Old Man Hiking has added a photo to the pool:
AegirPhotography has added a photo to the pool:
A photographer captures a foggy morning underneath the Sydney harbour bridge. Shot on Cammeraygal country.
iain.davidson100 has added a photo to the pool:
Editorial Illustrations for Danish Weekend Newspaper Weekendavisen
:format(webp)/s3/static.nrc.nl/images/gn4/stripped/data149421818-88f113.jpg)
A researcher using the name Nightmare Eclipse has released a new Microsoft Defender zero-day exploit called "RoguePlanet," which reportedly works on fully patched Windows 10 and 11 systems and can spawn a command prompt with SYSTEM privileges through a Defender race condition. The release came just hours after Microsoft fixed two previously disclosed flaws during its latest monthly Patch Tuesday drop -- its largest Patch Tuesday release ever. BleepingComputer reports: The researcher shared a proof-of-concept exploit on Tuesday afternoon in a self-hosted Git repository after saying that GitHub and GitLab repositories hosting their exploits had previously been removed by Microsoft. "The exploit is a race condition, so it's a hit or miss. I have managed to get a 100% success rate on some machines while it struggled to work on others," Nightmare Eclipse wrote in the repository.
[...] Cybersecurity firm ThreatLocker told BleepingComputer that they successfully reproduced the flaw in their testing and confirmed the exploit worked against fully patched Windows 11 systems with KB5094126 installed, and shared a video demonstrating it. "Our initial analysis confirms that the RoguePlanet exploit is viable and performs as described. Organizations using application allowlisting can prevent the exploit from executing, providing an effective layer of protection against this attack," Danny Jenkins, CEO of ThreatLocker, told BleepingComputer.
According to Nightmare Eclipse, RoguePlanet was originally developed as a remote code execution vulnerability that exploited Microsoft Defender's handling of files hosted on remote SMB shares. "In initial development, it was confirmed that this vulnerability was a remote code execution," the researcher explained in a blog post. "It required an attacker to coerce a victim to open a .vhd(x) in a remote SMB server, succesful exploitation resulted in defender overwriting its own files and obviously the end outcome was an RCE."
The researcher says another attack scenario could lead to remote code execution simply by coercing a victim into opening an SMB share if symlink evaluation settings were enabled. However, the researcher claims Microsoft silently hardened Defender in mid-May by patching "mpengine!SysIO*" API, which blocked junction attacks. "Rewriting RoguePlanet to make it functional again drained my soul and I couldn't complete the other scenarios and for now it remains unclear if RoguePlanet is limited to LPE or there is some sort of way to turn it into an RCE," the researcher wrote.
[...] Cybersecurity firm ThreatLocker told BleepingComputer that they successfully reproduced the flaw in their testing and confirmed the exploit worked against fully patched Windows 11 systems with KB5094126 installed, and shared a video demonstrating it. "Our initial analysis confirms that the RoguePlanet exploit is viable and performs as described. Organizations using application allowlisting can prevent the exploit from executing, providing an effective layer of protection against this attack," Danny Jenkins, CEO of ThreatLocker, told BleepingComputer.
According to Nightmare Eclipse, RoguePlanet was originally developed as a remote code execution vulnerability that exploited Microsoft Defender's handling of files hosted on remote SMB shares. "In initial development, it was confirmed that this vulnerability was a remote code execution," the researcher explained in a blog post. "It required an attacker to coerce a victim to open a .vhd(x) in a remote SMB server, succesful exploitation resulted in defender overwriting its own files and obviously the end outcome was an RCE."
The researcher says another attack scenario could lead to remote code execution simply by coercing a victim into opening an SMB share if symlink evaluation settings were enabled. However, the researcher claims Microsoft silently hardened Defender in mid-May by patching "mpengine!SysIO*" API, which blocked junction attacks. "Rewriting RoguePlanet to make it functional again drained my soul and I couldn't complete the other scenarios and for now it remains unclear if RoguePlanet is limited to LPE or there is some sort of way to turn it into an RCE," the researcher wrote.
Read more of this story at Slashdot.
