An anonymous reader quotes a report from Ars Technica: A new hacking group has been rampaging the Internet in a persistent campaign that spreads a self-propagating and never-before-seen backdoor -- and curiously a data wiper that targets Iranian machines. The group, tracked under the name TeamPCP, first gained visibility in December, when researchers from security firm Flare observed it unleashing a worm that targeted cloud-hosted platforms that weren't properly secured. The objective was to build a distributed proxy and scanning infrastructure and then use it to compromise servers for exfiltrating data, deploying ransomware, conducting extortion, and mining cryptocurrency. The group is notable for its skill in large-scale automation and integration of well-known attack techniques. More recently, TeamPCP has waged a relentless campaign that uses continuously evolving malware to bring ever more systems under its control. Late last week, it compromised virtually all versions of the widely used Trivy vulnerability scanner in a supply-chain attack after gaining privileged access to the GitHub account of Aqua Security, the Trivy creator. Over the weekend, researchers said they observed TeamPCP spreading potent malware that was also worm-enabled, meaning it had the potential to spread to new machines automatically, with no interaction required of victims behind the keyboard. [...] As the weekend progressed, CanisterWorm [as Aikido has named the malware] was updated to add an additional payload: a wiper that targets machines exclusively in Iran. When the updated worm infects machines, it checks if the machine is in the Iranian timezone or is configured for use in that country. When either condition was met, the malware no longer activated the credential stealer and instead triggered a novel wiper that TeamPCP developers named Kamikaze. Eriksen said in an email that there's no indication yet that the worm caused actual damage to Iranian machines, but that there was "clear potential for large-scale impact if it achieves active spread." It's unclear what the motive is for TeamPCP. Aikido researcher Charlie Eriksen wrote: "While there may be an ideological component, it could just as easily be a deliberate attempt to draw attention to the group. Historically, TeamPCP has appeared to be financially motivated, but there are signs that visibility is becoming a goal in itself. By going after security tools and open-source projects, including Checkmarx as of today, they are sending a clear and deliberate signal."

Read more of this story at Slashdot.

Epic Games is cutting more than 1,000 jobs as usage of its flagship title, Fortnite, falls. "The layoffs aren't related to AI," CEO Tim Sweeney noted. Reuters reports: The cuts, along with more than $500 million in savings from lower contracting and marketing spending and unfilled roles would put the company in "a more stable place," Sweeney said in a note to employees. [...] "We've had challenges delivering consistent Fortnite magic," Sweeney said, adding "market conditions today are the most extreme" since the early days of the company founded in 1991. The move marks Epic's second major round of layoffs in three years. In September 2023, the company cut about 830 jobs, or roughly 16% of its workforce. It was not immediately clear what percentage of staff would be impacted by Tuesday's announcement.

Read more of this story at Slashdot.

