All the News that Matters

• Fedora 41 ABRT Critical Command Injection Vulnerability Fix CVE-2025-12744
  Fix CVE-2025-12744

• Fedora 42: mingw-libpng Important Heap Buffer Overflow Vuln 2025-9d0f04f316
  Update to libpng-1.6.51.

• Fedora 43: mingw-libpng Critical Buffer Overflow Advisories 2025-f54c75f2f9
  Update to libpng-1.6.51.

• Mageia 9: libpng Important Out-of-Bounds Read MGASA-2025-0323
  MGASA-2025-0323 - Updated libpng packages fix security vulnerability

• Mageia 9: Apache Important Security Update MGASA-2025-0322 CVE-2025-55753
  MGASA-2025-0322 - Updated apache packages fix security vulnerabilities

• Ubuntu: WebKitGTK High Remote Code Execution Threat USN-7914-1
  Several security issues were fixed in WebKitGTK.

• Ventoy 1.1.08 Adds Support for FreeBSD 15.0
  Ventoy 1.1.08, an open-source tool for creating a bootable USB drive to load multiple ISO files, now supports FreeBSD 15.0.

• Block all AI browsers for the foreseeable future: Gartner
  Analysts worry lazy users could have agents complete mandatory infosec training, and attackers could do far nastier thingsAgentic browsers are too risky for most organizations to use, according to analyst firm Gartner.…

• Linuxiac Weekly Wrap-Up: Week 49 (Dec 1 – 7, 2025)
  Catch up on the latest Linux news: Kernel 6.18, Alpine 3.23, NVIDIA Display Driver v590 Beta, VLC 3.0.22, When Linus met Linus, Linux Mint 22.3 nears release, Jolla Linux phone, and more.

• Linux I3C Gains "HDR" Support For Faster Data Transfers
  I2C in Linux 6.19 brought support for Rust-written I2C drivers. The newer I3C "Improved Inter-Integrated Circuit" interface changes have now been merged and the big feature there is HDR support. Not to be confused with the more common High Dynamic Range acronym usage for HDR, HDR in the I3C context is for the "High Data Rate" mode for facilitating faster data transfers...

• Which Desktop Environment Do Arch Linux Users Prefer
  Which desktop environment and window manager is actually the most preferred choice among Arch Linux users? The answer is inside.

• Firefox 146 Is Out with Native Support for Fractional Scaled Displays on Wayland
  A month after the release of Firefox 145, the first release to drop 32-bit support on Linux, Mozilla has today published the final builds of Firefox 146 ahead of its official unveiling on December 9th, 2025.

• How Vivaldi Workspaces Turn Tabs Into Organized Projects
  Instead of one long row of tiny tabs, Workspaces in Vivaldi let you keep related tabs together as projects, and sync those setups across your devices when you need them.

• Using AI To Modernize The Ubuntu Error Tracker Produced Some Code That Was "Plain Wrong"
  A week ago I wrote about AI being used to help modernize Ubuntu's Error Tracker. Microsoft GitHub Copilot was tasked to help adapt its Cassandra database usage to modern standards. It's worked in some areas but even for a rather straight forward task, some of the generated functions ended up being "plain wrong" according to the developer involved...

• PSoC Edge E84-Based Handheld Runs RT-Thread for Local Machine Learning
  RT-Thread has launched a Crowd Supply campaign for the Edgi-Talk, a handheld reference platform built for hardware-accelerated machine learning. Based on Infineon’s PSoC Edge E84 architecture, it targets smart home, wearable, and industrial interfaces that rely on local inference and responsive voice interaction. The core of the system is the Infineon PSoC Edge E84, which […]

• Linux 6.19 Adds New Console Font To Better Handle Modern Laptops With HiDPI Displays
  Sent in for the Linux 6.19 merge window when it comes to the frame-buffer device "FBDEV" subsystem are just a set of "fixes" for FBDEV drivers and code clean-ups. But it does also include a new console font option for better supporting modern laptops with high density displays...

• Evidence That Humans Now Speak In a Chatbot-Influenced Dialect Is Getting Stronger
  Researchers and moderators are increasingly concerned that ChatGPT-style language is bleeding into everyday speech and writing. The topic has been explored in the past but "two new, more anecdotal reports, suggest that our chatbot dialect isn't just something that can be found through close analysis of data," reports Gizmodo. "It might be an obvious, every day fact of life now." Slashdot reader joshuark shares an excerpt from the report: Over on Reddit, according to a new Wired story by Kat Tenbarge, moderators of certain subreddits are complaining about AI posts ruining their online communities. It's not new to observe that AI-armed spammers post low-value engagement bait on social media, but these are spaces like r/AmItheAsshole, r/AmIOverreacting, and r/AmITheDevil, where visitors crave the scintillation or outright titillation of bona fide human misbehavior. If, behind the scenes, there's not really a grieving college student having her tuition cut off for randomly flying off the handle at her stepmom, there's no real fun to be had. The mods in the Wired story explain how they detect AI content, and unfortunately their methods boil down to "It's vibes." But one novel struggle in the war against slop, the mods say, is that not only are human-written posts sometimes rewritten by AI, but mods are concerned that humans are now writing like AI. Humans are becoming flesh and blood AI-text generators, muddying the waters of AI "detection" to the point of total opacity. As "Cassie" an r/AmItheAsshole moderator who only gave Wired her first name put it, "AI is trained off people, and people copy what they see other people doing." In other words, Cassie said, "People become more like AI, and AI becomes more like people." Meanwhile, essayist Sam Kriss just explored the weird way chatbots "write" for the latest issue of the New York Times Magazine, and he discovered along the way that humans have accidentally taken cues from that weirdness. After parsing chatbots' strange tics and tendencies -- such as overusing the word "delve" most likely because it's in a disproportional number of texts from Nigeria, where that word is popular -- Kriss refers to a previously reported trend from over the summer. Members of the U.K. Parliament were accused of using ChatGPT to write their speeches. The thinking goes that ChatGPT-written speeches contained the phrase "I rise to speak," an American phrase, used by American legislators. But Kriss notes that it's not just showing up from time to time. It's being used with downright breathtaking frequency. "On a single day this June, it happened 26 times," he notes. While 26 different MPs using ChatGPT to write speeches is not some scientific impossibility, it's more likely an example of chatbots, "smuggling cultural practices into places they don't belong," to quote Kriss again. So when Kriss points out that when Starbucks locations were closing in September, and signs posted on the doors contained tortured sentences like, "It's your coffeehouse, a place woven into your daily rhythm, where memories were made, and where meaningful connections with our partners grew over the years," one can't state with certainty that this is AI-generated text (although let's be honest: it probably is).
  
