Agregátor RSS

Jistota složená na úhradu dluhů nájemce vůči pronajímateli se úročí. Platí to i při podnájmu bytu, když kauci skládá podnájemce nájemci?

NuttX je otevřený real-time operační systém nabízející POSIX kompatibilitu a podporu spousty malých a levných mikrokontrolérů. Ukážeme si, jaké má možnosti, jak ho nakonfigurovat a používat k embedded programování.

Integrovaný obvod POKEY tvoří společně s čipy MOS 6502, ANTIC a GTIA základ osmibitových domácích mikropočítačů Atari. POKEY provádí několik operací. Dnes se zaměříme na jeho možnosti v oblasti generování zvuků a hudby.

Nadcházející procesory Intelu měly přinést podporu instrukční sady APX, která měly přinést výkonnostní bonus. Ukázalo se však, že některé instrukce nové procesory dobře nezvládají a zůstanou vypnuté…

Attackers are actively exploiting CVE-2026-5027, a high-severity path traversal vulnerability in the AI development platform Langflow, to write arbitrary files on exposed servers. [...]

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain attacks, was briefly open-sourced on GitHub. [...]

GitHub has announced that npm v12, expected next month, will introduce several security-focused changes aimed at blocking supply-chain attacks abusing behaviors triggered by the 'npm install' command. [...]

They are angry at Redmond and will have their revenge. Nightmare Eclipse, the prolific bug hunter and possibly disgruntled ex-Microsoft employee, disclosed another zero-day vulnerability just hours after Redmond issued a record-breaking number of CVEs and fixes for June Patch Tuesday. The latest zero-day, RoguePlanet, targets Microsoft Defender and works against fully patched Windows 10 and Windows 11 systems, according to the researcher, who also released proof-of-concept exploit code for the security flaw. Assuming the attacker can win a race condition, this bug allows local privilege escalation and leads to SYSTEM-level control over an affected machine. Nightmare Eclipse (aka Chaotic Eclipse) is a disgruntled bug hunter with a deep understanding of Windows and an even deeper grudge against Microsoft. They claim to be an ex-employee, and accuse Redmond of ignoring vulnerability reports and refusing to communicate with them. "When I actively asked you to communicate with me, you refused, humiliated me and made sure to insult me in front of people," they wrote in an earlier blog post that also promised a “bone shattering” drop on July 14. "You defame me in public with your CVE-2026-45585 advisory even though you literally deleted the Microsoft account I used to report bugs to you with and I got zero pennies from doing so and I still happily did like an idiot," the post continued. Possibly as an outlet for this anger, and reportedly in response to Redmond's lack of action, Nightmare began releasing their findings to the public. RoguePlanet marks the seventh Microsoft zero-day that they found and disclosed - accompanied by either a PoC exploit or technical details - before Redmond issued a fix. Microsoft's initial response to those disclosures was widely interpreted as a threat of legal action, prompting massive outrage from the broader infosec community before Redmond sought to calm the backlash by stating it had "no intention to pursue action against individuals conducting or publishing security research." As of Tuesday, the previous six zero-days all have patches. Three of them, RedSun, UnDefend, and BlueHammer, came under attack soon after Nightmare published working exploit code for each and before Microsoft released security updates to address the flaws. The other three, YellowKey, GreenPlasma, and MiniPlasma, all have been fixed as of June’s Patch Tuesday. YellowKey (aka CVE-2026-45585) is a security feature bypass bug in Windows BitLocker. An attacker with physical access to the vulnerable system could bypass the BitLocker Device Encryption feature and gain access to the device's encrypted data. GreenPlasma (aka CVE-2026-45586) and MiniPlasma (aka CVE-2020-17103) are both privilege escalation flaws in the Collaborative Translation Framework (CTFMON) and the Cloud Files Mini Filter Driver that can be abused by an authorized attacker to elevate privileges locally and gain SYSTEM access. When asked about RoguePlanet, a Microsoft spokesperson told The Register that the Windows giant is “aware of the reported vulnerability and is actively investigating the validity and potential applicability of these claims." The spokesperson continued: "Microsoft is committed to investigating security issues and updating impacted products to protect customers as soon as possible. Importantly, we support coordinated vulnerability disclosure, an industry standard that protects customers and supports the research community by ensuring their findings are thoroughly investigated and addressed before being made public." Soon after Nightmare published a PoC for RoguePlanet, the ThreatLocker threat intelligence team validated the exploit code and said that they were “actively assessing impact, affected systems, and additional mitigations,” promising to share more findings “as they become available.” Tharros Labs senior vulnerability analyst and long-time respected security sleuth Will Dormann said he tested the exploit code, too. “It's reportedly not 100% reliable, but it worked on the first attempt for me,” Dormann wrote. Nightmare, for their part, rolled back the promise of a “bone shattering” drop on July 14. “(Un)fortunately I will be unable to mass disclose zerodays in July 14th, RoguePlanet took way more time than expected and truly drained me,” the researcher said on Tuesday. “I might take a break but I can't say for sure what I will be doing for next month, maybe it's nothing, maybe it's smtg. But the big thing is not happening. I did not intend to spread a mass panic with that post and I apologize for doing so.”®

