Bonum Certa Men Certa

Links 16/08/2023: HashiCorp Goes Proprietary



  • GNU/Linux

    • Linux LinksLinux Around The World: Jamaica

      We cover user groups that are running in Jamaica. This article forms part of our Linux Around The World series.

    • Desktop/Laptop

      • System76AI Proteins: Creating Groundbreaking Treatments on System76 Hardware

        Biotech company AI Proteins is at the forefront of revolutionizing medicine through the integration of artificial intelligence (AI) and protein design. They use AI to harness the power of synthetically designed proteins to cure diseases and potentially make medicine more affordable. We recently interviewed AI Proteins about their work and how they use System76 machines and Linux to transform the field of drug discovery.

        At the heart of AI Proteins lies a groundbreaking approach called de novo protein design, which leverages the power of AI, synthetic biology, and automation. Unlike traditional protein-based therapies, which are derived from natural sources, de novo protein design allows the creation of entirely new molecules tailored for medicinal purposes. This level of control and precision offers a promising avenue for developing safer, more effective, and purpose-built medicines.

    • Audiocasts/Shows

    • Kernel Space

      • LWNLinux 6.4.11
        I'm announcing the release of the 6.4.11 kernel.
        
        

        All users of the 6.4 kernel series must upgrade.

        The updated 6.4.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-6.4.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-s...

        thanks,

        greg k-h
      • LWNLinux 6.1.46
      • LWNLinux 5.15.127
      • LWNLinux 5.10.191
      • LWNLinux 5.4.254
      • LWNLinux 4.19.292
      • LWNLinux 4.14.323
    • Instructionals/Technical

    • Desktop Environments/WMs

      • K Desktop Environment/KDE SC/Qt

        • Carl SchwanKirigami Addons 0.11.0

          Kirigami Addons 0.11.0 is out! This release brings a bunch of new components. Since I forgot to write an announcement for the 0.10 relesse, I will mention some of the new features of 0.10 too.

          This helpful component is similar to Kirigami.InlineMessage and can be used as the footer or header of a page.

      • GNOME Desktop/GTK

        • Bilal Elmoussaoui: Damage areas across the VirtIO space

          In the last few months, I have been trying to improve the default UI shipped by QEMU. As you might not know, QEMU ships with various UI backends: GTK, SDL, Cocoa and recently a DBus one.

          I first started trying to port the GTK 3 backend to GTK 4 but faced some issues where I couldn't use GtkApplication as it starts its own GMainLoop which interferes with some god knows what internal GMainLoop started by QEMU itself. My intention was not to only do a simple port but also to see how we could optimize the rendering path as well.

          At that time, I also learned that Christian Hergert started working on libmks, a new client-side C library of the DBus backend as he has the intention of using it in GNOME Builder. Marc-André Lureau, one of the upstream QEMU maintainers, is also working on something similar, with a larger scope and using Rust called RDW, a Remote Desktop Widget to rule them all.

  • Distributions and Operating Systems

    • Ruben SchadeMy daily carry in 2023

      My dream is also to have a single, multi-boot USB key to replace the half dozen I carry around, I just haven’t got around to doing it. Something like Rufus but with multiple images or partitions. Anyone know of a straightforward tool that could be used to do this, say for FreeBSD, Fedora, ESXi, Windows Server, macOS, and the like?

      And finally, my laptops need more NetBSD stickers to complement the FreeBSD ones. This wouldn’t add any discernable weight, though it would add discernable awesomeness. 🧡

    • HaikuOSHaiku Activity & Contract Report, July 2023

      As is the usual way of things, the monthly Activity Report is hereby combined with my Contract Report.

      This report covers hrev57127 through hrev57183.

    • Fedora Family / IBM

      • Forbes The Future Of Open-Source Enterprise Linux And Community Collaboration
        In the rapidly evolving world of technology, a seismic shift is taking place as the very ethos of the open-source market finds itself in flux. The cherished ideals of open community standards, collaboration, and crowdsourced innovation are now being challenged by powerful enterprises, many of them publicly-traded corporations, grappling with the balance between shareholder fiduciary responsibilities and community support.

        Red Hat, one of the longtime leaders in the open-source space, made some key announcements, which I got the chance to discuss with Gunnar Hellekson, the GM of the Red Hat Enterprise Linux business recently, that the company is changing how it approaches the open-source community as it relates to its main source of revenue, Red Hat Enterprise Linux (RHEL). RHEL is an open-source operating system that thousands of organizations, institutions, and government departments use globally.

      • The Register UKRed Hat redeploys one of its main desktop developers

        A blog post from senior Red Hat developer Bastien Nocera indicates that the company is further consolidating its development efforts on desktop Linux.

        The post, simply titled "New responsibilities", refers back to Red Hat's earlier decision to stop packing LibreOffice for RHEL back in June. That in turn followed the company laying off Fedora project lead Ben Cotton. Nocera isn't being laid off, merely "transferred to another team that deals with one of a list of Red Hat's priority projects."