  
  Read more of this story at Slashdot.
  

• Claude Code Is Coming To Slack
  Anthropic is bringing Claude Code directly into Slack, letting developers spin up coding sessions from chat threads and automate workflows without leaving the app. TechCrunch reports: Previously, developers could only get lightweight coding help via Claude in Slack -- like writing snippets, debugging, and explanations. Now they can tag @Claude to spin up a complete coding session using Slack context like bug reports or feature requests. Claude analyzes recent messages to determine the right repository, posts progress updates in threads, and shares links to review work and open pull requests. The move reflects a broader industry shift: AI coding assistants are migrating from IDEs (integrated development environment, where software development happens) into collaboration tools where teams already work. [...] While Anthropic has not yet confirmed when it would make a broader rollout available, the timing is strategic. The AI coding market is getting more competitive, and differentiation is starting to depend more on integration depth and distribution than model capability alone.
  
  
  Read more of this story at Slashdot.
  

• Cold Case Inquiries Stall After Ancestry.com Revisits Policy For Users
  An anonymous reader quotes a report from the New York Times: Since online genealogy services began operating, millions of people have sent them saliva samples in hopes of learning about their family roots and discovering far-flung relatives. These services also appeal to law enforcement authorities, who have used them to solve cold case murders and to investigate crimes like the 2022 killing of four University of Idaho students. Crime-scene DNA submitted to genealogy sites has helped investigators identify suspects and human remains by first identifying relatives. The use of public records and family-tree building is crucial to this technique, and its main tool has been the genealogy site Ancestry, which has vast amounts of individual DNA profiles and public records. More than 1,400 cases have been solved with the help of so-called genetic genealogy investigations, most of them with help from Ancestry. But a recent step taken by the site is now deterring many police agencies from employing this crime-solving technique. In August, Ancestry revised the terms and conditions on its site to make it clear that its services were off-limits "for law enforcement purposes" without a legal order or warrant, which can be hard to get, because of privacy concerns. This followed the addition last year to the terms and conditions that the services could not be used for "judicial proceedings." Investigators say the implications are dire and will result in crucial criminal cases slowing or stalling entirely, denying answers to grieving families. "Everyone who does this work has depended on the records database that Ancestry controls," said David Gurney, who runs Ramapo College's Investigative Genetic Genealogy Center in New Jersey. "Without it, casework is going to be a lot slower, and there will be some cases that can't be resolved at all."
  
  
  Read more of this story at Slashdot.
  

• 193 Cybercrims Arrested, Accused of Plotting 'Violence-As-a-Service'
  Europol's GRIMM taskforce has arrested nearly 200 people accused of running or participating in "violence-as-a-service" schemes where cybercrime groups recruit youth online for real-world attacks. "These individuals are groomed or coerced into committing a range of violent crimes, from acts of intimidation and torture to murder," the European police said on Monday. The Register reports: GRIMM began in April, and includes investigators from Belgium, Denmark, Finland, France, Germany, Iceland, the Netherlands, Norway, Spain, Sweden, the UK, plus Europol experts and online service providers. During its first six months, police involved in this operation arrested 63 people directly involved in carrying out or planning violent crimes, 40 "enablers" accused of facilitating violence-for-hire services, 84 recruiters, and six "instigators," five of whom the cops labeled "high-value targets." [...] Many of the criminals involved in recruiting and carrying out these violence-for-hire services are also members of The Com. This is a loosely knit gang, primarily English speakers, involved in several interconnected networks of hackers, SIM swappers, and extortionists. Their reach has spread across the Atlantic, and over the summer, the FBI warned that a subset of this cybercrime group, called In Real Life (IRL) Com, poses a growing threat to youth. The FBI's security bulletin specifically called out IRL Com subgroups that offer swat-for-hire services, in which hoaxers falsely report shootings at someone's residence or call in bomb threats to trigger massive armed police responses at the victims' homes.
  
  
  Read more of this story at Slashdot.
  

• Nvidia Can Sell H200 Chips To China For 25% US Cut
  The Trump administration will allow Nvidia to resume selling H200 chips to China, but only if the U.S. government takes a 25% cut. Axios reports: Trump said on Truth Social that he'll allow Nvidia to sell H200 chips -- the generation of chips before its current, more-advanced Blackwell lineup -- to China, with the U.S. government pocketing a quarter of the revenue. He said he would apply "the same approach to AMD, Intel, and other GREAT American Companies." American defense hawks fear that China could use Nvidia chips to advance its military ambitions. Trump said Monday that the sales will be subject to "conditions that allow for continued strong National Security." The blockade remains in place for Nvidia's current generation of Blackwell chips, which will be replaced in the second half of 2026 by even more advanced Rubin chips. Huang said recently he was unsure if China would want the older chips. "We applaud President Trump's decision to allow America's chip industry to compete to support high paying jobs and manufacturing in America," Nvidia said in a statement. "Offering H200 to approved commercial customers, vetted by the Department of Commerce, strikes a thoughtful balance that is great for America."
  
  
  Read more of this story at Slashdot.
  

