Agregátor RSS

A previously undocumented China-aligned threat cluster dubbed LongNosedGoblin has been attributed to a series of cyber attacks targeting governmental entities in Southeast Asia and Japan. The end goal of these attacks is cyber espionage, Slovak cybersecurity company ESET said in a report published today. The threat activity cluster has been assessed to be active since at least September 2023. "

A previously undocumented China-aligned threat cluster dubbed LongNosedGoblin has been attributed to a series of cyber attacks targeting governmental entities in Southeast Asia and Japan. The end goal of these attacks is cyber espionage, Slovak cybersecurity company ESET said in a report published today. The threat activity cluster has been assessed to be active since at least September 2023. "Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]

An automated campaign is targeting multiple VPN platforms, with credential-based attacks being observed on Palo Alto Networks GlobalProtect and Cisco SSL VPN. [...]

A Tanzania-led study pitted gene-edited mosquitoes against a wide range of malaria parasites found locally.

Mosquitoes are an uncomfortable, itchy nuisance. But for people in sub-Saharan Africa, a bite could mean death. The pests are living incubators for the parasite that causes malaria. Roughly 600,000 people are killed by the disease each year, with most being children under five years of age.

Insecticides, malaria drugs, and mosquito nets saved a million lives globally in 2024 alone. But their efficacy is waning. Mosquitoes and the malaria parasite are becoming resistant to chemical inhibitors. And consistent, perfect use of physical barriers is hard to manage for years on end, especially for children.

Realizing this, scientists have turned to a drastic solution: Gene drives, a technology that skews the rules of inheritance. Rather than nature’s fifty-fifty chance of an offspring inheriting a gene from either parent, gene drives raise the possibility of a gene’s inheritance to over 90 percent—if not higher.

The tweak allows a gene to rapidly spread across entire populations. In lab tests encoding gene drives that reduce female mosquito fertility, mosquito populations have collapsed. Other experimental gene drives encoding genes that block parasite reproduction have suggested they could replace a natural population with one unable to carry malaria in just a few generations.

But these studies mostly used a specific type of lab-grown mosquito and older generations of the malaria parasite. Whether gene drives could keep naturally circulating malaria parasites in check, especially in countries where they’re most prevalent, was unknown.

This month, a research team from Tanzania and the UK found engineered mosquitoes conquered a wide variety of malaria parasites in blood samples collected from children in the area. Genetically altered in a new state-of-the-art biosecurity facility in Tanzania, the mosquitoes passed on genes that inhibit the parasite with breakneck speed and efficiency.

The promising findings are the latest from Transmission Zero, a Tanzania-led and internationally supported project to develop genetically based mosquito suppression.

“Gene-drive mosquitoes…offer unprecedented hope,” wrote study authors Alphaxard Manjurano at the National Institute for Medical Research Mwanza Center and Dickson Lwetoijera at the Ifakara Health Institute, both based in Tanzania.

Moving South

Gene drives shatter the laws of evolution. Rather than a fifty-percent chance of inheriting genes from a parent, gene drives pass genes down through generations with near-certainty.

Scientists engineer gene drives by first adding instructions to make the gene editing tool CRISPR. These instructions are genetically inserted into a single chromosome in a chromosome pair. The chromosomes in these pairs are inherited one from each parent. The drive hijacks the bug’s protein-making machinery to pump out Cas9 “scissors” that break the sister chromosome.

Rather than stitching the broken ends together, the cells use the gene-drive containing chromosome as a template for repair. And now both chromosomes contain the drive, ensuring it’ll be passed down to future generations.

Gene drive design is extremely versatile. Some drives target genes involved in female fertility, making mosquitoes sterile and quickly lowering their numbers. Others produce malaria antibodies in female mosquitoes when they drink blood, neutralizing the parasite and preventing it from spreading. Yet others propagate a protective gene that naturally wards off malaria in mosquitoes.

The latter strategies are gaining steam. Not everyone is keen on eliminating entire species. Mosquitoes may play diverse roles in ecosystems that we haven’t yet discovered. Kneecapping malaria parasites as they grow in mosquitoes seems like the safer bet.

But previous gene-drive mosquitoes were designed and tested using old, frozen malaria samples—a far cry from the genetic diversity and rapid evolution that make the parasite formidable in natural environments. Bringing the technology to regions heavily affected by the disease could help local communities better battle the disease.

