Top stories
AI-Generated Domains Used in Phishing Attacks via Phantom Squatting
Attackers are purchasing domains created by AI models before anyone else, leveraging misplaced trust from users. This tactic, termed 'phantom squatting' by Palo Alto Networks' Unit 42, poses significant risks as AI-generated links can mislead users into visiting malicious sites.
New PamStealer Malware Targets macOS with Credential Theft via PAM
PamStealer, a newly discovered macOS malware, uses a two-stage attack to steal user credentials. The malware masquerades as the Maccy clipboard manager and validates passwords through macOS's Pluggable Authentication Modules. This novel use of Apple's native mechanisms presents unique security challenges.
Short Leash AI Coding Method Proposed for High-Quality Software Development
A new AI coding approach emphasizes close oversight by developers to enhance software quality, avoiding common pitfalls of existing methods. The author critiques current AI usage in coding, advocating for a more hands-on strategy to maintain control and coding standards.
Co-locating workflow systems within Postgres enhances transaction handling
Co-locating workflow systems with application data in Postgres allows for database transactions to be managed together, reducing risks of partial failures. This approach simplifies challenges like idempotency and atomicity, providing a more efficient error-handling mechanism.
GaN Technology Driving Shift to Smaller Laptop Chargers
Laptop chargers are becoming smaller and lighter due to the adoption of GaN semiconductor technology. This shift allows for reduced size by 40-50% while maintaining high power efficiency and faster charging capabilities.
Digitas CEO Amy Lanzi Critiques AI's Role in Advertising
Amy Lanzi, CEO of Digitas North America, argues that AI will not solve the challenges in advertising, emphasizing the need for realistic expectations. She highlights the shift in marketing roles toward data-driven business results, while cautioning against overpromising AI capabilities in the industry.
Comparison of HDMI 2.1, USB-C, and DisplayPort for Monitors
Different monitor connections serve distinct purposes: HDMI excels in media, while DisplayPort suits gaming and multi-monitor setups. The choice of connection should depend on the devices being used and their compatibility with the standards.
Challenges of Identity Lifecycle Management for AI Agents
Identity lifecycle management systems, designed for human employees, struggle to accommodate AI agents. This gap presents governance issues as enterprises increasingly integrate autonomous agents, necessitating updates to existing frameworks.
BitTorrent Celebrates 25 Years: A Controversial Legacy of File Sharing
Today marks the 25th anniversary of BitTorrent, created by Bram Cohen in 2001. The app's impact on file sharing and piracy has shaped the internet and posed significant challenges for the entertainment industry.
AI and human expertise must evolve together in IT and security fields
Organizations are increasingly using AI to automate tasks traditionally performed by junior analysts, which risks diminishing the apprenticeship opportunities crucial for developing skilled operators. Without intentional restructuring, companies may lose the deep analytical expertise needed to manage complex systems effectively in the future.
Venture Capital Faces Challenges with Data and AI Integration
Venture capital is increasingly challenged by ineffective data usage and AI adoption. Investors struggle with data presented by founders, complicating decision-making and emphasizing the need for better data practices in investment processes.
Capital One Appoints Prem Natarajan as Chief Scientist to Enhance AI Development
Prem Natarajan has been appointed as Chief Scientist at Capital One to lead AI initiatives tailored for financial services. His role will focus on translating AI advancements into practical solutions for complex financial problems, distinguishing Capital One's approach from traditional views on technology in finance.
AI's Impact on the Role of Mathematicians
Researchers discuss how AI tools could alter the motivations and approaches of mathematicians.
Amazon's Astro Offers Insights on Robot Character Design
Amazon's Astro robot highlights the importance of character in consumer robotics, distinguishing it from voice assistants like Alexa. The development team's choice to prioritize Astro's unique persona over simply functioning as a mobile Alexa resonated with users, showing that character influences user experience significantly.
ExpressVPN Enhances Password Manager with Secure Sharing and Passkey Support
ExpressVPN has upgraded its password manager, ExpressKeys, to include new features like secure sharing and passkey support. These updates address the increasing demand for more secure data handling.
Vinton Cerf, 'Father of the Internet,' retiring from Google next week
Vinton Cerf will retire as Google's chief internet evangelist after over 20 years with the company. Cerf, known for co-developing TCP/IP, is recognized as a foundational figure in internet technology, impacting its development since the 1970s.
Wayve offers $85M employee tender at $8.5B valuation
Wayve has initiated an $85 million tender offer for employees to sell vested shares at an $8.5 billion valuation. This measure aims to retain talent amid a rising trend in AI startups providing liquidity options for employees, ensuring they remain with the company instead of pursuing other opportunities.
Dish files for Chapter 11 bankruptcy, plans to continue operations
Dish has filed for Chapter 11 bankruptcy due to inability to repay $2 billion in debt. The company plans to maintain operations of its Dish TV and Sling TV brands while restructuring to emerge from bankruptcy by late 2026.
Google introduces TabFM, a zero-shot foundation model for tabular data
Google Research has launched TabFM, a zero-shot foundation model aimed at improving classification and regression tasks with tabular data. This model eliminates manual hyperparameter tuning and feature engineering, allowing high-quality predictions in a single step, representing a significant advancement over traditional supervised learning approaches.
Reddit mandates login for accessing old.reddit.com to curb automated traffic
Reddit will require users to log in to access old.reddit.com starting over the next month. This change aims to reduce abusive scraping and automated traffic impacting the platform's functionality.
AWS launches CloudFormation Express mode to accelerate infrastructure deployments
AWS introduced CloudFormation Express mode, reducing deployment times by up to 4x by bypassing stabilization checks. This enables faster iterative workflows and supports AI-assisted development by allowing quicker feedback loops.
