• Article

Supply-chain vulnerabilities loom large on the cybersecurity landscape, with threats and attacks such as SolarWinds, 3CX, Log4Shell and now XZ Utils underscoring the potentially devastating impact of these security breaches. The latter examples of Open Source Software (OSS) attacks are a growing attack vector. In fact, nearly three-quarters (74 percent) of UK software supply chains have faced cyber attacks within the last twelve months.

Expect attacks on the open source software supply chain to accelerate, with attackers automating attacks in common open source software projects and package managers. Many CISOs and DevSecOps teams are unprepared to implement controls in their existing build systems to mitigate these threats. In 2024, DevSecOps teams will migrate away from shift-left security models in favor of “shifting down” by using AI to automate security out of the developers’ workflows.

Continue reading →

Details are continuing to emerge daily on the hacking of Snowflake customers who have had their data stolen in what is shaping up to be one of the most significant attacks in years. So far, at least 165 of Snowflake’s customers, including household names like Ticketmaster, Santander Bank, and Advanced Auto Parts, have been identified as having their data impacted in this incident. 

While initial reports indicated that Snowflake itself had been hacked, with some evidence pointing to a former employee’s demo account having been compromised, this attack was actually far more interesting because of what it tells us about the current state of security in the cloud.

Continue reading →

Hatch Baby has issued a recall for approximately 919,400 power adapters sold with its Rest 1st Generation smart sound machines in the United States and an additional 44,352 units in Canada due to a shock hazard. The problem stems from the plastic housing of the AC power adapters which can detach when removed from the outlet, exposing the power prongs and creating a risk of electric shock.

The recalled adapters have the model number CYAP05 050100U and were sold exclusively with the Rest 1st Generation Sound Machine. These were not available for separate purchase. The affected adapters have a white rectangular plastic housing and feature labels such as "Jiangsu Chenyang Electron Co. LTD" and "Made in China." They were sold from January 2019 through September 2022 at various retailers including Hatch.co, Amazon, BuyBuyBaby, Target, Walmart, Nordstrom, Pottery Barn Kids, and BestBuy, with prices ranging from $60 to $200.

Continue reading →

Peppermint OS has announced updates to its lineup, introducing a new version called “Fully Loaded,” alongside its traditional lightweight Xfce desktop. The original Peppermint OS offers a minimalist interface and is available in 32-bit and 64-bit options, emphasizing efficiency and customization with only essential applications installed.

“Peppermint Fully Loaded” is designed for users who prefer a ready-to-use desktop. This version is pre-equipped with a full suite of applications including Firefox, GIMP, LibreOffice, and Thunderbird, aimed at providing a comprehensive user experience from the start. Additional tools like Btop++ for process monitoring, xDaily for system maintenance, and pfetch for system information are also included.

Continue reading →

OpenMandriva has released a new candidate version for its rolling release model, ROME 24.07. This update brings Plasma 6 as the default desktop environment, incorporating various new features and improvements.

This version ensures compatibility between Plasma 5 and Plasma 6 packages, allowing users to choose their preferred environment. It's important to note that ROME 24.07 and the upcoming OMLx Rock 5.1 will be the final versions to include the Plasma 5 desktop, indicating a future shift towards exclusive updates for Plasma 6.

Continue reading →

In Practical Artificial Intelligence Programming with Python: From Zero to Hero, veteran educator and photophysicist Dr. Perry Xiao delivers a thorough introduction to one of the most exciting areas of computer science in modern history.

The book demystifies artificial intelligence and teaches readers its fundamentals from scratch in simple and plain language and with illustrative code examples.

Continue reading →

As fireworks light up the night sky this July 4, consider celebrating Independence Day by declaring your freedom from the tyranny of Windows 11 and switching to Linux. It's what George Washington would want you to do (probably). Even if you're not based in America, you should consider doing it anyway.