        Nocera links to one of his emails from the end of June, which lists multiple Fedora packages that he had to stop working on. Although he says that he gave less than 10 percent of his time to them, he describes some of the areas which will now be orphaned...

      • MontaVista Announces Rocky Linux 9.2 MVShield Support

        MontaVista€® Software, LLC, a leader in commercial Embedded Linux€® products and services, announces immediate availability for Rocky Linux 9.2 for customers needing commercial support and maintenance for Rocky Linux. MontaVista’s commitment to Rocky Linux continues despite the recent changes to the CentOS project source distribution announced by Red Hat.

        The Rocky Linux project was founded in late 2020 as a successor in principle to CentOS Linux, generating an impressive ecosystem around the Rocky Enterprise Software Foundation (RESF) over the last few years. MontaVista Software joined RESF as a Principal Sponsor early in the process and continues to support and drive strategic alignment with its products and services.

      • Kamil Páral: Bisecting Fedora kernel

        This post shows how to bisect a Fedora kernel to find the source of a regression. I needed that recently and I found no good guide, so I’m at least capturing my notes here, perhaps you find it useful. This approach can be used to identify which exact commit caused a bad kernel behavior on your hardware, and then report it to kernel maintainers. Note, you need to have a reliable way of reproducing the problem. If it happens randomly and infrequently, it’s much harder to debug.

      • CentOSCentOS Board Meeting Recap, August 2023

        The recording of the August CentOS Board meeting is now available. Watch the recording Read the minutes The recording has timestamps so you can skip to the parts that interest you. Here are a few highlights of the meeting: We got an update on the status of trusting SIGs for secureboot (Issue 67).

    • Debian Family

      • Debian Celebrates 30 years!
        Over 30 years ago the late Ian Murdock wrote to the comp.os.linux.development newsgroup about the completion of a brand-new Linux release which he named "The Debian Linux Release".

        He built the release by hand, from scratch, so to speak. Ian laid out guidelines for how this new release would work, what approach the release would take regarding its size, manner of upgrades, installation procedures; and with great care of consideration for users without Internet connection.

      • LWNDebian turns 30

        After 30 years, Debian is still going strong.

      • LWNDebian adds LoongArch support

        The Debian project has added the LoongArch architecture to its ports collection.

    • Devices/Embedded

      • Engineering Hero: Daire McNamara Takes Microchip's PolarFire SoC to Space



        Chip bring-up is a job most technologists don’t want or know how to do. It involves developing and running a series of low-level interface and memory tests, coding drivers, verifying the boot process, and debugging the debuggers, then rolling all that work into the creation of board support packages (BSPs) and software development kits (SDKs) over a period of weeks or months. There isn’t much glory in it, but application development can’t happen without it.

        Daire has performed chip bring-up on dozens of target microprocessors, if not more, bringing to life chips based on Arm, x86, PIC, SPARC, ARC, MSP, and other microarchitectures so other engineers can take advantage of them. He recently did the same for a new RISC-V-based chip, the Microchip PolarFire SoC FPGA, adding error detection and correction (EDAC) mechanisms and Linux drivers to its technology stack for in-space servicing, assembly, and manufacturing (ISAM) company Skycorp, and doing so in time for the launch of a Northrop Grumman NG-17 spacecraft that would carry their test product into orbit just weeks later.

      • Success Stories: How One Man’s Race to Beat A Rocket Launch Enabled Thousands of Linux Developers - Embedded Computing Design

        When the iSSI project got underway, the PolarFire SoC FPGA lead partner Skycorp had selected as one of the system’s primary control platforms had only just hit the market. As a Linux-capable processor built around a RISC-V CPU cluster, tens of thousands of FPGA logic elements, and an advanced memory protection scheme, the PolarFire device checked a lot of boxes for the mission. That said, the technology infrastructure around the processors was still maturing.

    • Open Hardware/Modding

      • CNX SoftwarePrivacy-focused DIY video doorbell leverages ESP32-CAM board, ESPHome firmware, Home Assistant

        Seeing the lack of privacy-focused video doorbells on the market, Tristam (aka ThatGuy) decided to design his own doorbell with an ESP32-CAM board purchased from Amazon and flashed with ESPHome open-source firmware for easy integration with Home Assistant so there’s no need to rely on third-party cloud services. The DIY design also comes with other off-the-shelf parts with a momentary push button, a 10kΩ resistor, an RGB LED ring light,€  M2.5 brass inserts and screws, and a 10-meter micro USB cable all of which can be purchased from Amazon or another shop.

      • ArduinoThis smart diaper knows when it is ready to be changed

        The traditional method for changing a diaper starts when someone smells or feels the that the diaper has been soiled, and while it isn’t the greatest process, removing the soiled diaper as soon as possible is important for avoiding rashes and infections.