• More Than 200 Environmental Groups Demand Halt To New US Datacenters
  An anonymous reader quotes a report from the Guardian: A coalition of more than 230 environmental groups has demanded a national moratorium on new datacenters in the U.S., the latest salvo in a growing backlash to a booming artificial intelligence industry that has been blamed for escalating electricity bills and worsening the climate crisis. The green groups, including Greenpeace, Friends of the Earth, Food & Water Watch and dozens of local organizations, have urged members of Congress to halt the proliferation of energy-hungry datacenters, accusing them of causing planet-heating emissions, sucking up vast amounts of water and exacerbating electricity bill increases that have hit Americans this year. "The rapid, largely unregulated rise of datacenters to fuel the AI and crypto frenzy is disrupting communities across the country and threatening Americans' economic, environmental, climate and water security," the letter states, adding that approval of new data centers should be paused until new regulations are put in place. The push comes amid a growing revolt against moves by companies such as Meta, Google and Open AI to plow hundreds of billions of dollars into new datacenters, primarily to meet the huge computing demands of AI. At least 16 datacenter projects, worth a combined $64 billion, have been blocked or delayed due to local opposition to rising electricity costs. The facilities' need for huge amounts of water to cool down equipment has also proved controversial, particularly in drier areas where supplies are scarce. [...] At the current rate of growth, datacenters could add up to 44m tons of carbon dioxide to the atmosphere by 2030, equivalent to putting an extra 10m cars on to the road and exacerbating a climate crisis that is already spurring extreme weather disasters and ripping apart the fabric of the American insurance market. But it is the impact upon power bills, rather than the climate crisis, that is causing anguish for most voters, acknowledged Emily Wurth, managing director of organizing at Food & Water Watch, the group behind the letter to lawmakers. "I've been amazed by the groundswell of grassroots, bipartisan opposition to this, in all types of communities across the US," said Wurth. "Everyone is affected by this, the opposition has been across the political spectrum. A lot of people don't see the benefits coming from AI and feel they will be paying for it with their energy bills and water." "It's an important talking point. We've seen outrageous utility price rises across the country and we are going to lean into this. Prices are going up across the board and this is something Americans really do care about."
  
  
  Read more of this story at Slashdot.
  

• Taiwan Cries Censorship As Government Bans Rednote
  Longtime Slashdot reader hackingbear writes: Taiwan's government has ordered a one-year block of a popular, mainland Chinese-owned social media app Xiaohongshu, also known as The Little RedNote, citing its failure to cooperate with authorities over fraud-related concerns. Taiwan's Ministry of the Interior on Thursday cited Xiaohongshu's, which does not have business presence on the island, refusal to cooperate with authorities as the basis for the ban, claiming that the platform has been linked to more than 1,700 fraud-related cases that resulted in financial losses of 247.7 million Taiwanese dollars ($7.9 million). "Due to the inability to obtain necessary data in accordance with the law, law enforcement authorities have encountered significant obstacles in investigations, creating a de facto legal vacuum," the ministry said in a statement. Chinese Nationalist Party (KMT), Taiwan's opposition party, Chairwoman Cheng Li-wun decried the government plan to suspend access to Chinese social media platform Xiaohongshu for one year as censorship. "Many people online are already asking 'How to climb over the firewall to access Xiaohongshu,'" Cheng posted on social media. Meta was facing fines earlier this year for failing to disclose information on individuals who funded advertisements on its social media platforms, marking the second such penalty in Taiwan for violating the anti-fraud act. "Meta failed to fully disclose information regarding who paid for the advertisement and who benefited from it," Depute Minister Lin of Ministry of Digital Affairs said at a news conference on June 18. If MODA decides to impose the fine, it would mark the second such penalty against Meta in Taiwan, following a NT$1 million ($33,381) fine issued in May for violating the Fraud Crime Hazard Prevention Act by failing to disclose information on individuals who commissioned and funded two Facebook advertisements. Meta's Threads were also included in the regulatory framework following nearly 1,900 fraud-related reports associated with the platform, with 718 confirmed as scams. Xiaohongshu has surged in popularity among young Taiwanese in recent years, amassing 3 million users in the island of 23 million.
  
  
  Read more of this story at Slashdot.
  

• IBM To Buy Confluent For $11 Billion To Expand AI Services
  IBM is buying Confluent for $11 billion in a major push to own real-time data streaming infrastructure essential for enterprise AI workloads. It marks Big Blue's biggest acquisition since Red Hat in 2019. Bloomberg reports: The AI boom has touched off billions of dollars in deals for businesses that build, train or leverage the technology, propelling the value of an entire ecosystem of data center developers, software makers, generative AI tool developers and data management firms. Mountain View, California-based Confluent sits in the data corner of that world, providing a platform for companies to gather -- or "stream" -- and analyze data in real time as opposed to shipping data in clunkier batches. Manufacturers such as Michelin, for example, have used Confluent's platform to optimize their inventories of raw and semi-finished materials live. Instacart adopted Confluent to develop real-time fraud detection systems and gain more visibility into the availability of products sold on its grocery delivery platform. Businesses are increasingly tapping AI systems that manage tasks like this in real-time and require live flows of data to do so. IBM, which pioneered mainframe computers, has been trying to reposition its business around AI over the past few years. Under Chief Executive Officer Arvind Krishna, it's been buying software companies and selling generative AI-related services to enterprise clients. Software now makes up almost half its total revenue and continues to grow at a steady rate.
  
  
  Read more of this story at Slashdot.
  

• Firefox 146 Now Available With Native Fractional Scaling On Wayland
  Firefox 146 has been released with native fractional scaling support on Wayland -- finally giving Linux users crisp UI rendering. Other new additions include GPU process improvements on macOS, developer-focused CSS features, and broader access to Firefox Labs. Phoronix reports: Firefox 146 also now makes Firefox Labs available to all users, Firefox on macOS now has a dedicated GPU process by default, dropping Direct2D support on Windows, support for compressed elliptic curve points in WebCrypto, and updated the bundled Skia graphics library. Firefox 146 also has some fun developer enhancements like support for the CSS text-decoration-inset property, the @scope rule now being supported, CSS contrast-color() function being available, and several new experimental web features. The release notes and developer changes can be found at their respective links. Release binaries are available at Mozilla.org.
  