Visa is integrating its payment network with ChatGPT so AI agents can shop and complete purchases on users' behalf. "It means AI agents can not only recommend products but complete the purchase on the user's behalf, at potentially any merchant that accepts Visa," reports the Associated Press. "The payment network's previous attempts at this technological leap were confined to a single retailer or a small set of enrolled merchants." From the report: OpenAI will provide the technology to allow agents to interact, make decisions and initiate purchases through ChatGPT. Visa, the world's largest payment network outside of China, will provide the payment authorization and fraud monitoring needed to do this at scale. "As AI agents become active participants in the economy, Visa's focus is to ensure transactions are trusted, secure and seamless," said Jack Forestell, chief product and strategy officer at Visa.
Speaking at a company event Wednesday in San Francisco Wednesday, Forestell gave an example of a customer telling ChatGPT they're looking for a pair of wireless headphones under $150. The chatbot would find a pair for sale under those parameters and buy it on behalf of the customer.
Visa and OpenAI did not disclose the financial terms of the collaboration and did not give details on the fees merchants or customers would have to pay. [...] Visa says the feature will have guardrails like spending limits, required approval steps and approved merchants for shopping in order to protect consumers and minimize fraud.
Speaking at a company event Wednesday in San Francisco Wednesday, Forestell gave an example of a customer telling ChatGPT they're looking for a pair of wireless headphones under $150. The chatbot would find a pair for sale under those parameters and buy it on behalf of the customer.
Visa and OpenAI did not disclose the financial terms of the collaboration and did not give details on the fees merchants or customers would have to pay. [...] Visa says the feature will have guardrails like spending limits, required approval steps and approved merchants for shopping in order to protect consumers and minimize fraud.
Read more of this story at Slashdot.
People tend to rotate counterclockwise. Why? A variety of studies show that adults and children will automatically drift towards the left whilst walking. But why? Are there implications for traffic, civil engineering, or astrophysics? (Gift article NYTimes)
World's biggest whale graveyard found in Indian Ocean off Australia.
Hundreds of whale fossils, including those from extinct species new to science, range in age from recent to 5 million years old and are also home to undescribed deep-sea creatures.
Five whales actively decomposing and 476 cetacean fossils, including a new extinct species dating back 5 million years, were documented.
The BBC has announced that it's putting its classic sci-fi series Doctor Who in competitive tender, and longtime show-runner Russell T. Davies (whose return to the struggling series was announced with much fanfare back in 2021) has announced his own departure and the show's production company, Bad Wolf, has also left the show.
There had been a Christmas special planned for this year which would have presumably resolved the recent cliffhanger that saw the Doctor somehow regenerate(?) into his former companion Rose Tyler (Billie Piper), but all plans for that special have now been scrapped. At this point the only Doctor Who still in production is an animated series for CBeebies. The show was already struggling and this news leaves its future in limbo. Many fans are assuming this is effectively a cancellation. The long-running, beloved series may well be finished until somebody inevitably revives it in 10 or 15 years. But (taps nose)... Who knows, eh? Davies, ever the franchise's hypeman, insists this is not the end. In his Instagram post, he said he was "as excited as anyone to see what comes next! (...) Will they keep the theme tune? Will they lose the blue box? Will they bring back the Drahvin?! It's all up for grabs, which is so Doctor Who, exciting and unpredictable and new! Here comes the future."
There had been a Christmas special planned for this year which would have presumably resolved the recent cliffhanger that saw the Doctor somehow regenerate(?) into his former companion Rose Tyler (Billie Piper), but all plans for that special have now been scrapped. At this point the only Doctor Who still in production is an animated series for CBeebies. The show was already struggling and this news leaves its future in limbo. Many fans are assuming this is effectively a cancellation. The long-running, beloved series may well be finished until somebody inevitably revives it in 10 or 15 years. But (taps nose)... Who knows, eh? Davies, ever the franchise's hypeman, insists this is not the end. In his Instagram post, he said he was "as excited as anyone to see what comes next! (...) Will they keep the theme tune? Will they lose the blue box? Will they bring back the Drahvin?! It's all up for grabs, which is so Doctor Who, exciting and unpredictable and new! Here comes the future."
Military factory in Cheboksary lies 900km from frontline; Zelenskyy inaugurates ‘Day of the Unmanned Systems Forces’. What we know on day 1,569
Long-range Ukrainian attacks hit targets deep inside Russia on Wednesday. Volodymyr Zelenskyy, Ukraine’s president, said Ukrainian FP-5 Flamingo long-range missiles hit a military factory in Cheboksary that supplies components for Russian drones and missiles. It is located in the Chuvashiya region more than 900km (560 miles) from the frontline. The Astra online news outlet reported that the Ukrainian strike hit the VNIIR-Progress plant that produces antennas for drones. Oleg Nikolayev, the head of Chuvashiya, confirmed the attack.