      • Raspberry PiDigital making with Raspberry Pis in primary schools in Sarawak, Malaysia

        Dr Sue Sentance shares what she learned about the approach taken to computing education in Malaysia's largest state during a recent visit.

      • Tom's HardwarePocket-Sized Blackberry Has Raspberry Pi at its Heart

        This Raspberry Pi powered handheld looks more corporate than fun, but the project packs a lot of skills and fun into a small package.

  • Free, Libre, and Open Source Software

    • Productivity Software/LibreOffice/Calligra

      • UbuntubuzzLibreOffice Calc Productive Exercises for Students and Workers

        This collection of tutorials will help you learn LibreOffice Calc like Microsoft Excel. We published these gradually since 2022 and is still continuing. We hope these helps you all regardless your occupation being a student, a teacher or a worker. Happy studying!

    • Programming/Development

      • Software Freedom ConservancyWe Call on FOSS Contributors to “Exit Zoom”

        A news item from Software Freedom Conservancy.

        SFC Announces Program to Help FOSS Enthusiasts Adopt Zoom Alternatives

        Software Freedom Conservancy stands with concerned users and consumers; we too face difficult choices with respect to software rights and freedom. As part FOSS options for the general public. We also strive to “meet people where they are.”

        The industrialized world has changed since the advent of FOSS. Only the most privileged among us have the option to avoid proprietary software — from the grocery store coupons, to interacting with government agencies, to looking for a job, to attending mandatory meetings at our jobs. The pandemic accelerated the widespread adoption of new technologies, such as video chat. Quite quickly after the pandemic started, we noted that some of our colleagues began pressuring us to meet on Zoom. It was really hard in the early days of the pandemic to balance the need for human connection and a principled stance on video conferencing software. We want to acknowledge that we all make tradeoffs and negotiations with our ethics, and these are not cut and dry issues. The wider business and non-profit sectors beyond FOSS quickly standardized on wholly proprietary video chat software — and Zoom was, by far, the market leader.

      • Bruce SchneierZoom Can Spy on Your Calls and Use the Conversation to Train AI, But Says That It Won’t

        This is why we need regulation:

        Zoom updated its Terms of Service in March, spelling out that the company reserves the right to train AI on user data with no mention of a way to opt out.

      • ChrisOptimise the Expensive First
      • Dirk EddelbuettelDirk Eddelbuettel: #41: Using r2u in Codespaces

        Welcome to the 41th post in the $R^4 series.

      • Python

        • Linux HintPython File Stat()

          The “os.stat()” method of the “os” module in Python is utilized to retrieve all the file information such as type of file, size of file and others.

      • Java

        • Red HatHow to use Cryostat agent to profile Java workloads

          In Cryostat 2.3, we deliver the first iteration of a long-time requested feature, the JDK instrumentation agent for profiling Java workloads using JFR. This article provides a brief overview of an instrumentation agent, what the Cryostat agent does, reasons to instrument your containerized applications with the Cryostat agent, and finally, an example of how to include the Cryostat agent into a Quarkus application.

  • Leftovers

    • Science

    • Hardware

      • IT WireHuawei revenue for 1H23 shows rise of 3% as company recovers

        Chinese telecommunications equipment vendor Huawei Technologies has increased its revenue by more than 3% in the first half of 2023, following an 0.8% rise in the first three months, the company says.

        Huawei is a private company owned by its employees, but releases a short statement about its performance occasionally.

      • IT WireNew Aspera low-budget smartphone offers better security, NFC

        Aspera Mobile managing director Allan Robertson explained, “The AS8 is a highly featured, lower-cost smartphone which is part of our new 2023 range. As with all Aspera phones, it is aimed squarely at the budget conscious and those people who want a great smartphone experience, but don’t want to spend hundreds or even thousands of dollars to get one.

        "It has a high-quality feel, an HD+ display, a great camera and a long-lasting and removable battery. It even comes with a free gel case€ – all of which make it terrific value at just $149. As such, we believe it is the best value smartphone in the market at that price.”

      • CNX SoftwareMini review of GGtag e-paper display programmable through sound or USB serial

        GGtag is a 3.52-inch e-paper display based on the Raspberry Pi RP2040 microcontroller and programmable through sound or USB serial from your web browser, plus it also supports emulation of 125 kHz RFID tags (ASK and FSK). When Radoslav Gerganov contacted me about the upcoming Crowd Supply campaign for the GGtag e-paper badge, I happened to have just discussed using an e-paper display to sell some samples on Facebook Groups where requirements include using the seller’s name and date in the photos.

    • Health/Nutrition/Agriculture

      • The Atlantic‘Sick People Don’t Exist to Show Healthy People What’s Important’

        Readers respond to our June 2023 issue.