Hidden Medicine

The new gene drive relied on previous efforts from George Christophides at Imperial College London who was also an author of the new study. Malaria parasites take roughly 10 days to incubate and develop inside mosquitoes. Once mature, they spread into the bug’s saliva, which can now infect people. Because the mosquito carriers don’t survive long past this period—but can do lots of damage in the meantime—delaying parasite development could crash the entire transmission cycle.

The team took inspiration from two small proteins that naturally cripple parasite development. One was discovered in the African clawed frog; the other in honeybees. Parasites in lab-grown mosquitoes, engineered to contain gene drives loaded with the proteins, took a few days longer to mature—precious time during which some of the bugs naturally died off.

Collaborators in Tanzania recreated these gene drive mosquitoes and tested them in a near real-world setting. After feeding on blood samples from local children infected by various strains of the parasite, the edited mosquitoes struggled to produce more of the pathogen.

“This is the first time a genetically modified, gene drive-compatible mosquito strain has been developed in Africa, by African scientists, targeting malaria parasites circulating in local communities,” said Lwetoijera in a press release. However, long-term monitoring is essential to make sure the parasite doesn’t develop resistance against the gene drive. The treatment presents a new way to slash malaria risks in plagued communities.

The project didn’t just rely on scientific insights. In a country with relatively low resources, little infrastructure, and hazy regulations, building the research program from the ground up was a top priority to ensure biocontainment safety. The study was conducted in a state-of-the-art facility specifically designed for this research, allowing local scientists to spearhead future genetic engineering efforts and field testing.

A daring trial to release the edited mosquitoes on an island in Lake Victoria is planned for the next phase. Throughout the project, Transmission Zero has worked with local communities to build trust in a bewildering technology. Plenty of protocols and planning need to be in place before a real-world test takes place. These include ecological risk assessment, regulatory oversight, and continued development of skills and expertise in staff leading the effort.

Both Manjurano and Lwetoijera stressed the importance of African leadership as the project moves along, ensuring that as the technology is developed and implemented it meets local priorities and ethical standards.

International collaborators agree. “Now, we want to move at the right speed. It is important that we’re not too fast and that we make sure people are supportive of this new technology, but we should also move with urgency and treat malaria as the emergency that it is,” said study author Nikolai Windbichler at Transmission Zero and Imperial College London.

The post New Gene Drive Stops the Spread of Malaria—Without Killing Any Mosquitoes appeared first on SingularityHub.

Tyto filmy a seriály byly v roce 2025 na Disney Plus mezi českými diváky nejoblíbenější. Nerozlišujeme žánr, stáří ani hodnocení na filmových webech. Jde o oblíbenost, kterou sleduje web FlixPatrol a počítá z ní souhrnné žebříčky.

Imagine it’s possible to balance regulatory desires to limit Apple’s market power with the welfare of the company’s existing customer base. Imagine a regulatory environment characterized by mutual respect and a willingness to collaborate on solutions, a place where Apple is forced to change some of its business practices, but in ways that benefit both competitors and customers.

That’s what you get in Japan.

How has Apple changed the App Store in Japan?

Following years of resistance and in order to bring its service in line with the Japanese equivalent of Europe’s Digital Markets Act (DMA) — Japan’s Mobile Software Competition Act (MSCA) — Apple has introduced a variety of changes to the way it runs its App Store. Described in depth on Apple’s own developer page, the changes made to iOS in Japan include:

App distribution

• App Store payment options on the App Store
• Distribution on alternative app marketplaces
• Creation of an alternative app marketplace
• Prioritization of child safety with alternative payments on the App Store
• New business terms

iOS capabilities

• Browser and search engine choice screens
• Default app controls
• Alternative web browser engines
• Side button access for voice-based
• Conversational apps
• Requests for additional interoperability.

What’s noteworthy about all these changes is that while Apple inevitably sees almost all of them as potentially threatening the existing App Store experience, the way in which they are being applied at least recognizes the need to protect customers.

That’s because, unlike in Europe, Apple says conversations with regulatory authorities have been constructive and collaborative, with respect given to the needs of customers, Apple’s own need to protect and benefit from its own IP, and the needs of competitors. 

The problem with Europe

European regulators, on the other hand, seem determined to apply the DMA in the toughest way possible and seem completely oblivious to what customers want and the need to maintain a unique platform experience. 

As a result, Apple believes the MSCA does a significantly better job protecting consumers than what other regulators have done.