  
  Read more of this story at Slashdot.
  

• Meta Pledge To Use Less Personal Data For Ads Gets EU Nod, Avoids Daily Fines
  An anonymous reader quotes a report from Reuters: Meta's proposal to use less personal data for targeted advertising in its pay-or-consent model that will be rolled out next month won the approval of EU antitrust regulators on Monday, signaling the company will not face daily fines after all. [...] The U.S. tech giant has been locked in discussions with the European Commission after getting hit with a $233 million fine in April for breaching the Digital Markets Act aimed at reining in the power of Big Tech. The violation covered Facebook and Instagram in the period from November 2023 to November 2024, after which Meta tweaked its pay-or-consent model to use less personal data for targeted advertising. The EU executive has been examining the changes to see if they comply with the DMA, with Meta risking daily fines of as much as 5% of its average daily worldwide turnover if found to be still in breach of the law. The tweaks are in wording, design and transparency to remind users of the two options. Meta did not plan on any substantial changes to its November proposal despite the risk of EU fines, people with direct knowledge of the matter had told Reuters. The Commission, which acts as the EU competition enforcer, acknowledged Meta's November proposal, saying that it will monitor the new ad model and seek feedback, with no more talk of periodic fines. "Meta will give users the effective choice between consenting to share all their data and seeing fully personalized advertising, and opting to share less personal data for an experience with more limited personalized advertising," the Commission said in a statement.
  
  
  Read more of this story at Slashdot.
  

• Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two
  In Part One of this series, we examined how the SONiC control plane and the VPP data plane form a cohesive, software-defined routing stack through the Switch Abstraction Interface.` We outlined how SONiC’s Redis-based orchestration and VPP’s user-space packet engine come together to create a high-performance, open router architecture. In this second part, we’ll turn [0]
  
  The post Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One
  The networking industry is undergoing a fundamental architectural transformation, driven by the relentless demands of cloud-scale data centers and the rise of software-defined infrastructure. At the heart of this evolution is the principle of disaggregation: the systematic unbundling of components that were once tightly integrated within proprietary, monolithic systems.` This movement began with the separation [0]
  
  The post Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One appeared first on Linux.com.
  

• Kubernetes on Bare Metal for Maximum Performance
  When teams consider deploying Kubernetes, one of the first questions that arises is: where should it run? The default answer is often the public cloud, thanks to its flexibility and ease of use. However, a growing number of organizations are revisiting the advantages of running Kubernetes directly on bare metal servers. For workloads that demand [0]
  
  The post Kubernetes on Bare Metal for Maximum Performance appeared first on Linux.com.
  

• How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM
  This article was contributed by Vedrana Vidulin, Head of Responsible AI Unit at Intellias (LinkedIn). As AI becomes central to smart devices, embedded systems, and edge computing, the ability to run language models locally — without relying on the cloud — is essential. Whether its for reducing latency, improving data privacy, or enabling offline functionality, local AI [0]
  
  The post How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM appeared first on Linux.com.
  

• Automating Compliance Management with UTMStacks Open Source SIEM 8 XDR
  Achieving and maintaining compliance with regulatory frameworks can be challenging for many organizations. Managing security controls manually often leads to excessive use of time and resources, leaving less available for strategic initiatives and business growth. Standards such as CMMC, HIPAA, PCI DSS, SOC2 and GDPR demand ongoing monitoring, detailed documentation, and rigorous evidence collection. Solutions [0]
  
  The post Automating Compliance Management with UTMStacks Open Source SIEM & XDR appeared first on Linux.com.
  

• A Simple Way to Install Talos Linux on Any Machine, with Any Provider
  Talos Linux is a specialized operating system designed for running Kubernetes. First and foremost it handles full lifecycle management for Kubernetes control-plane components. On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence [0]
  
  The post A Simple Way to Install Talos Linux on Any Machine, with Any Provider appeared first on Linux.com.
  

• Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces
  OpenTelemetry (fondly known as OTel) is an open-source project that provides a unified set of APIs, libraries, agents, and instrumentation to capture and export logs, metrics, and traces from applications. The project’s goal is to standardize observability across various services and applications, enabling better monitoring and troubleshooting. Read More at Causely
  
  The post Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces appeared first on Linux.com.
  

• Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation.
  Exciting news! The Tazama project is officially a Digital Public Good having met the criteria to be accepted to the Digital Public Goods Alliance ! Tazama is a groundbreaking open source software solution for real-time fraud prevention, and offers the first-ever open source platform dedicated to enhancing fraud management in digital payments. Historically, the financial [0]
  
  The post Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation. appeared first on Linux.com.
  

• Xen 4.19 is released
  Xen Project 4.19 has been officially out since July 31st, 2024, and it brings significant updates. With enhancements in performance, security, and versatility across various architectures like Arm, PPC, RISC-V, and x86, this release is an important milestone for the Xen community. Read more at XCP-ng Blog
  
  The post Xen 4.19 is released appeared first on Linux.com.
  

• Advancing Xen on RISC-V: key updates
  At Vates, we are heavily invested in the advancement of Xen and the RISC-V architecture. RISC-V, a rapidly emerging open-source hardware architecture, is gaining traction due to its flexibility, scalability and openness, which align perfectly with our ethos of fostering open development ecosystems. Although the upstream version of Xen for RISC-V is not yet fully [0]
  
  The post Advancing Xen on RISC-V: key updates appeared first on Linux.com.
  