Brain2Qwerty v2 achieves real-time sentence decoding from non-invasive brain recordings
Brain2Qwerty v2 offers a non-invasive method for real-time sentence decoding with 61% accuracy, improving significantly over previous methods. This advancement aims to assist individuals with communication impairments due to brain lesions, providing a scalable alternative to invasive techniques.
Amazon fined $2.25 million for mishandling identity theft complaints
Amazon has been fined $2.25 million by the FTC for failing to assist identity theft victims as required by the Fair Credit Reporting Act. The FTC alleged that Amazon did not provide information on fraudulent purchases, leading to significant difficulties for customers affected by identity theft.
Amazon halts new Fire Stick models supporting sideloading due to malware concerns
Amazon has stopped releasing new Fire Stick models that allow sideloading of apps, citing malware risks. This shift to its Vega OS, which does not support sideloading, comes amid ongoing concerns about streaming piracy and aims to give Amazon greater control over device functionality and user experience.
Amazon Launches New EC2 Instances Powered by Graviton5 Processors
Amazon has released new EC2 instances, the M9g, M9gd, C9g, and C9gd, powered by Graviton5 processors. These instances offer substantial performance improvements, with the M9g enhancing MySQL database query performance by 60% and the C9g offering 25% higher performance per vCPU for compute-intensive workloads. This development is significant for businesses utilizing cloud computing, promising improved efficiency and cost management for various applications.
NASA considers sending Perseverance rover model to the Moon
NASA is evaluating the possibility of sending the engineering model of its Perseverance rover, named 'Promise,' to the Moon to assist in exploring the lunar south pole. The rover would utilize a nuclear-powered generator, allowing it to operate during the lunar night and access challenging terrains.
Webernetes: Kubernetes Ported to TypeScript for Browser Usage
Webernetes, a partial port of Kubernetes to TypeScript, allows users to run clusters directly in the browser. This development enables interaction with Kubernetes-like features without requiring WebAssembly or extensive code distribution.
Google discontinues Tenor GIF API affecting X, Discord, and others
Google has officially shut down the Tenor API, a service that allowed platforms like X and Discord to integrate animated GIFs. This move aims to streamline Google's resources and signals a shift away from free services that lack profitability.
Former DeepMind Researchers Launch AI Trading Startup Valued at $500M
Three former DeepMind researchers have established EquiLibre Technologies, an AI startup applying reinforcement learning to stock trading. The startup has recently raised a Series A round and achieved a valuation of $500 million, contributing to quant hedge funds with strong trading performance.
AWS Certificate Manager Adds ACME Support for Automating TLS Certificate Issuance
AWS Certificate Manager now supports the Automatic Certificate Management Environment (ACME) protocol for public TLS certificates, allowing automated issuance and management without manual intervention. This update enables centralized control for PKI administrators and helps organizations streamline certificate management as validity periods shorten.
Research reveals vulnerabilities in AI browsers allowing potential exploitation
New research shows that AI browsers can be manipulated into a false context, enabling malicious actions. This exposure underscores the risks of AI integration without addressing core vulnerabilities.
Google's NotebookLM Introduces TikTok-Style Video Summaries for Research
Google's NotebookLM now allows users to create 60-second AI-generated video summaries of their research. This feature is available to Google AI Ultra and Pro subscribers, enhancing the ways users can interact with their notes.
ScarfBench Launches as New AI Benchmark for Java Framework Migration
ScarfBench provides a new open benchmark to evaluate AI agents on Enterprise Java framework migrations. It focuses on ensuring successful builds, deployments, and behavior preservation across major Java ecosystems like Spring and Jakarta EE, addressing gaps in existing AI-assisted modernization efforts.
RFK Jr. expands FDA advisory panel with pro-peptide members amidst FDA opposition
Robert F. Kennedy Jr. has increased the number of supporters on an FDA advisory panel to advocate for the approval of injectable peptide drugs, which the FDA has deemed ineffective and potentially unsafe. The upcoming panel meetings will evaluate multiple peptide drugs for various uses, raising concerns about regulatory integrity and safety assessment.
IO Interactive lays off staff amid project shift but commits to Project Fantasy
IO Interactive is laying off staff following the end of its partnership with a publisher for Project Fantasy, described as an online fantasy RPG. Despite these cuts, the company remains committed to the project's development.
Etched achieves $5B valuation with $1B in AI chip sales contracts
Etched, a competitor to Nvidia, has reached a $5 billion valuation and secured $1 billion in sales for its AI chips. The startup's 'frontier inference clusters' aim to address efficiency challenges in AI inference processes, drawing significant investor interest.
Microsoft Identifies Risks from Poisoned MCP Tool Descriptions for AI Agents
Microsoft research reveals that poisoned tool descriptions can enable attackers to coerce AI agents into leaking sensitive data without triggering alarms. This issue arises particularly as companies empower AI agents for more complex tasks, highlighting vulnerabilities in the Model Context Protocol (MCP).
RustDuck Botnet Targets Routers and Servers with Two-Stage Malware
The RustDuck botnet is hijacking devices like routers and cameras to execute DDoS attacks. Its significance lies in its rapid evolution and the transition from C to Rust, making analysis more difficult.
GitHub introduces new license compliance feature for open source management
GitHubβs Open Source Programs Office has launched a new License Compliance feature to help manage open source dependencies. This tool aims to ensure compliance with license obligations, reducing legal risks associated with open source usage.
Threads enhances Live Chats with new features and expands user access
Meta's Threads introduces new features to its Live Chats, including translation support and tools for hosts. The platform is also expanding Live Chats access to highly followed users, aiming to improve real-time engagement and community interaction.