      • Pro PublicaWhy Doctors Spend Millions on Fees That Could Be Spent on Providing Care

        Imagine if each time your wages were deposited in your bank account, your employer deducted a fee of 1.5% to 5% to provide the money electronically. That, increasingly, is what health insurers are imposing on doctors. Many insurers, after whittling down physicians’ reimbursements, now take an additional cut if the doctor prefers — as almost all do — to receive funds electronically rather than via a paper check.

        Such fees have become routine in American health care in recent years, according to an investigation by ProPublica published on Monday, and some medical clinics say they’ll seek to pass those costs on to patients. Almost 60% of medical practices said they were compelled to pay fees for electronic payment at least some of the time, according to a 2021 survey. With more than $2 trillion a year of medical claims paid electronically, these fees likely add up to billions of dollars that could be spent on care but instead are going to insurers and middlemen.

      • Helsinki TimesYLE: All Finnish fur farms to be inspected over bird flu concern
        THE FINNISH Food Authority will conduct inspections at all of the roughly 400 fur farms in Finland, according to YLE.

        “The avian influenza is a dangerous disease at fur farms because it can mutate into a disease that can transmit to people. This hasn’t happened yet, but the risk does exist,” Terhi Laaksonen, the director of animal health and welfare at the Finnish Food Authority, stated to the public broadcasting company on Monday.

      • The Kent StaterDestigmatizing men’s mental health starts with us

        I remember when I told my mom that I wanted to start seeing a therapist. I was 20 years old, and it marked a new beginning. I was a little bit less afraid to ask for help.€  For too long, I thought seeking help for my mental health wasn’t an option.

      • The AtlanticThe Sriracha Shortage Is a Very Bad Sign

        Chili peppers thrive in hot and dry conditions. But even they have their limits.

      • The AtlanticDon’t Overthink Gardening

        You don’t need a massive garden and a green thumb. Just put a pit in a pot.

      • Science AlertFirst-Ever Vaccine Candidate Against Epstein-Barr Delivers Promising Results

        A way to stop its lingering effects?

      • New YorkerThe Race to Save the World’s DNA

        A scientific rescue mission aims to analyze every plant, animal, and fungus before it’s too late.

      • Science AlertThe Unknome: Researchers Just Created a Database of Our Most Mysterious Genes

        There’s still so much we don’t know.

      • teleSURChildhood Disability in Africa Between Poverty and Discrimination

        The problem is exacerbated by the fact that countries measure disability in different ways. While some nations only take into account physical ailments, others include mental health conditions. Thus, the study found that three key factors influence the depth of stigma against children with disabilities: their gender, the type of disability and the degree of dependency.

      • The AtlanticI Was Wrong About Trigger Warnings

        Has the national obsession with trauma done real damage to teen girls?

      • The Straits TimesIndonesia’s capital named world’s most polluted city

        Jakarta registers unhealthy air pollution levels nearly every day, according to IQAir.

      • New medication means all infants should be inoculated against RSV: study

        Not just infants with a history of underlying conditions or who’d been born prematurely but even healthy ones need to be inoculated against respiratory syncytial virus (RSV) as part of routine care, according to study in JAMA Network Open.

    • Proprietary/Artificial Intelligence (AI)

      • Introducing Himmelblau: Seamless Azure AD Authentication for Linux [Ed: This does not seem like the step in the right direction but like stepping in TPM poo from Microsoft]

        Microsoft’s Azure AD (Entra ID) is a popular choice for identity and device management. Until recently, Linux systems lacked a comprehensive solution for integrating seamlessly with these Microsoft services. Enter Himmelblau, a project meant to bridge the gap between Linux and Microsoft’s cloud ecosystem.

    • Pseudo-Open Source

      • Openwashing

        • LWNHashiCorp's license change

          Readers have been pointing us to HashiCorp's announcement that it is moving to its own "Business Source License" for some of its (formerly) open-source products. Like other companies (example) that have taken this path, HashiCorp is removing the freedom to use its products commercially in ways that it sees as competitive. This is, in a real sense, an old and tiresome story.

          The lessons to be drawn from this change are old as well. One is to beware of depending on any platform, free or proprietary, that is controlled by a single company. It is a rare company that will not try to take advantage of that control at some point.

        • Linux Foundation Aligns With The UN Sustainable Development Goals [Ed: Greenwashing of monopolies with the brand "Linux" for some openwashing too; norice these aren't technical people but marketing people]
        • Linux Foundation's Site/BlogShaping the Future: A Conversation with Jory Burson on the 2023 State of Open Standards [Ed: Monopolies-led "Open" Standards]
    • Security

      • Notorious Downfall & Inception Microcode Info Disclosure Vulns Fixed

        Multiple significant microcode security issues have been discovered. An information exposure bug known as Downfall ( CVE-2022-40982 ) has been found in some Intel(R) Processors, as well as a side channel vulnerability in some AMD CPUs known as Inception ( CVE-2023-20569 ) that may allow an attacker to influence the return address prediction, potentially resulting in speculative execution at an attacker-controlled address.

