Longtime Slashdot reader Gilmoure shares a report from Nature: Scientists have produced the most detailed 3D map of almost all buildings in the world. The map, called GlobalBuildingAtlas, combines satellite imagery and machine learning to generate 3D models for 97% of buildings on Earth. The dataset, published in the open-access journal Earth System Science Data on December 1, covers 2.75 billion buildings, each mapped with footprints and heights at a spatial resolution of 3 meters by 3 meters. The 3D map opens new possibilities for disaster risk assessment, climate modeling and urban planning, according to study co-author Xiaoxiang Zhu, an Earth observation data scientist at the Technical University of Munich in Germany. "Imagine a video game with the world's buildings already mapped in basic spatial dimensions!" writes Gilmoure.

Read more of this story at Slashdot.

joshuark shares a report from BleepingComputer: More than 10,000 Docker Hub container images expose data that should be protected, including live credentials to production systems, CI/CD databases, or LLM model keys. After scanning container images uploaded to Docker Hub in November, security researchers at threat intelligence company Flare found that 10,456 of them exposed one or more keys. The most frequent secrets were access tokens for various AI models (OpenAI, HuggingFace, Anthropic, Gemini, Groq). In total, the researchers found 4,000 such keys. "These multi-secret exposures represent critical risks, as they often provide full access to cloud environments, Git repositories, CI/CD systems, payment integrations, and other core infrastructure components," Flare notes. [...] Additionally, they found hardcoded API tokens for AI services being hardcoded in Python application files, config.json files, YAML configs, GitHub tokens, and credentials for multiple internal environments. Some of the sensitive data was present in the manifest of Docker images, a file that provides details about the image.Flare notes that roughly 25% of developers who accidentally exposed secrets on Docker Hub realized the mistake and removed the leaked secret from the container or manifest file within 48 hours. However, in 75% of these cases, the leaked key was not revoked, meaning that anyone who stole it during the exposure period could still use it later to mount attacks. Flare suggests that developers avoid storing secrets in container images, stop using static, long-lived credentials, and centralize their secrets management using a dedicated vault or secrets manager. Organizations should implement active scanning across the entire software development life cycle and revoke exposed secrets and invalidate old sessions immediately.

Read more of this story at Slashdot.

Le cas de Kilmar Abrego Garcia est devenu un symbole de la politique migratoire de Donald Trump. Le ministère de la sécurité intérieure a promis de se battre contre la nouvelle décision judiciaire.

© ROBERTO SCHMIDT/AFP

Après des pluies diluviennes, des routes sont coupées, des quartiers résidentiels et des terres agricoles ont été submergés et la garde nationale a été mobilisée dans l’ouest de l’Amérique du Nord.

© Jesse Winter/REUTERS

Microsoft today released WSL 2.7.0, the newest version of their Windows Subsystem for Linux code that enables running Linux binaries atop Windows 11 hosts...

TheRock is an interesting open-source build platform for ROCm and HIP that has taken shape over the past year. It's become an official ROCm effort albeit still in early stages and relying on community contributions for enhancements for different consumer GPU targets and more. To date its users have largely relied on running the latest TheRock Git while today TheRock v7.10 was tagged...

Find similar bugs Create GitHub Issue

mruac

699,99€ - Fnac

Optimisation Boursobank -5%.

Prix de revient final CC déduits = 565€

613,86€ - Amazon

Montre de la collection Chemin des tourelles, mouvement automatique Powermatic 80 3 aiguilles dateur, boitier en acier argenté de 39 mm avec un cadran gris sur ...

89,99€ - Amazon

Prête pour Intel ATX 3.1 et PCIe Gen 5.1
Certifiée 80 PLUS Gold
Conception entièrement modulaire
Puissante seule ligne +12V
Format compact

3,95€ - Amazon

Petite promo pour les amoureux de vintage (et oui c'était mieux avant) avec ces affiches de pub magnétiques qui se collent bien au frigo ou sur une autre surfac...

19€ - Amazon

Design haut de gamme : logo brodé à l’avant, branding à l’arrière, bouton sur la couronne et visière courbée pour protéger de la lumière.

Broadcom has quietly pulled VMware vSphere Foundation from parts of EMEA, pushing smaller customers toward far more expensive bundles and prompting some to consider jumping to Hyper-V or Nutanix. The Register reports: VVF is a bundle that offers compute, storage, and networking virtualization, and a platform to run containers. It's most useful in hyperconverged infrastructure and hybrid clouds, but is less capable than the Cloud Foundation (VCF) private cloud suite. Virtzilla said EMEA customers would need to check with their local dealer to see if VVF was still on sale in their country. "VVF is no longer available in some EMEA countries, but for the majority it is still available," a Broadcom spokesperson said. "Customers will have to reach out to sales reps or partners to determine availability of a given product in their region. These changes were recent." Our initial tipster said their reseller clued them into the impending change when VMware's new fiscal year started in November. This anonymous customer told us that their hardware fleet boasts thousands of compute cores and without more affordable options, his organization was looking at their annual VMware spend leaping by 10x from around $130,000 to $1.3 million. "We're currently looking to jump ship to either Microsoft's Hyper-V or Nutanix, as we can't eat (that) increase," they told The Register. [...] For the moment, a Broadcom spokesperson told us it has no plans to ditch VMware vSphere Standard, the basic server virtualization bundle which we're told makes up about 60 percent of the company's licenses and is a lower-cost way to access VMware's hypervisor than buying its full suite of VMware Cloud Foundation products. "We have not announced any changes to the availability of vSphere Standard in EMEA nor end of support for vSphere Standard," the spokesperson said via email. "The product remains fully available across EMEA today. However, Broadcom product availability can vary by region to align with local market requirements, customer demand, and other considerations."

Read more of this story at Slashdot.

Aujourd'hui : 50% sur la cagnotte CDAV sur une selection de bagages @ Cdiscount