Engadget"Engadget is a web magazine with obsessive daily coverage of everything new in gadgets and consumer electronics"

• The best budgeting apps for 2025
  Over a year ago, I was prompted to look for another budgeting app. Intuit, parent company of Mint, the budgeting app I had been using for a long time, shut down the service in March 2024. The company encouraged Mint users to migrate to its other financial app, Credit Karma, but I found it to be a poor Mint replacement after trying it out. That sent me searching elsewhere to find an app to track all of my financial accounts, monitor my credit score, track spending and set goals like building a rainy-day fund and paying down my mortgage faster.
  
  If you’re looking for a new budgeting app to get your finances straight, allow Engadget to help. I tried out Mint9s top competitors in the hopes that I9d be able to find a new budgeting app that could handle all of my financial needs, and to see which are actually worth the money.
  Best budget apps of 2025
  
  
  
  
  
  
  
  
  
  Other budgeting apps we tested PocketGuard
  PocketGuard used to be a solid free budget tracker, but the company has since limited its “free” version to just a free seven-day trial. Now, you’ll have to choose between two plans once the trial is over: a $13 monthly plan or a $75 annual plan. When I first tested it, I found it to be more restricted than NerdWallet, but still a decent option. The main overview screen shows you your net worth, total assets and debts; net income and total spending for the month; upcoming bills; a handy reminder of when your next paycheck lands; any debt payoff plan you have; and any goals. Like some other apps, including Quicken Simplifi, PocketGuard promotes an “after bills” approach, where you enter all of your recurring bills, and then PocketGuard shows you what’s left, and that’s what you’re supposed to be budgeting: your disposable income.
  
  Although PocketGuard’s UI is easy enough to understand, it lacks polish. The “accounts” tab is a little busy, and doesn’t show totals for categories like cash or investments. Seemingly small details like weirdly phrased or punctuated copy occasionally make the app feel janky. More than once, it prompted me to update the app when no updates were available. The web version, meanwhile, feels like the mobile app blown up to a larger format and doesn’t take advantage of the extra screen real estate. Ultimately, now that the free tier is gone, it just doesn’t present the same value proposition as it once did.
  How we test budgeting apps
  Before I dove in and started testing out budgeting apps, I had to do some research. To find a list of apps to try out, I consulted trusty ol’ Google (and even trustier Reddit); read reviews of popular apps on the App Store; and also asked friends and colleagues what budget tracking apps (or other budgeting methods) they might be using for money management. Some of the apps I found were free and these, of course, show loads of ads (excuse me, “offers”) to stay in business. But most of the available apps require paid subscriptions, with prices typically topping out around $100 a year, or $15 a month. (Spoiler: My top pick is cheaper than that.)
  
  All of the services I chose to test needed to do several things: import all of your account data into one place; offer budgeting tools; and track your spending, net worth and credit score. Except where noted, all of these apps are available for iOS, Android and on the web.
  
  Once I had my shortlist of six apps, I got to work setting them up. For the sake of thoroughly testing these apps, I made a point of adding every account to every budgeting app, no matter how small or immaterial the balance. What ensued was a veritable Groundhog Day of two-factor authentication. Just hours of entering passwords and one-time passcodes, for the same banks half a dozen times over. Hopefully, you only have to do this once.
  Budgeting app FAQs What is Plaid and how does it work?
  Each of the apps I tested uses the same underlying network, called Plaid, to pull in financial data, so it’s worth explaining what it is and how it works. Plaid was founded as a fintech startup in 2013 and is today the industry standard in connecting banks with third-party apps. Plaid works with over 12,000 financial institutions across the US, Canada and Europe. Additionally, more than 8,000 third-party apps and services rely on Plaid, the company claims.
  
  To be clear, you don’t need a dedicated Plaid app to use it; the technology is baked into a wide array of apps, including all of the budgeting apps listed in this guide. Once you find the “add an account” option in whichever one you’re using, you’ll see a menu of commonly used banks. There’s also a search field you can use to look yours up directly. Once you find yours, you’ll be prompted to enter your login credentials. If you have two-factor authentication set up, you’ll need to enter a one-time passcode as well.
  
  As the middleman, Plaid is a passthrough for information that may include your account balances, transaction history, account type and routing or account number. Plaid uses encryption, and says it has a policy of not selling or renting customer data to other companies. However, I would not be doing my job if I didn’t note that in 2022 Plaid was forced to pay $58 million to consumers in a class action suit for collecting “more financial data than was needed.” As part of the settlement, Plaid was compelled to change some of its business practices.
  
  In a statement provided to Engadget, a Plaid spokesperson said the company continues to deny the allegations underpinning the lawsuit and that “the crux of the non-financial terms in the settlement are focused on us accelerating workstreams already underway related to giving people more transparency into Plaid’s role in connecting their accounts, and ensuring that our workstreams around data minimization remain on track.”
  Why did Mint shut down?
  When parent company Intuit announced in December 2023 that it would shut down Mint, it did not provide a reason why it made the decision to do so. It did say that Mint9s millions of users would be funneled over to its other finance app, Credit Karma. "Credit Karma is thrilled to invite all Minters to continue their financial journey on Credit Karma, where they will have access to Credit Karma’s suite of features, products, tools and services, including some of Mint’s most popular features," Mint wrote on its product blog. In our testing, we found that Credit Karma isn9t an exact replacement for Mint — so if you9re still looking for a Mint alternative, you have some decent options.
  What about Rocket Money?
  Rocket Money is another free financial app that tracks spending and supports things like balance alerts and account linking. If you pay for the premium tier, the service can also help you cancel unwanted subscriptions. We did not test it for this guide, but we9ll consider it in future updates.
  This article originally appeared on Engadget at https://www.engadget.com/apps/best-budgeting-apps-120036303.html?src=rss

• Fairphone updates its over ear headphones with better sound
  Two years ago, Fairphone launched a pair of modular, fully-repairable headphones called the Fairbuds XL. Now, the Dutch social enterprise is releasing an updated version where the focus isn’t just on the quality of its hardware, but on the merits of its raw materials. 
  