There are significant examples that illustrate this.

• Take the idea of “additional interoperability.” In Europe, whenever Apple introduces a new feature, it must now make access to those features available to third parties from day one. It cannot control what is done by those companies with those features, and cannot prevent access in the event a developer abuses such access to the detriment of customers. It’s different in Japan; there developers can request access to Apple APIs. That means Apple can deny access to developers (such as Meta) who seek access to people’s private data for advertising or worse.
• When it comes to app distribution, while developers can choose to use Apple’s systems, their own systems, or a combination of systems — and have great freedom in terms of payment systems, web links and more — all apps made available to iOS must go through Apple’s App Notarization process. While this process isn’t as rigorous as App Store review, it does provide some oversight.
• In-app payments: It is always possible for customers to default to Apple’s payment system, no matter what system they have used before, while developers continue to pay fees for apps they sell. (Apple says 87% of developers distributing apps via the Japanese App Store pay nothing today, and will continue to do so). 
• Child safety in the digital age is a major issue for most parents. That’s why it’s such a surprise that the EU’s DMA introduces no explicit protection for children, while the MSCA allows Apple to try to protect kids. That means in Japan, age ratings mut be included for apps distributed outside the App Store, software in the Kids category can’t include transaction links, and Apple will integrate parental control in in-app purchases from all sources in future. Europe’s children have no such protection, though I suppose some clumsy legislation will deliver yet more damage to the existing user experience.

There are many additional differences between the collaborative Japanese approach and the fanatical steps put in place in Europe, Apple has pointed out. In Europe, regulators have adopted the toughest possible adoption of the rules, and have refused to even consider consumer welfare, says Apple. And while it is true that the company never wanted to accept these changes and still thinks they risk customer privacy and security, it also seems much more satisfied that even if they didn’t agree, the regulators in Japan were prepared to listen, learn, and develop positive compromise.

For the benefit of everyone?

Apple characterizes Japanese regulators as accepting the need to strike a balance between loosening Apple’s market power with the needs of customers. That’s not the same in Europe, where the hardline approach means some features might never appear as larger competitors seek to use the DMA to undermine Apple’s privacy and security protections. 

That’s the nub, really, as the European approach means only a very small number of wealthy competitors are really seeing any benefit, while customers suffer weaker privacy, security, and erosion of the user experience they chose. 

Perhaps the EU should adopt the Japanese approach? Doing so might not make Apple much happier, particularly as it doesn’t seem to have any intention to extend any of the changes to other jurisdictions unless forced. But it would at least deliver a better compromise between the needs of Apple, well-financed competitors and their political lobbyists, and consumers. Though it’s possible that once different approaches are in place in different markets, it will become easier to see which models deliver the best overall results.

It seems unlikely that benefit will come from Europe.

Follow me on social media! Join me on BlueSky,  LinkedIn, and Mastodon.

Law enforcement has seized the servers and domains of the E-Note cryptocurrency exchange, allegedly used by cybercriminal groups to launder more than $70 million. [...]

Nabíječka AlzaPower zlevnila na historické minimum. • Nabízí celkový výkon 67 W a tří výstupní konektory. • V akci jsou i modely s jiným výkonem a počtem konektorů.

NIS2 puts identity and access controls under the spotlight, with weak passwords and poor authentication now a compliance risk. Specops Software explains how to align password policies and MFA with NIS2 requirements. [...]

Letos na jaře jsem do své dílničky pořídil kapesní termotiskárnu na samolepící štítky B21S od asijského Niimbota. Komunikuje skrze Bluetooth a USB, stojí okolo tisícovky, k dispozici je nepřeberné množství formátů papíru a co všechno umí, se dočtete v dubnovém článku. Krátce poté se strhla lavina ...

Hewlett Packard Enterprise (HPE) has resolved a maximum-severity security flaw in OneView Software that, if successfully exploited, could result in remote code execution. The critical vulnerability, assigned the CVE identifier CVE-2025-37164, carries a CVSS score of 10.0. HPE OneView is an IT infrastructure management software that streamlines IT operations and controls all systems via a

Hewlett Packard Enterprise (HPE) has resolved a maximum-severity security flaw in OneView Software that, if successfully exploited, could result in remote code execution. The critical vulnerability, assigned the CVE identifier CVE-2025-37164, carries a CVSS score of 10.0. HPE OneView is an IT infrastructure management software that streamlines IT operations and controls all systems via a Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]

Flaw in remote-access appliance lets attackers chain bugs for root-level takeover

SonicWall has warned customers of a zero-day flaw in its SMA 1000 remote-access appliance that's being actively exploited, potentially allowing attackers to escalate privileges and take over boxes.…

Justice Department claims unlicensed exchange funneled ransomware profits

US feds have dismantled a crypto laundering service that they say helped cybercrooks wash tens of millions of dollars in dirty digital cash, seizing its servers and unsealing charges against an alleged Russian operator.…

French authorities arrested two crew members of an Italian passenger ferry suspected of infecting the ship with malware that could have enabled them to remotely control the vessel. [...]