Zelenskyy said Ukrainian forces also struck a refinery in Russia’s Samara region, where the governor, Vyacheslav Fedorishchev, confirmed industrial plants were damaged by drone strikes and three people were injured. Astra carried images of a large fire at the Samara refinery. It matches with reporting by Reuters citing industry sources who said Russian oil producer Rosneft’s Kuibyshev refinery in Samara halted oil processing on 10 June after a drone attack.
Kuibyshev refinery is part of Rosneft’s Samara refining hub, which also includes Novokuibyshevsk and Syzran plants. Syzran has been offline since 21 May after a drone attack. Novokuibyshevsk had to shut down on 18 April after a drone attack and has been running at reduced throughput. Zelenskyy said Ukraine’s SBU security service also targeted two oil infrastructure facilities in Russia’s Vladimir region, about 700km from the frontline. And a fire broke out in the area surrounding Russia’s Afipsky refinery in southern Krasnodar, with a gas pipeline also damaged, Russian authorities said.
Zelenskyy declared Thursday 11 June 2026 the inaugural “Day of the Unmanned Systems Forces” – to be celebrated annually in a show of “respect and gratitude” to the Ukrainian military’s drone branch. “For the first time in the world, such a branch of the military was created, in Ukraine,” said Zelenskyy. “We are developing the USF to the max, and it is Ukrainians who have proved that through technology, ingenuity, and courage, we can change the nature of warfare.”
Russian investigators said on Wednesday that they had arrested at least two suspects after two car bombings in Moscow. Pjotr Sauer writes that one explosion killed Col Damir Davydov, 57, head of the Russian military’s artillery and missile ammunition supply directorate, which oversees the distribution of weapons to the armed forces. The bomb under his BMW went off at about 5.30am on Tuesday in the city of Balashikha, the independent outlet Astra reported. Another bomb was found before it went off and in that case a boy and a girl in their teens had been charged, said Russia’s state investigative committee. The alleged target was an employee of a scientific production enterprise.
Ukrainian forces struck the Russian-occupied port of Mariupol, Kyiv said on Wednesday, the latest in a series of drone attacks on logistics across a critical stretch of Moscow-held southern Ukraine connecting Russia to Crimea. The attack on the port, which Ukraine’s military said plunged the site into a blackout, followed two strikes earlier this week on the Chonhar bridge linking the Russian-occupied Kherson region to the Black Sea peninsula, which Moscow seized in 2014. Vladimir Saldo, the Russian-installed governor of the occupied part of Ukraine’s Kherson region, said the bridge had been hit twice and traffic had been suspended.
Continue reading...Massive blaze in eight high-rise apartment blocks killed 168 people in one of the world’s deadliest residential building fires
Hong Kong has filed manslaughter charges against several people and companies over the world’s deadliest residential building fire in decades, which killed 168 people at a public housing estate last year.
The massive blaze, which engulfed seven of the eight high-rise apartment blocks at the Wang Fuk Court estate in November, prompted a months-long investigation into the cause.
Continue reading...Island may soon be called Naoero – an Indigenous name that honours the country’s heritage and identity
Nauru, the world’s smallest republic, may soon make a big change: renaming itself “Naoero”.
The switch would “more faithfully honour our nation’s heritage, our language, and our identity”, said the president of the Pacific microstate, David Adeang, in a speech to parliament in January.
Continue reading...
