is already live with its first course offering, the System Administrator track (with three certification exams), which is tailored for anyone looking to validate their Linux and Ubuntu expertise. The exams use cloud-based testing environments that simulate real workplace scenarios. Each assessment is modular, meaning you can progress through individual exams and earn badges for each one. Complete all the exams in this track to earn the full Sysadmin qualification... Canonical is also looking for community members to contribute as beta testers and subject-matter experts (SME). If you are interested in helping shape the platform or want to get started with your certification, you can visit the Canonical Academy website. The sys-admin track offers exams for Linux Terminal, Ubuntu Desktop 2024, Ubuntu Server 2024, and "managing complex systems," according to an official FAQ. "Each exam provides an in-browser remote desktop interface into a functional Ubuntu Desktop environment running GNOME. From this initial node, you will be expected to troubleshoot, configure, install, and maintain systems, processes, and other general activities associated with managing Linux. The exam is a hybrid format featuring multiple choice, scenario-based, and performance-based questions..." "Test-takers interested in the types of material covered on each exam can review links to tutorials and documentation on our website." The FAQ advises test takers to use a Chromium-based browser, as Firefox "is NOT supported at this time... There is a known issue with keyboards and Firefox in the CUE.01 Linux 24.04 preview release at this time, which will be resolved in the CUE.01 Linux 24.10 exam release."

Read more of this story at Slashdot.

AMD on Friday sent in their first patch of AMDGPU kernel graphics driver changes they are ready to begin queuing in the DRM-Next tree until the Linux 6.19 merge window kicks off in December and leading to a stable release around February...