      • Freexian Collaborators: Monthly report about Debian Long Term Support, July 2023 (by Santiago Ruano Rincón)

        Like each month, have a look at the work funded by Freexian’s Debian LTS offering.

      • BBCBank of Ireland glitch led to police being sent to some ATMs - BBC News

        The glitch allowed people with withdraw large sums despite having little or no money in their accounts.

      • Silicon AngleNew reports show phishing is on the rise – and getting more sophisticated

        Two new reports on phishing trends show a rise in attacks, and they’re taking more complex paths through the internet to connect victims with malware-laced websites.

      • Security WeekHacker Forum Credentials Found on 120,000 PCs Infected With Info-Stealer Malware

        Hudson Rock security researchers have identified credentials for hacker forums on roughly 120,000 computers infected with information stealers.

      • Silicon AngleDiscord.io suffers data breach with 760,000+ users’ info stolen

        Discord.io, a third-party site that allows users to create custom server invites for the instant messaging and voice app Discord Inc., has been taken offline after a data breach led to the exposure of the information of more than 760,000 users. The breach took place Monday night and Discord.io was taken offline shortly thereafter.

      • Niccolò VenerandiThe Cyber Resilience Act. What's so bad about it

        We need to start talking about the Cyber Resilience Act, because according to all major Open Source organizations the CRA is a threat to Free Software itself, and it has been approved by the European Committee that was working on it.

        This, is going to be a complex story of laws and burocracy, and even though it might seem like Europe accidentally hurted Open Source whilst doing an otherwise great bill... this is very much intentional.

      • Security Week2,000 Citrix NetScaler Instances Backdoored via Recent Vulnerability

        A threat actor has exploited a recent Citrix vulnerability (CVE-2023-3519) to infect roughly 2,000 NetScaler instances with a backdoor.

      • Silicon AngleHackers target Citrix NetScaler vulnerabilities to gain persistent access

        A new report released today by Fox-IT, part of NCC Group PLC, has detailed how about 2,000 Citrix NetScalers have been exploited by a threat actor to gain persistent access. Citrix NetScaler is an€ application delivery controller and load-balancing solution offered by Citrix Systems Inc.

      • Security Week1.5 Million Impacted by Ransomware Attack at Canadian Dental Service

        The personal information of 1.5 million individuals was compromised in a ransomware attack at Alberta Dental Service Corporation (ADSC).

      • IT JungleMOVEit Vulnerability Yields Another 4 Million Breached Records [Ed: Windows TCO]

        A zero-day security vulnerability in the MOVEit file transfer software discovered in late spring has been wreaking havoc across American companies this summer. The latest victims are people signed up for Colorado’s version of Medicaid, who had their data compromised when cybercriminals used the flaw to access their data in the IBM Cloud.

      • Hacker NewsMonti Ransomware Returns with New Linux Variant and Enhanced Evasion Tactics

        The Linux variant is also designed to tamper with the motd (aka message of the day) file to display the ransom note, employ AES-256-CTR encryption instead of Salsa20, and solely rely on the file size for its encryption process.

      • LWNSecurity updates for Wednesday

        Security updates have been issued by Debian (datatables.js and openssl), Fedora (ghostscript, java-11-openjdk, java-latest-openjdk, microcode_ctl, and xen), Red Hat (redhat-ds:11), SUSE (java-1_8_0-openj9, kernel, krb5, pcre2, and perl-HTTP-Tiny), and Ubuntu (gstreamer1.0, mysql-8.0, tiff, and webkit2gtk).

      • Cleveland City Schools face ransomware attack

        Cleveland City Schools faced a ransomware attack this week, but it only affected a small number of devices.

        The school system said they became aware of the issue on Tuesday, August 15. An issue they say is affecting many other school districts as well. […]

        Sensitive information is secure offsite, and officials do not believe any of this data has been compromised.

      • Ransomware Diaries: Volume 3 – LockBit’s Secrets

        In this volume of the Ransomware Diaries, I will share interesting, previously unknown details of the LockBit ransomware operation that LockBit has tried very hard to cover up. Until now, you have been lied to about LockBit’s true capability. Today, I will show you the actual current state of its criminal program and demonstrate with evidence-backed analysis that LockBit has several critical operational problems, which have gone unnoticed.

        This time, besides using fake personas, I have spoken directly with the gang and many of its affiliate partners. I also reached out to victims. I learned what happens behind the scenes during the ransom negotiations and the relationships LockBit has with its affiliate partners and competing rival gangs. LockBit has secrets it does not want either party to know. Now, I look forward to sharing them with you!

        Before I begin, I need to share a significant event that took place as I finalized this report. In August 2023, LockBit’s leadership vanished and was unreachable to fellow gang members, including its affiliate partners,

        for the first two weeks of August. During that time, several of LockBit’s close associates shared concerns that the gang’s leadership was on the run or dead. Then, on August 13, LockBit reappeared on private channels as if it never happened. Still, during the time LockBit was gone, LockBits data leak site and infrastructure were up, but no one was actively managing it.