Oracle PeopleSoft servers are being targeted in ongoing data theft attacks by the ShinyHunters extortion gang, which claims to have stolen data from over 100 organizations. [...]

New drugs are taking on the slippery molecular switches that fuel deadly cancers—and AI is speeding up the hunt.

For decades, a handful of molecular switches has haunted the nightmares of cancer researchers. The switches trigger runaway tumor growth and cause the disease to spread across the body in multiple cancers. In theory, this makes them perfect treatment targets. Blocking even one could lead to drugs that are effective against a variety of cancers.

But despite considerable efforts, these switches—all of which are proteins—have escaped our most advanced cancer treatments, earning them the term “undruggable.” This is largely due to a shared trait: They all have smooth surfaces, making it difficult for drugs to interact with them.

But maybe not for much longer.

Researchers recently reported promising results for a new medication targeting a family of undruggable proteins in a clinical trial for advanced pancreatic cancer. The drug, daraxonrasib, nearly doubled survival time compared to chemotherapy, with fewer side effects. It’s not a total cure. But the treatment gives patients precious time, adding roughly 13 months after diagnosis. Patients also reported less pain and better quality of life.

Daraxonrasib is the latest in a new generation of drugs aimed at undruggable proteins. And AI-based tools are now poised to further accelerate progress in the field.

RAS Attack

The RAS family was the first group of oncogenes—or genes that drive cancer—ever discovered. The genes became a major focus in 1982 when several teams independently showed the mutation of a single DNA letter could transform RAS genes into a potent cancer trigger.

The proteins RAS genes encode are like spring-loaded molecular switches that relay signals from a cell’s surroundings. When proteins called growth factors latch onto a cell, RAS switches flip on to promote cell growth and survival, while built-in safeguards quickly turn them off again.

Cancerous mutations break this cycle. The switches get stuck in the “on” position, continuously instructing cells to grow and divide. This is, of course, a hallmark of cancer.

An ideal drug would simply switch RAS off. But most drugs are like rock climbers. They need grooves, pockets, or bumps on a protein to grab onto. Similar to a smooth rock face, RAS offers few such features. Making matters worse, different mutations subtly reshape the protein, so it’s tough to build a one-size-fits-all inhibitor.

The first RAS drug wasn’t approved in the US until 2021, nearly four decades after discovering the genes’ role in cancer. Even then, the drug targeted just one family member of three, limiting its reach to a relatively small group of patients. Many eventually developed resistance.

That’s why daraxonrasib turned heads. Developed by Revolution Medicines in Redwood City, California, the drugs switches off all three RAS family members. Rather than trying to grip the slippery proteins directly, it binds to a partner molecule that helps RAS proteins fold into their final 3D shapes. In this way, the drug hitches a ride on active RAS and shuts the proteins down.

The workaround paid off. The new study enrolled 500 people worldwide with advanced pancreatic cancer. All participants had already tried cancer therapies with limited success. On average, patients receiving daraxonrasib lived 13.2 months and spent most of that time with limited pain. The most common discomfort was a rash. Those receiving chemotherapy fared worse, living roughly 6.6 months and experienced more severe side effects.

The results don’t rival the dramatic success of CAR T cell therapies in blood cancer. In CAR T, caregivers engineer a patient’s own immune cells to recognize and attack tumors, sometimes producing long-lasting remission after a single infusion.