New submitter the_skywise shares a report from Reuters: The U.S. Federal Communications Commission said on Monday it was banning the import of all new foreign-made consumer routers, the latest crackdown on Chinese-made electronic gear over security concerns. China is estimated to control at least 60% of the U.S. market for home routers, boxes that connect computers, phones, and smart devices to the internet. The FCC order does not impact the import or use of existing models, but will ban new ones. The agency said a White House-convened review deemed imported routers pose "a severe cybersecurity risk that could be leveraged to immediately and severely disrupt U.S. critical infrastructure." It said malicious actors had exploited security gaps in foreign-made routers "to attack households, disrupt networks, enable espionage, and facilitate intellectual property theft," citing their role in major hacks like Volt and Salt Typhoon. The determination includes an exemption for routers the Pentagon deems do not pose unacceptable risks.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: An appeals court invalidated the Biden-era Federal Trade Commission's attempt to punish Intuit for allegedly deceptive ads that pitched TurboTax as free. Under then-Chair Lina Khan, the FTC determined in 2024 that the TurboTax maker violated US law with deceptive advertising and ordered it to stop telling consumers, without more obvious disclaimers, that TurboTax or other products are free. The FTC's chief administrative law judge had previously found that Intuit's ads violated prohibitions on deceptive advertising because the firm "advertised to consumers that they could file their taxes online for free using TurboTax, when in truth, for approximately two-thirds of taxpayers, the advertised claim was false." Intuit appealed in the conservative-leaning US Court of Appeals for the 5th Circuit and got a resounding victory on Friday in a 3-0 ruling issued (PDF) by a panel of judges. "Following the Supreme Court's decision in SEC v. Jarkesy, we hold that adjudication of a deceptive advertising claim before an administrative law judge violated the constitutional separation of powers," the 5th Circuit panel said. The Supreme Court's June 2024 ruling (PDF) in Securities and Exchange Commission v. Jarkesy held that the SEC system for issuing fines violated the right to a jury trial. The 5th Circuit panel said the Jarkesy decision confirms that the FTC must pursue deceptive advertising claims in courts rather than its own administrative process. [...] The 5th Circuit ruling acknowledged that most people can't use TurboTax for free. "TurboTax 'Free Edition' has been part of the TurboTax range for more than a decade, available to taxpayers for what Intuit refers to as 'simple tax returns,'" the ruling said. "Most American taxpayers do not have 'simple tax returns.' The TurboTax website is designed so that any individual taxpayer can begin preparing a tax return in TurboTax Free Edition, but those who enter disqualifying information are prompted before filing to upgrade to a paid product." Although the court noted that Intuit stopped the specific ads challenged by the FTC, the ruling said the cease-and-desist order issued by the agency could have far-reaching effects on Intuit marketing. "The cease-and-desist order is remarkably broad: it prohibits Intuit for the next twenty years from advertising 'any goods or services' as free unless specific, extensive, and arguably unworkable requirements are satisfied. The order is not confined to tax-preparation solutions and extends to all products sold by Intuit," the ruling said. The 5th Circuit said the FTC's deceptive advertising claims are "traditional actions at law and equity and thus involve private rights that demand adjudication in an Article III court." The court rejected the FTC's argument that the claims involve public rights that may be adjudicated by administrative agencies. "In sum, there is overwhelming evidence that Section 5 of the FTC Act did not create a new duty for merchants to refrain from deceptive advertising," the 5th Circuit said. "That duty long predated the FTC Act and could be enforced by private parties in actions at common law or equity for fraud, deceit, or unfair competition."

Read more of this story at Slashdot.

A reassessment of damaged 3,500-year-old statuary adds to evidence that Queen Hatshepsut wasn’t the villain that scholars long took her to be.

BrianFagioli writes: Canonical has joined the Rust Foundation as a Gold Member, signaling a deeper investment in the Rust programming language and its role in modern infrastructure. The company already maintains an up-to-date Rust toolchain for Ubuntu and has begun integrating Rust into parts of its stack, citing memory safety and reliability as key drivers. By joining at a higher tier, Canonical is not just adopting Rust but also stepping closer to its governance and long-term direction. The move also highlights ongoing tensions in Rust's ecosystem. While Rust can reduce entire classes of bugs, it often depends heavily on external crates, which can introduce complexity and auditing challenges, especially in enterprise environments. Canonical appears aware of that tradeoff and is positioning itself to influence how the ecosystem evolves, as Rust continues to gain traction across Linux and beyond. "As the publisher of Ubuntu, we understand the critical role systems software plays in modern infrastructure, and we see Rust as one of the most important tools for building it securely and reliably. Joining the Rust Foundation at the Gold level allows us to engage more directly in language and ecosystem governance, while continuing to improve the developer experience for Rust on Ubuntu," said Jon Seager, VP Engineering at Canonical. "Of particular interest to Canonical is the security story behind the Rust package registry, crates.io, and minimizing the number of potentially unknown dependencies required to implement core concerns such as async support, HTTP handling, and cryptography -- especially in regulated environments."

Read more of this story at Slashdot.