        The question is: why? Fortunately, I have some answers.

      • Hackers threaten publishing sensitive medical data on politicians, Haredi leaders

        The hacker group that has claimed responsibility for the breach at the Mayanei HaYeshua Medical Center in central Israel earlier this month has issued an ultimatum to the facility, threatening to reveal sensitive medical files that include the prime minister, MKs, senior rabbis, and other known figures in the Haredi word if its demands are not met.

        According to Israel Hayom sources, the hackers demand tens of millions of shekels. The group claims that it has obtained access to hundreds of thousands of digital files due to the breach, including psychiatric evaluations and various checkups that could reveal private medical conditions among Haredi wheelers and dealers. The concern is that this would become a ‘Haredi WikiLeaks’ that could jolt the community.

      • Hospital Mergers Double the Risk of a Data Breach, Study Shows

        The healthcare sector is a prime target for data breaches. According to a summary by the HIPAA Journal, 32% of all data breaches between 2015 and 2022 were in the healthcare sector, “almost double the number recorded in the financial and manufacturing sectors.” Industry analysts cite to many reasons for this, including the sensitivity of health data and its value on the black market compared to other forms of data. Evidently, another driver of data breaches for healthcare entities is M&A activity.

      • Bleeping ComputerLinkedIn accounts hacked in widespread hijacking campaign

        LinkedIn is being targeted in a wave of account hacks resulting in many accounts being locked out for security reasons or ultimately hijacked by attackers.

        As reported today by Cyberint, many LinkedIn users have been complaining about the account takeovers or lockouts and an inability to resolve the problems through LinkedIn support.

        “Some have even been pressured into paying a ransom to regain control or faced with the permanent deletion of their accounts,” reports Cyberint’s researcher Coral Tayar.

      • Privacy/Surveillance

        • EFFThe Industry Discussion About Standards For Bluetooth-Enabled Physical Trackers is Finally Getting Started

          Now, there’s finally an industry discussion happening about the best methods of preventing unwanted trackers. The most effective way to prevent physical trackers from being used as stalking devices against most people is through tracking alerts. If a physical tracker is out of range of the phone that it is paired to, and it’s moving with you, you should get an alert about it.€ 

          Apple rolled out AirTags with some rudimentary anti-stalking mitigations: a tracking alert that worked for iPhone users and a beep from the AirTag that was worryingly easy to muffle or disable and which did not go off until the AirTag had been out of range of the phone it was paired to for three days. Since then, Apple has improved its mitigations by cutting down the time until the beep goes off and by putting out an Android app that can be used to scan for unwanted AirTags in the vicinity. In the meantime, Tile took one step forward by adding tracker detection to its app, and then one step back by creating an “anti-theft mode” that turned that detection off. As of right now, none of the other physical trackers on the market have any anti-stalking mitigations at all.€ 

          Recently, Google announced that it was rolling out Bluetooth tracking detection for Android. The new capability only detects AirTags at the moment, but it’s still a major step forward for people who may be followed by physical trackers. Android users will no longer have to download an app and run a scan to detect unwanted AirTags—it will all happen in the background.€ € 

        • OpenRightsGroupFines Hiked For Firms Employing Illegal Migrants

          The recent announcement by Immigration Minister Robert Jenrick regarding the proposed rules to triple fines for businesses and landlords supposedly supporting illegal migrants has ignited significant concerns, calling for careful reconsideration, as their implications run deep and require immediate attention.

        • Make Use OfWhat Is a SoftEther VPN? Circumvent Blocked VPN Access With This Handy Tool

          As the technological world advances, the need for secure communication grows more crucial by the day. VPNs, or "Virtual Private Networks," have become pivotal in maintaining online security.

          However, there are many ways in which network providers and institutions can block a VPN connection. You can circumvent these blocks by setting up your very own VPN over HTTPS with SoftEther.

    • Defence/Aggression

    • Environment

      • Energy/Transportation

        • IT WireVolvo electric truck helps to take out the Sunshine Coast waste

          Volvo Trucks Australia said in a statement on Tuesday that the truck, given the name Oscar by its own staff, had been fitted with a rear-loading 16 cubic metre waste body suited to urban operations.

          The trial will run for three months on Queensland's Sunshine Coast and the results will be scrutinised to look at the use of electric vehicles for such jobs.

          The 6x2 FE Electric has four second-generation batteries, giving it a capacity of 265KWh and the dual-motor vehicle has a range of 220km.

    • Finance

    • AstroTurf/Lobbying/Politics

      • IT WireMusk's X delays links from rivals loading, then backtracks

        The claim was first made by a user, who uses the handle xslowzone, on the Hacker News forum early on Tuesday. The user wrote: "Go to Twitter and click on a link going to any url on 'NYTimes.com' or 'threads.net' and you'll see about a ~5 second delay before t.co forwards you to the right address.