Linux, unlike Microsoft's OS which operates under corporate oversight and restrictive licenses, offers a liberating alternative. The open-source nature of it means users can modify, enhance, and distribute their software freely, avoiding the legal and financial constraints associated with proprietary systems. Most distros can be tried out live without needing to be installed, so if you can't get on with one, you can try another without risk.

Continue reading →

Web services company Proton has long been known for its privacy-centered products including Proton VPN and encrypted cloud storage in the form of Proton Drive.

Today the Swiss company is launching Docs in Proton Drive, a secure and end-to-end encrypted document creation, editing, and collaboration tool integrated with Proton's existing cloud storage product.

Continue reading →

Half of respondents say that they would not feel free from repercussions if they reported a cybersecurity mistake within their organization.

A new survey from ThinkCyber Security also shows that a quarter of cybersecurity professionals doubt their colleagues change their behavior with current security awareness training, and 60 percent admit they only get training once every few months or even just once a year.

Continue reading →

Data centers have a strong emphasis on performance and delivering workloads whilst remaining power efficient.

In order to deliver on these aims the open instruction set architecture RISC-V is increasingly being used as an accelerator in data centers since it offers a lot of flexibility, which is especially important with AI. We spoke to Ian Ferguson, senior director at SiFive to discuss why this technology has become key to the server market.

Continue reading →

PowerToys updates are always keenly received, and while users are hoping for new utilities every time, even those releases that are focused on "stability and improvements" can be exciting.

The release of PowerToys v.082.0 does not, sadly see the addition of new modules, but it is a big release. The number of bug fixes and tweaks is impressive, but there are also many new options scattered liberally across the suite of utilities.

Continue reading →

Kioxia has announced the start of sample shipments for its new 2Tb Quad-Level-Cell (QLC) memory devices, leveraging its eighth-generation BiCS FLASH 3D flash memory technology. This release represents the highest capacity offering within the industry to date, aimed at addressing the needs of AI and other high-demand applications.

The 2Tb QLC product features a bit density that is approximately 2.3 times higher and a write power efficiency around 70 percent greater than Kioxia's previous fifth-generation QLC device. It includes a 16-die stacked architecture within a compact package size of 11.5 x 13.5mm and a height of 1.5mm, achieving a total capacity of 4TB.

Continue reading →

YEYIAN GAMING has announced the release of the AVANCE Series 25" FHD 240Hz gaming monitor (buy here now). This new addition to YEYIAN's product lineup offers a high refresh rate, fast response time, and enhanced color accuracy, designed to improve the gaming experience. Priced at $139.99, there is currently a $10 clickable coupon.

The AVANCE Series monitor is engineered to provide smooth gameplay through its 240Hz refresh rate and 1ms response time, which help to minimize motion blur and ghosting. It also features a 92 percent sRGB color gamut that displays a wide range of colors for greater visual fidelity.

Continue reading →

Sabrent has launched the Rocket V60 microSDXC Memory Card, designed for photographers, videographers, and digital creators who require high-speed, reliable storage solutions. This memory card supports up to 8K video recording, ensuring smooth capture of high-resolution images and videos, making it suitable for both professional and hobbyist use.

The Rocket V60 offers a capacity of up to 512GB and complies with the V60 standard, which guarantees a minimum write speed of 60MB/s. This feature is essential for uninterrupted 8K video recording. The card also satisfies the A1 standard, ensuring high input/output operations per second (IOPS) for efficient performance across various file types.

Continue reading →

Canonical has introduced Firefighting Support, a service specifically designed for organizations that manage their own infrastructure but require expert assistance for troubleshooting Ubuntu systems. This service, billed annually per node, provides rapid response times and comprehensive support, including Ubuntu Pro.

Firefighting Support ensures that customers receive help from Canonical Managed Solutions engineers within an hour of reporting a high-severity issue, facilitated through video calls. This service also includes Ubuntu Pro + Support, offering 24/7 assistance for selected products without additional fees, ensuring continuous and reliable support.

Continue reading →