But the findings have energized the field. If approved, a daily daraxonrasib pill would likely be far more affordable and easier to administer than a personalized cell therapy. And because RAS mutations fuel many solid cancers—which CAR T still struggles to control—the drug could offer a new defense against deadly cancers that are largely beyond cell therapy’s reach. Combining daraxonrasib with earlier-generation RAS inhibitors may further boost its effects.

The Genome Guardian

Daraxonrasib didn’t appear overnight. Scientists used a crystallized snapshot of its target protein as a molecular blueprint. Years of medicinal chemistry followed, with scientists repeatedly tweaking candidate compounds to boost potency, improve selectivity, and minimize toxicity.

AI could dramatically accelerate similar efforts against other undruggable cancer targets. Among the most coveted is p53, often called the “guardian of the genome” for its dizzying array of roles. The protein orchestrates the activity of over 300 genes involved in DNA repair, metabolism, cell death, and inflammation, making it one of the cell’s most important defense systems.

Since its discovery in 1979, p53 has been both a holy grail and a headache for cancer researchers. Mutations in the gene are common in multiple cancers. But like RAS, the protein is flat and smooth. Some mutations destabilize its structure; others turn it into misfolded clumps. A universal p53 drug has remained elusive.

Some researchers are trying to restore the protein. In a small trial earlier this year, they tested a drug that restabilizes a common mutant form of p53. Within 21 days, tumors shrank roughly 20 percent in patients with ovarian, breast, and several other solid cancers.

Other researchers aim to selectively kill cells carrying the mutation. Using AI, a team at Baylor College of Medicine screened nearly 10 million compounds that cause mutated p53 cells to self-destruct, while sparing healthy cells. The search uncovered 83 chemically distinct candidates. One called H3 dramatically suppressed tumor growth in mice.

“These results highlight the potential use of AI-powered drug screening to investigate individual p53 mutants in the future,” they wrote. Although the approach is early-stage and only focused on one mutation, the team is hopeful it can be extended to other cancerous mutations.

Most Wanted

MYC is another formerly undruggable protein that could now be vulnerable. Roughly 70 percent of cancers have abnormal MYC activity. Normally, the protein is a master regulator of growth, directing cells to manufacture proteins, replicate DNA, absorb nutrients, and divide when needed.

Cancer finds many ways to hijack the system and keep cells in a state of runaway growth. MYC gene mutations aren’t just single-letter swaps. Sometimes the gene duplicates or is rearranged across the genome, churning out excessive amounts of the protein it encodes. This genetic diversity makes approaches using gene therapy difficult. And again, like RAS, the MYC protein’s smooth, featureless surface lacks stable anchors for drugs.

An emerging strategy is to disrupt MYC’s interaction with other proteins that it needs to function. A designer protein blocking MYC activity, for example, recently showed promise in a small trial against solid cancers. Other teams are using AI to identify drugs that limit MYC’s ability to fix damaged DNA in tumors, kneecapping their ability to divide. Meanwhile, biotechnology companies are deploying AI to map out MYC’s structure and molecular interactions in search of new ways to shut the protein down.

Daraxonrasib’s success shows that undruggable proteins aren’t untouchable. There’s a lot more work ahead to prove other similar drugs can work too. But scientists are increasingly leaning into AI during all stages of drug development to speed up the process. Maybe, one day, “undruggable” will disappear from our vocabulary altogether.

The post After Decades of Failure, ‘Undruggable’ Cancers Begin to Give Way appeared first on SingularityHub.

Naučte se plánovat trasy jako profík. Na webu to jde lépe než v mobilní aplikaci. • Na Mapách.com se můžete vrátit ke starším leteckým snímkům i Panoramě. • Mapy.com poradí, co je v okolí zajímavého k navštívení.

Apple Silicon Macs fail at less than half the rate of Intel Macs, dramatically reducing the platform’s already industry-leading total cost of ownership (TCO), according to data revealed by London, UK-based Apple reseller Hoxton Macs.

While it’s true the data is based on a relatively small sample group, it does seem to reflect what the industry in general sees.