  The 2025 Fairbuds XL ship with new “premium” 40mm dynamic drivers and stronger N52 rated magnets for “more power and enhanced bass response.” Listeners should expect to hear “improved accuracy in mid and high frequencies” thanks to improved audio tuning. And there’s a new paper-based speaker membrane that’s more refined than what went before.
  
  Sound-quality is certainly improved over the predecessor, with cleaner bass and sharper mid and high tones. You can really hear how clean the sound is, especially when you’re listening to something lush and orchestral. Going by my memory from two years ago, the ANC seems to be unchanged, able to deal with unwanted sounds like the tapping of my own keyboard with ease. 
  
  Obviously, you shouldn’t go in expecting the same sort of brilliant sound you’d get from top tier manufacturers. Although I think Fairphone has likely closed the gap so while you’re still a generation or two behind the bleeding edge, it’s not by a shameful degree. And, if we’re honest, if you’re looking for a pair of cans that’ll last you years and years, you’re likely able to forgive the absence of the shiniest bells and whistles. 
  Closeup image of the Fairbuds XL (2025) Daniel Cooper for Engadget
  It’s easy to notice the design changes, too, with the more austere Fairphone logo and the use of solid plastic in place of the original speckled pattern. Sadly, that extends to the little pop of copper found on the four way joystick, which is now a different shade of the same colorway. I get it: A lot of people want their consumer electronics to blend in, but the loss of whimsy pains me a little. 
  
  There’s some fairly minor but welcome quality of life improvements, including adding automatic power off after 30 minutes. Plus, buyers get the benefit of a three year warranty, and can rest assured the XL are Longtime certified. Longtime is a new European labeling standard for gear built to be long-lived, repairable and supported by a robust repair infrastructure. And, if you already own a pair of XLs, you can buy the new drivers and slot them into your existing cans.
  Side showing logo.Daniel Cooper for Engadget
  But, in line with Fairphone’s founding principles, the update is equally focused on the raw materials that have gone into making the 2025 XLs. The PU “leather” found in the ear cushions — hardly a climate friendly material — has been ditched in favor of Bird’s Eye Fabric. That’s a cotton fabric produced with a series of air holes for breathability more commonly found in athleisure products. Similarly the PU found in the headband gets replaced with fabric that reminds me of plenty of other high end sport headphones.
  
  Beneath the surface, the new model contains 100 percent fair mined cobalt, copper and silver — via mining credits, at least. The rare earth metals used in the speaker magnets are now 100 percent recycled, and they were assembled in a facility using 100 percent renewable energy. You’ll also find more than 90 percent recycled aluminum, and 80 percent recycled plastics, with the company pledging to recycle an equal amount of e-waste to every pair sold. Plus, as usual, Fairphone will pay the people who assemble the hardware a living wage bonus to ensure “workers can cover their family’s needs.” 
  
  Fairbuds XL are available to order today in Europe both from the Fairphone website and select third party retailers. If you’re in the US, you’ll need to wait until “later” this month, but you’ll be able to pick them up via Amazon for $229. 
  
  
  
  
  
  
  This article originally appeared on Engadget at https://www.engadget.com/audio/fairphone-updates-its-over-ear-headphones-with-better-sound-080000773.html?src=rss

• Letterboxd Video Store's first film rentals will be available this week
  Letterboxd has introduced its first wave of exclusive digital film rentals for the company’s previously announced Letterboxd Video Store. The inaugural collection is themed Unreleased Gems and includes four movies that received awards or acclaim during a film festival. The titles will be available to watch from Letterboxd from December 10 through January 9. Each film is limited to certain geographic markets and the prices will also vary both by title and country.
  
  The Unreleased Gems rental titles include It Ends, a mystery-horror that played at SXSW 2025; Sore: A Wife From the Future, which received eight nominations at the 2025 Indonesian Film Festival; Kennedy, a Hindi-language crime-thriller that premiered at Cannes Film Festival in 2023; and The Mysterious Gaze of the Flamingo, a drama which received the Un Certain Regard prize from this year9s Cannes event.
  This article originally appeared on Engadget at https://www.engadget.com/entertainment/tv-movies/letterboxd-video-stores-first-film-rentals-will-be-available-this-week-235426596.html?src=rss

• Congress removes right to repair language from 2026 defense bill
  According to a statement from the Public Interest Research Group, the National Defense Authorization Act for Fiscal Year 2026 has removed language that would have granted the US military the right to repair its own equipment rather than requiring it to use official defense contractors for maintenance. This bill is still being considered by Congress, but it is uncertain whether the right to repair language is likely to be re-introduced once it has been removed. 
  
  "Despite support from Republicans, Democrats, the White House and key military leaders, troops will keep waiting for repairs they could perform themselves," US PIRG Legislative Associate Charlie Schuyler said in a statement from the organization. "Taxpayers will keep paying inflated costs. And in some cases, soldiers might not get the equipment they need when they need it most."
  
  A bipartisan bill from Senators Elizabeth Warren and Tom Sheedy was introduced earlier this year to allow the military right to repair access. The topic has been a more piecemeal affair for laypeople in the US, with some states enacting their own laws and federal regulators sometimes intervening to offer consumers more choice in how they seek repairs.
  This article originally appeared on Engadget at https://www.engadget.com/big-tech/congress-removes-right-to-repair-language-from-2026-defense-bill-231708835.html?src=rss

• Katsuhiro Harada is leaving Bandai Namco after 30 years
  Katsuhiro Harada is departing Bandai Namco at the end of 2025. He announced the news both with a farewell note shared on X and, in possibly the coolest exit ever, with an hour-long DJ mix. Harada9s 30-year career has most closely been involved with Tekken and he9s a familiar face in the fighting game community.
  
  He began as a voice actor in the original Tekken game and continued to do so even as he became a director for the series. He has worked on other Bandai Namco titles as a producer, both in and out of the fighting genre. "Each project was full of new discoveries and learning, and every one of them became an irreplaceable experience for me," Harada wrote on X. "To everyone who has supported me, to communities around the world, and to all the colleagues who have walked alongside me for so many years, I offer my deepest gratitude."
  