Last week, hackers launched a cyberattack on an Iowa company called Intoxalock that left some drivers unable to start their court-mandated breathalyzer-equipped cars. Wired reports: Intoxalock, an automotive breathalyzer maker that says it's used daily by 150,000 drivers across the U.S., last week reported that it had been the target of a cyberattack, resulting in its "systems currently experiencing downtime," according to an announcement posted to its website. Meanwhile, drivers that use the breathalyzers have reported being stranded due to the devices' inability to connect to the company's services. "Our vehicles are giant paperweights right now through no fault of ours," one wrote on Reddit. "I'm being held accountable at work and feel completely helpless." The lockouts appear to be the result of Intoxalock's breathalyzers needing periodic calibrations that require a connection to the company's servers. Drivers who are due for a calibration and can't perform one due to the company's downtime have been stuck, though the company now states on its website that it's offering 10-day extensions on those calibrations due to its cybersecurity disruption, as well as towing services in some cases. In the meantime, Intoxalock hasn't explained what sort of cyberattack it's facing or whether hackers have obtained any of the company's user data.

Read more of this story at Slashdot.

He helped bring attention to a group delivering humanitarian aid to Cuba, which was criticized for staying in an upscale hotel as Cubans faced another blackout.

President Trump has long fixated on mail-in-voting to bolster his baseless claims of widespread voter fraud. But he recently used the method in a Florida special election.

With the use of electronic jamming systems and interceptor drones, the Ukrainian national oil and gas company may be a model for others.

President Trump once called Prime Minister Keir Starmer a friend. But Mr. Starmer’s decision not to join the attacks on Iran has led to merciless mocking by the president.

The country’s experiment with psychedelic medicine has led to positive outcomes, psychiatrists say, but also highlights the limitations of the nascent field.

New, friendly media operations and expanded state-run television are pushing Pakistan’s message while independent news outlets face repression.

A military aircraft transporting 128 people was involved in an accident as it took off from southern Colombia, according to the authorities.

An anonymous reader quotes a report from NPR: The Trump administration will pay $1 billion to a French company to walk away from two U.S. offshore wind leases as the administration ramps up its campaign against offshore wind and other renewable energy. TotalEnergies has agreed to what's essentially a refund of its leases for projects off the coasts of North Carolina and New York, and will invest the money in fossil fuel projects instead, the Department of Interior announced Monday. The Trump administration has tried to halt offshore wind construction, but federal judges overturned those orders. Environmental groups denounced the TotalEnergies deal as an alternate way to block wind projects. President Donald Trump has gone all in on fossil fuels, which he says is the way to lower costs for families, increase reliability and help the U.S. maintain global leadership in artificial intelligence. TotalEnergies pledged to not develop any new offshore wind projects in the United States. TotalEnergies CEO Patrick Pouyanne said in a statement that the company renounced offshore wind development in the United States in exchange for the reimbursement of the lease fees, "considering that the development of offshore wind projects is not in the country's interest." Pouyanne said the refunded lease fees will finance the construction of a liquefied natural gas plant in Texas and the development of its oil and gas activities, calling it a "more efficient use of capital" in the U.S. After it makes those investments, TotalEnergies will be reimbursed, up to the amount paid in lease purchases for offshore wind, according to the DOI.

Read more of this story at Slashdot.

A collision between an Air Canada Express jet and a fire truck on Sunday night left two pilots dead and dozens injured.

The Defense Department said it would close the Pentagon’s work area for journalists, among other changes, after a judge found the existing media policy unconstitutional.

In choosing Senator Markwayne Mullin, who has warm relationships across the Capitol and the political aisle, President Trump was reverting to a bygone tradition.

A woman who took medication to induce an abortion, and then delivered the baby, was arrested on a murder charge. But on Monday, a state judge expressed deep skepticism about the case.

Known early on for skin-baring temptress roles, she later earned rave reviews, a Cannes award and an Oscar nomination for her performance in the Lenny Bruce biopic “Lenny.”