Apple’s chip design transforms Mac reliability

The success of Apple Silicon hardware is attributed to its simpler design, which integrates multiple components into a single chip, reducing the number of potential failure points. Additionally, Apple Silicon Macs run cooler, leading to less wear and tear on components such as batteries and USB-C ports, the report says. Across the wider laptop market, most studies show hardware faults affect one in five non-Apple machines over their first three years in use.

This builds on Apple’s enduring record for making good hardware as independent reliability surveys consistently rank the company as the most reliable laptop brand. To some extent, the data reflects the anecdotal experience most Mac users have — their computers seem to last much longer than other systems do, which helps them retain value on the second-user market.

Apple already had a good story to tell in terms of tech support before it introduced Apple Silicon machines. More than a decade ago, Fletcher Previn, then vice president of Workplace-as-a-Service at IBM, told the Jamf Nation User Conference that just 5% of IBM’s Mac-using employees needed to call the help desk; in contrast, an astonishing 40% of PC-using staff had to do so. That difference is significant because it translates into serious differences in cost; each tech support call made by those working on your ailing PC fleet has a price.

That TCO difference prompted Previn to say, “I can confidently say every Mac that we buy is making and saving IBM money.” Years later, as CIO at Cisco, he said the company’s tens of thousands of Mac users experienced five times fewer cyberthreats and nine times fewer virus issues than PCs, and that Cisco needed 33% fewer engineers to manage the Macs.

Those impressive real-world data points reflected Macs in the pre-Apple Silicon world. Those Intel Macs already worked better for longer and required less tech support. This month’s Hoxton Macs data, while based on a much smaller sample group, suggests that this particular advantage has grown even greater now. And it’s not just down to the silicon.

Fewer parts, less heat, fewer failures

Apple has designed its processors to deliver excellent performance per watt. Because these are SoCs (System on Chips) the power requirement to drive all the system components is that much lower, and it means whole categories of component failure are removed. The design also means they use less energy and generate less heat to run, dramatically reducing thermal wear and tear. 

“Fewer parts, less heat, simpler construction: the result is a machine with markedly fewer ways to break,” Hoxton Mac said in an extensive article explaining its data.

>Failure rates are consequential to everyone. Even a small failure rate means some people will end up with Macs that have hardware issues, which is always a problem for those affected. But the low fail rate should be reassuring to the millions of people switching to Apple’s  href="https://www.computerworld.com/article/4180406/after-a-quick-1-1m-sales-macbook-neo-set-to-reshape-the-pc-industry.html">even cooler-running MacBook Neos>. 

Those users might now justifiably look forward to lower running costs from their new computers, combined with good resale rates once they’re ready to upgrade. It doesn’t hurt Apple’s platform loyalty either — making it even more likely those millions of users will stay with the Mac rather than going back to where they were before.

You can follow me on social media! Join me on BlueSky,  LinkedIn, Mastodon and The Core.

Cybersecurity researchers have warned of a "resurgence and expansion" of JDY, a covert network associated with China-nexus state-sponsored threat actors. "The JDY botnet comprises over 1,500 SOHO [small office and home office] and IoT devices and operates as a centrally controlled, high-performance scanner used to discover, fingerprint, and continuously map exposed services at scale," Lumen's Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]

Open ports have a way of accumulating over time. A test environment gets deployed and never removed. An administrative interface is exposed for troubleshooting and left in place. A database that was supposed to listen internally ends up reachable from the internet.

Fortinet, Ivanti, and SAP have released security updates to address multiple critical security vulnerabilities that could result in arbitrary code execution and information disclosure. The security flaw patched by Fortinet relates to a command injection vulnerability in FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS WEB UI. It's tracked as CVE-2026-25089 (CVSS score: 9.1). "An Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]

A high-severity security flaw in Langflow, an open-source low-code platform to build artificial intelligence (AI) applications, has come under active exploitation in the wild, according to findings from VulnCheck. The vulnerability in question is CVE-2026-5027 (CVSS score: 8.8), a case of path traversal that could allow an attacker to write files to arbitrary locations. "The 'POST /api/v2/Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]

The JDY botnet, a malware network previously associated with Chinese threat actors like Volt Typhoon, has significantly expanded its targeting scope and reconnaissance efforts. [...]

CISA added CVE-2026-11645 to its Known Exploited Vulnerabilities catalog after Google confirmed active exploitation of the flaw. The bug sits in V8, the JavaScript engine behind Chrome and Chromium.