Multiple reports indicate that Chinese operatives continue using every tech tool at their disposal – including American AI – to amass data on and manipulate everyone from security-clearance holders to everyday US citizens. And they’re trying to influence public opinion on building datacenters for AI, albeit without success so far. One of these reports found a “significant resurgence” of a botnet linked to Chinese government-backed goons, including Volt Typhoon, which previously used a covert network of connected devices to burrow deep into critical US networks and preposition for future destructive attacks. In January 2024, the FBI said it killed Volt’s KV-botnet, comprised of hundreds of end-of-life routers and other internet-connected devices. At the time, KV-botnet consisted of four clusters, with the KV cluster primarily being used as a covert data transfer network, and the JDY cluster used for scanning and reconnaissance. In a Wednesday report, Lumen’s Black Lotus Labs said that while the KV cluster became largely defunct after the law enforcement takedown, the JDY cluster remains an active threat, and has since surged to more than 1,500 compromised routers and IoT devices. “Analysis of this activity shows a clear focus on identifying vulnerable infrastructure shortly after public vulnerability disclosures, suggesting that reconnaissance output is rapidly operationalized by China-nexus advanced persistent threat (APT) actors,” the threat intel team wrote. “This targeted focus has been observed across a range of sectors, with the US military and associated entities as the most prominent.” While the botnet resurgence poses the most pressing threat, and the security shop recommends all enterprises implement CISA and NCSC guidance for mitigating Volt Typhoon activity and defending against China-nexus covert networks of compromised devices, another report indicates that China’s attempts at influence operations haven’t died down, either. Using American AI for covert ops about … American AI OpenAI in a Wednesday report said it banned ChatGPT accounts likely originating from China after they used the American AI company’s models to generate content for covert operations about – wait for it – American AI. While neither of the two clusters seemed to have much success in sowing chaos or swaying opinions, the fact that they tried at all is significant, according to Ben Nimmo, principal investigator on OpenAI’s Intelligence and Investigations team. “Neither campaign appears to have gained much authentic engagement,” Nimmo told reporters. “They're important for what they reveal about the intentions of influence operators from China and the narratives they're testing and seeking to amplify.” The first cluster used ChatGPT to generate social media content and images for an operation claiming datacenters and AI applications are increasing electricity demand and causing higher costs for ordinary Americans. “For example, they asked for comic strips about a power grid operator’s capacity auction prices based on reporting from a legitimate regional paper,” the report says. “They asked ChatGPT to focus the comments on rising capacity prices as a consequence of peak electricity demand, framing the new demand as coming from data centers and AI applications and argued that these costs were ultimately passed to ordinary households.” The operators then posted these comments and images on X, likely using fake accounts, with links to real news stories about datacenters. OpenAI suspects the operators are part of a social-media team at a private Chinese tech company that provides services for Chinese provincial-level government clients. “This was not a case of an influence operation creating a debate,” Nimmo said. “The debate existed already. This was an influence operation from China trying to interfere in it. We didn't see any signs that they succeeded.” The second cluster of banned ChatGPT accounts also likely originated in China and used OpenAI’s models to write comments and draw political cartoons criticizing US tech policies and tariffs. “Interestingly, the operators specified in their prompts that the content should not include cartoons of Xi Jinping in the output and should only include President Trump,” Nimmo said. These accounts, all writing prompts in simplified Chinese and using VPNs to access the AI systems, also used ChatGPT to edit work reports and help design social media monitoring systems. “This isn't the first time that we've seen actors in China trying to come up with ideas for social media monitoring,” Nimmo said. In February, OpenAI said it banned ChatGPT accounts believed to be linked to Chinese government entities attempting to use AI models to surveil individuals and social media accounts. If AI doesn't work, bribery might? If Chinese agents can’t use AI systems to unearth sensitive information, there are always fake websites and job offers promising cash for state secrets. We’ve seen Beijing-linked government snoops use these tactics in the past, and according to the US Justice Department, they’re still using this scam (because it works). On Wednesday, the feds said they obtained a warrant for and seized 13 fake consulting company websites used to target US persons, including current and former security clearance holders with access to classified and sensitive government information. The domains include centrikglobalconsulting.com, rightinfoconsult.com, finnaclevesperconsulting.com, cydfconsulting.com, pulsewaveglobal.com, catalystglobalsolutions.com, thehorizzen.com, geoindopacific.com, gpf-ina.org, safesec-group.com, thetruthinfo.com, Vandercons.com, and gulfpeace.org. Since November 2023, these websites and associated job postings on social media, LinkedIn, and other hiring platforms advertised “consulting” jobs, including “Senior Analyst” and “International Affairs Consultant” positions. Suspected PRC operatives used the sites and job listings to recruit applicants and bribe them for sensitive information, DOJ alleges. “The conspirators have encouraged applicants and recruits to share confidential and sensitive information in violation of their official duties and of particular interest to the People's Republic of China (PRC) government,” according to the court documents. “The recruiters pressured candidates to share confidential information and reports from ‘insider sources' in violation of their official duties.” The court documents allege the conspirators then paid the recruits for these reports using online accounts in the names of fictitious individuals, and cryptocurrency to hide their identities and the source of the payments. ®