Na lepší pokrytí mobilním signálem a dostupnější mobilní internet se mohou těšit cestující v Pendolinech, railjetech a InterPanterech Českých drah. Konsorcium firem ČD - Telematika a.s. a Kontron Transportation s.r.o. dokončilo instalaci 5G opakovačů mobilního signálu do jednotek Pendolino a InterPanter. Tento krok navazuje na zavedení této technologie v jednotkách Railjet z letošního jara.

The need to train people in AI at a faster pace is driving the multibillion-dollar merger between tech education giants Udemy and Coursera.

The merger, announced this week, is valued at $2.5 billion and will close in the second half of 2026, subject to approval by regulators and shareholders.

The combined entity will reach a combined 270 million learners. Udemy has credibility in the enterprise marketplace with 17,000 customers. Coursera is more popular among consumers with 191 million learners. 

The merger isn’t about aggregating learning content, said Coursera  CEO Greg Hart said during a call to explain the merger. “Until now, our companies have been building parallel tracks, investing separately in duplicative features and tools like AI tutors, authoring personalization and assessments,” Hart said.

“When you combine Udemy’s enterprise AI-powered reskilling platform and dynamic marketplace with Coursera’s academic rigor, you create a platform that adapts to industry needs in real time with valuable credentials,” said Udemy CEO Hugo Sarrazin said.

AI is automating repetitive jobs previously done by humans, who are now under pressure to upskill to be “AI ready.” About 39% of the workers’ core skills will become outdated by 2030, the World Economic Forum said in a recent study.

Many training programs now take so long they’re already outdated by the time employees finish them, Michelle Vaz, managing director of AWS Training and Certification program at Amazon, said in a research note this week. “The most successful companies will shift to rapid, bite-sized learning cycles that mirror the cadence of AI innovation, enabling employees to upskill in real time instead of playing catch-up,” she wrote.

AI skills in job postings are up 5% compared to the same time in 2024, said Kye Mitchell, head of Experis North America, a division of services firm ManpowerGroup.

The combined Udemy and Coursera will “build a unified system of record that allows leaders to benchmark, develop, and track the skills of their talent across every stage of their career,” Hart said.

Udemy’s content engine captures trends at the speed of innovation, which helps enterprises upskill employees at the speed of AI. Coursera’s Hart believes Udemy’s offerings are complementary to its career-focused courses offered in some top universities and by industry leaders.

“Udemy has built a large enterprise business powered by the world’s most dynamic marketplace for practical skills development,” Hart said.

The combined offering will upskill people into career pathways, with plans to also focus on individual skill development and certifications.

“We’ve made progress, but we need to move faster,” Hart said. “Sharing product and data investments accelerates our roadmap to become a truly AI-powered skills-acceleration platform for the global workforce.”

The executives also talked about the industry moving to subscription-based pricing for consumer revenue.

“On the consumer side, obviously, we’ve had strength on the subscription side of our business with it representing more than 50% of our consumer revenue…,” Hart said. “And that’s something that Udemy has started to move in that direction as well.”

Secure Boot sits at the point where firmware and operating system trust intersect, and it decides what code is allowed to start the machine. Most systems treat it like background plumbing, but it has a direct influence on Linux security best practices because it defines whether the kernel you think you are running is actually the one that loads. When it works as intended, it gives you a predictable baseline for the rest of the stack. When it doesn't, the failure usually shows up in places that are hard to diagnose and even harder to monitor.

This week’s ThreatsDay Bulletin tracks how attackers keep reshaping old tools and finding new angles in familiar systems. Small changes in tactics are stacking up fast, and each one hints at where the next big breach could come from. From shifting infrastructures to clever social hooks, the week’s activity shows just how fluid the threat landscape has become. Here’s the full rundown of what