  He closed by saying that over his career, he never DJed at a tournament event. So to mark his departure, Harada posted a full set titled ‘TEKKEN: A 30-Year Journey – Harada’s Final Mix’ to SoundCloud. Which is just the most swag move I can think of and a fun way to close out this chapter for fans of the franchise.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/katsuhiro-harada-is-leaving-bandai-namco-after-30-years-223156258.html?src=rss

• An AI copycat of King Gizzard & the Lizard Wizard went unnoticed on Spotify for weeks
  Despite making some moves to address the proliferation of AI-generated audio on its platform, Spotify failed to catch a copycat making imitations of music by King Gizzard & the Lizard Wizard. The long-running experimental rock band from Australia, has been a vocal critic of Spotify and was one of several artists that took their music off the platform in the summer. The move was in response to the discovery that outgoing CEO Daniel Ek was a leading investor in an AI-focused weapons and military company. Today, a poster on Reddit was recommended what appeared to be an AI-generated copy of one of the band9s songs in Spotify’s Release Radar playlist. The phony artist was called King Lizard Wizard and it had an album of tracks all sharing titles with songs by the original band and using their original lyrics. unveiled a spam filter for catching AI slop, as well as policies for disclosing AI use in the content it hosts and how it would tackle AI impersonations. An instance like this, particularly when it features an artist that had left the platform in protest, creates a pretty big question mark about how well those policies are working. 
  This article originally appeared on Engadget at https://www.engadget.com/entertainment/streaming/an-ai-copycat-of-king-gizzard--the-lizard-wizard-went-unnoticed-on-spotify-for-weeks-220018144.html?src=rss

• Google and Apple partner on better Android-iPhone switching
  Google and Apple have long existed as polar opposites, each ruling over their tech kingdoms with little interest in cooperation. But the latest build of Android9s Canary operating system hints at an unusual instance of collaboration between the brands, with a new feature that seems aimed at making data transfer simpler between Android and iOS mobile device during the setup phase. It is expected to also be available in a future developer beta of iOS 26. 
  
  A representative for Google confirmed that the report from 9to5Google on this development is accurate, but didn9t provide any additional details on how the transfer will work. Each brand already has their own dedicated Switch to Android and Switch to iOS apps for making the swap between ecosystems, but making the transition easier at the operating system level and adding support for moving more types of data certainly sounds promising. That said, features can go through a fair bit of iteration between the dev betas and the final launch, and Android Canary is a very early stage of development, so we9ll be curious to see what actually arrives on our smartphones.
  This article originally appeared on Engadget at https://www.engadget.com/mobile/smartphones/google-and-apple-partner-on-better-android-iphone-switching-204738960.html?src=rss

• Here's how Google is laying the foundation for our mixed reality future
  Today, during the XR edition of The Android Show, Google showed off a bunch of updates and new features headed to its mixed reality OS. And while most of the news was aimed at developers, I got a chance to demo some of the platform's expanded capabilities on a range of hardware including Samsung's Galaxy XR headset, two different reference designs and an early version of Xreal's Project Aura smart glasses and I came away rather impressed. So here's a rundown of what I saw and how it will impact the rapidly growing ecosystem of head-mounted displays.
  
  First up was one of Google's reference design smart glasses with a single waveguide RGB display built into its right lens. I've included a picture of it here, but try not to read too deeply into its design or aesthetics, as this device is meant to be a testbed for Android XR features and not an early look at upcoming models.
  Try not to read too much into the appearance of Google's reference design smart glasses, as they are explicitly labeled as prototypes meant to test upcoming features in Android XR.Sam Rutherford for Engadget
  After putting them on, I was able to ask Gemini to play some tunes on YouTube Music before answering a call simply by tapping on the touchpad built into the right side of the frames. And because the reference model also had onboard world-facing cameras, I could easily share my view with the person on the other end of the line. 
  
  Naturally, I was curious about how glasses had the bandwidth to do all this, because in normal use, they rely on a Bluetooth or Bluetooth LE connection. When asked, Max Spear, Group Product Manager for XR, shared that depending on the situation, the device can seamlessly switch between both Bluetooth and Wi-Fi, which was rather impressive because I couldn't even detect when that transition happened. Spear also noted that one of Google's focuses for Android XR is making it easier for developers to port over the apps people already know and love. 
  
  This means for devices like the reference design I wore that feature a built-in display (or displays), the OS actually uses the same code meant for standard Android notifications (like quick replies) to create a minimalist UI instead of forcing app makers to update each piece of software to be compliant with an ever-increasing number of devices. Alternatively, for models that are super lightweight and rely strictly on speakers (like Bose Frames), Google has also designed Android XR so that you only need mics and voice controls to access a wide variety of apps without the need for visual menus. 
  This is the picture Google's reference design smart glasses created (via Gemini ) when I asked it to transform a photo I took of some pantry shelves into a sci-fi kitchen. Sam Rutherford for Engadget
  Meanwhile, if you're hoping to take photos with your smart glasses, there's a surprising amount of capability there, too. Not only was I able to ask Gemini to take a photo, the glasses were also able to send a higher-res version to a connected smartwatch, which is super handy in case you want to review the image before moving on to the next shot. And when you want to inject some creativity, you can ask Gemini to transform pictures into practically anything you can imagine via Nano Banana. In my case, I asked the AI to change a shot of a pantry into a sci-fi kitchen and Gemini delivered with aplomb, including converting the room into a metal-clad setting complete with lots of light strips and a few bursts of steam.
  