        "Twitter won't ban domains they don't like, but will waste your time if you visit them. I've been tracking the NYT delay ever since it was added (8/4 [August 4], roughly noon Pacific time), and the delay is so consistent it's obviously deliberate."

      • Atlantic CouncilHow to put out the fires of violent political extremism

        The danger posed by domestic violent extremists is considerable. The United States needs a nationwide, community-grounded initiative to address this threat.

      • Democracy NowBlack Voters Matter Co-Founder: Trump’s Georgia Indictment Is “Step Forward” in Defending Democracy

        We’re joined in Atlanta by LaTosha Brown, co-founder of the Black Voters Matter Fund, to discuss Donald Trump’s latest criminal indictment. Fulton County District Attorney Fani Willis is charging Trump and more than a dozen of his allies with plotting to steal Electoral College votes during the 2020 presidential election. “There was an attempt to disenfranchise voters in the state of Georgia,” says Brown, who also describes Trump’s targeting of poll workers Ruby Freeman and Shaye Moss and how Georgia’s status as one of five states where the governor cannot grant pardons will affect the upcoming trial. “If he is convicted in the state, he is going to jail.”

    • Censorship/Free Speech

    • Civil Rights/Policing

    • Internet Policy/Net Neutrality

    • Monopolies

      • Patents

        • JUVEEPO revokes Novartis’s everolimus patent in major victory for generics companies

          EP 3 351 246 protects the use of everolimus (a rapamycin derivative) in combination with an aromatase inhibitor. It forms the basis of Novartis’s drug Afinitor, a treatment for breast cancer. The EPO granted the patent in spring 2019. Shortly afterwards, Stada filed the first opposition, with other opponents joining the suit.

        • Unified Patents$2,000 for Avant Location Tech monitoring patent prior art

          A new PATROLL contest, with a $2,000 cash prize, was added seeking prior art on at least claim 1 of U.S. Patent 9,485,621, owned by Avant Location Technologies, LLC, an NPE and entity of Anjay Venture Partners LLC.

        • Unified Patents$2,000 for WristDocs biotelemetry patent prior art

          A new PATROLL contest, with a $2,000 cash prize, was added seeking prior art on at least claim 1 of U.S. Patent 9,392,970, owned by WristDocs LLC, an NPE. The ‘970 patent provides a portable, disposable biotelemetry system, including one or more sensors, capable of being mounted on one or more extremities, particularly the wrist. The invention provides a biotelemetry system for disposition on the wrist. The device of the invention may be portable, untethered and in some instances, disposable.

        • Unified Patents$2,000 for Jeffrey M. Gross entity, GeoSymm Ventures, automated assistance patent prior art

          A new PATROLL contest, with a $2,000 cash prize, was added seeking prior art on at least claim 1 of U.S. Patent 9,130,900, owned by GeoSymm Ventures LLC, an NPE and entity of Jeffrey M. Gross.

        • Dennis Crouch/Patently-ONew Amendment to FRCP Could Help Streamline Privilege Management in Patent Cases

          On August 15, 2023, the Judicial Conference Advisory Committee on Civil Rules published proposed amendments to Rules 16 and 26 of the Federal Rules of Civil Procedure. One of the goals of these amendments is to encourage parties to address issues relating to claims of privilege and work product protection early in litigation. This could be particularly impactful for patent cases, which frequently involve extensive disputes over these very issues.€  The proposal would also retitle Rule 16(b) to include both scheduling and case management (the current version just focuses on scheduling).

          Rule 26(b)(5)(A) focuses on the the procedure for “claiming privilege” as an reason for refusing to comply with an otherwise valid discovery request or disclosure requirement.€ 

      • Trademarks

        • TTAB BlogTTAB Rules That PARKING.COM Is Generic and Ineligible for Both the Principal and the Supplemental Register

          In a whopping 82-page opinion, the Board affirmed the USPTO's refusal to register€ PARKING.COM, on either the Principal Register or the Supplemental Register, as a service mark for “website providing information regarding parking availability." The Board first found the term to be generic for the services, and then, in the alternative, found it to be merely descriptive and lacking in secondary meaning. In re SP Plus Corporation, Serial No. 87906630 (August 11, 2023) [not precedential] (Opinion by Judge Elizabeth A. Dunn).

      • Copyrights

        • Digital Music NewsSony Music vs. Triller Copyright Infringement Battle Officially Settled, Court Documents Reveal

          Sony Music and Triller have officially agreed to conclude their copyright infringement battle concerning Triller’s use of Sony’s music on the platform. Sony Music Entertainment and short-form video platform Triller have agreed to settle their copyright infringement legal battle concerning Triller’s unauthorized use of Sony’s music on the platform.

        • KOL415: Commentary on Larken Rose, “IP: The Wrong Question”: Part 1

          Last year Larken Rose and I appeared on Patrick Smith's Disenthrall show, (( See KOL389 | Disenthrall, with Patrick Smith and Larken Rose: The Morality of Copyright “Piracy”.

        • TechdirtOne Fan Ports Abandoned PS1 Classic ‘WipeOut’, Dares Sony To Do Something About It

          More and more, as the video game industry matures, we find ourselves talking about game preservation and the disappearing culture of some older games as the original publishers abandon them. Often times leaving the public with no actual legit method for purchasing these old games, copyright law conspires with the situation to also prevent the public itself from clawing back its half of the copyright bargain. The end results are studios and publishers that have enjoyed the fruits of copyright law for a period of time, only for that cultural output to be withheld from the public later on. By any plain reading of American copyright law, that outcome shouldn’t be acceptable.

        • Ruben SchadePaul Simon parodying Bob Dylan

          It’s Music Monday time! Wait, today is Tuesday. It’s a belated Music Monday, the series where I post about much each Monday. Unless it’s a Tuesday. It’s still Monday on the other side of the date line, right?

        • Digital Music NewsTimbaland & Magoo Rapper Melvin ‘Magoo’ Barcliff Dies at 50—Cause of Death Unknown

          Rapper Melvin ‘Magoo’ Barcliff has passed away at age 50. The cause of death is unknown at this time. The wife of the rapper Meco Barcliff told The New York Times that the rapper had not been feeling well for about a week.



Recent Techrights' Posts

2025 Will be Fought and Fraught With LLM Slop or Fake 'Articles' (Former Media/News Sites Turning to Marketing Spam)
The elephant in the room?
Brittany Day Can Rest and Let Microsoft/Chatbots Write Fake 'Articles' About "Linux" This Christmas
Who said people don't work on Christmas? Chatbots or plagiarism-as-a-service work 24/7, every day of the year except during Microsoft downtimes
 
Microsoft Openwashing Stunts Initiative (OSI) is A Vulture in "Open" Clothing
it's quite telling that the OSI isn't protecting the Open Source Definition
Gemini Links 25/12/2024: Reality Bites and Gopher Thanks
Links for the day
Links 26/12/2024: Japan-China Mitigations and Mozambique Prison Escape (1,500 Prisoners)
Links for the day
Links 26/12/2024: Ukraine's Energy Supplies Bombed on Christmas Day, Energy Lines Cut/Disrupted in the Baltic Sea Again
Links for the day
Gemini Links 26/12/2024: Rot Economy, Self-hosted Tinylogs
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, December 25, 2024
IRC logs for Wednesday, December 25, 2024
[Meme] Time to Also Investigate Bill Gaetz
Investigation overdue
IBM Has Almost Obliterated or Killed the Entire Fedora Community (Not IBM Staff)
Remaining Fedora insiders are well aware of this, but bringing this up (an "accusation" against IBM) might be a CoC violation
Links 25/12/2024: Fentanylware (TikTok) Scams and "Zelle Scams Lead to $870M Loss"
Links for the day
Links 25/12/2024: Windows TCO Brought to SSH, Terence Eden 'Retires'
Links for the day
Links 25/12/2024: Latest Report Front Microsoft Splinter Group, War Updates
Links for the day
Links 25/12/2024: Hong Kong Attacks Activists During Holidays, Xerox to Buy Lexmark
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, December 24, 2024
IRC logs for Tuesday, December 24, 2024
Gemini Links 25/12/2024: Open Source Social and No Search
Links for the day
Brittany Day Connects Windows Ransomware to "Linux" Using Microsoft LLMs (FUD Galore, Zero Effort, No Accountability)
FUD and misinformation made by Microsoft LLMs again?
Links 24/12/2024: Labour Strikes and TikTok Scrambling to Prop Up Radical Politicians That Would Protect TikTok
Links for the day
Where the Population is Controlled by Skinnerboxes Inside People's Pockets (or Purses)
A very small fraction of mobile users practise or exercise freedom/control over the skinnerbox
[Meme] Coin-Operated Publishers (Gaming the Message, Buying the Narrative)
Advertise (sponsor) to 'play'
Advertisers and Their Covert Impact on Publications' Output (or Writers' Topics of Choice, as Assigned or Approved by Editors)
It cannot be trivially denied that sponsorship in the form of "advertising" impacts where publishers go (or don't go, won't go)
Terrible Year for Microsoft Windows in Cyprus
down from 86% to 72% since January
[Meme] How to Kill Unions (Staff on Shoestring Budget Cannot Afford Lawyers)
What next for the EPO? "Gig economy"?
The EPO's Staff Union (SUEPO) Takes Legal Action to Rectify the Decrease in Wages (Lessening of Purchasing Power)
here is what the union published
Gemini Links 24/12/2024: Deedum Gemini Client Gets Colour Support, Advent of Code 2024
Links for the day
Microsoft Windows Slides to New Lows in Colombia
Now Windows is at an all-time low
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, December 23, 2024
IRC logs for Monday, December 23, 2024