  However, one of the most impressive demos was when I asked Google's reference glasses to look at some of that same pantry environment and then use the ingredients to create a recipe based on my specifications (no tomatoes please, my wife isn't a fan). Gemini went down an Italian route by picking pasta, jarred banana peppers, bell peppers (which I thought was a somewhat unusual combination) and more, before launching into the first steps of the recipe. Sadly, I didn't have time to actually cook it, but as part of the demo, I learned that Gemini has been trained to understand human-centric gestures like pointing and picking things up. This allows it to better understand context without the need to be super specific, which is one of those little but very impactful tricks that allows AI to feel way less robotic. 
  This is how Google Maps will look on Android XR. Note that this is the flat 2D version instead of the more detailed stereoscopic view available on smart glasses with dual displays. Sam Rutherford for Engadget
  Then I had a chance to see how Uber and Google Maps ran on the reference glasses, this time using models with both single and dual RGB displays. Surprisingly, even on the monocular version, Maps was able to generate a detailed map with the ability to zoom in and out. But when I switched over to the binocular model, I noticed a significant jump in sharpness and clarity along with a higher-fidelity map with stereoscopic 3D images of buildings. Now, it may be a bit early to call this, and the perception of sharpness varies greatly between people based on their head shape and other factors, but after seeing that, I'm even more convinced that the smart glasses with dual RGB displays are what the industry will settle on in the long term.
  
  The second type of device I used was the Samsung Galaxy XR, which I originally tried out when it was announced back in October. However, in the short time since, Google has cooked up a few new features that really help expand the headset's capabilities. By using the goggle's exterior-facing cameras, I was able to play a game of I Spy with Gemini. Admittedly, this might sound like a small addition, but I think it's going to play a big part in how we use devices running Android XR, because it allows the headset (or glasses) to understand better what you're looking at in order to provide more helpful contextual responses. 
  Even though it was announced not long ago in late October, Samsung's Galaxy XR headset is already getting some new features thanks to some updates coming to Android XR. Sam Rutherford for Engadget
  However, the biggest surprise was when I joined a virtual call with someone using one of Google's new avatars, called Likeness. Instead of the low-polygon cartoony characters we've seen before in places like Meta Horizon, Google's virtual representations of people's faces are almost scary good. So good I had to double-check that they weren't real and from what I've seen they're even a step up from Apple's Personas. Google says that headsets like the Galaxy XR rely on interior sensors to track and respond to facial movements, while users will be able to create and edit their avatars using a standalone app due out sometime next year. 
  The person in the bottom right is using a Likeness, which during my demo looked surprisingly responsive and realistic. Google
  Next, I got a chance to test out the Android XR's PC connectivity by playing Stray on the Galaxy XR while it was tethered wirelessly to a nearby laptop. Not only did it run almost flawlessly with low latency, I was also able to use a paired controller instead of relying on hand-tracking or the laptop's mouse and keyboard. This is something I've been eagerly waiting to try because it feels like Google has put a lot of work into making Android XR devices play nicely with other devices and OSes. Initially, you'll only be able to connect Windows PCs to the Galaxy XR, but Google says it's looking to support macOS systems as well.
  
  Finally, I got to try out Xreal's Project Aura glasses to see how Android XR works on a device primarily designed to give you big virtual displays in a portable form factor. Unfortunately, because this was a pre-production unit, I wasn't able to take photos. That said, as far as the glasses go, I was really impressed with their resolution and sharpness and the inclusion of electrochromic glass is a really nice touch, as it allows users to change how heavily the lenses are tinted with a single touch. Alternatively, the glasses can also adjust the tint automatically based on whatever app you are using to give you a more or less isolated atmosphere, depending on the situation. I also appreciate the Aura's increased 70-degree FOV, but if I'm nitpicking, I wish it were a bit higher, as I occasionally found myself wanting a bit more vertical display area. 
  Unfortunately, I wasn't allowed to take photos of Xreal's Project Aura smart glasses, as the model I used was still an early pre-production unit. So here's a shot provided by Google instead. Google / Xreal
  As a device that's sort of between lightweight smart glasses and a full VR headset, the Aura relies on a wired battery pack that also doubles as a touchpad and a hub for plugging in external devices like your phone, laptop or even game consoles. 
  
  While using the Aura, I was able to connect to a different PC and multitask in style, as the glasses were able to support multiple virtual displays while running several different apps at the same time. This allowed me to be on a virtual call with someone using a Likeness while I had two other virtual windows open on either side. I also played an AR game (Demeo) while I moved around in virtual space and used my hands to reposition the battlefield or pick up objects with my hands. 
  
  Now I will fully admit this is a lot and it took me a bit to process everything. But upon reflection, I have a few takeaways from my time with the various Android XR devices and prototypes. More than any other headset or smart glasses platform out now, it feels like Google is doing a ton to embrace a growing ecosystem of devices. That's really important because we're still so early in the lifecycle for wearable gadgets with displays that no one has really figured out a truly polished design like we have for smartphones and laptops. And until we get there, this means that a highly adaptable OS will go a long way towards supporting OEMs like Samsung, Xreal and others. 
  
  But that's not all. It's clear Google is focused on making Android XR devices easy to build for. That's because the company knows that without useful software that can highlight the components and features coming on next-gen spectacles, there's a chance that interest will remain rather niche — similar to what we've seen when looking at the adoption of VR headsets. So in a way, Google is waging a battle on two fronts, which makes navigating uncharted waters that much more difficult. 
  A major focus for Android XR while people are still figuring out how to make smart glasses is to support a wide variety of designs including those with single displays, dual displays or models without any displays that rely on cameras and speakers. Sam Rutherford for Engadget
  Google is putting a major emphasis on Android XR's ability to serve as a framework for future gadgets and support and address developer needs. This mirrors the approach the company takes with regular Android and the opposite of Apple's typical MO, because unlike the Vision Pro and visionOS, it appears Google is going to rely heavily on its partners like Xreal, Warby Parker, Gentle Monster and others to create engaging hardware. Furthermore, Google says it plans to support smart glasses that can be tethered to Android and iOS phones, as well as smartwatches from both ecosystems, though there will be some limitations for people using Apple devices due to inherent OS restrictions.
  
  That's not to say that there won't be Pixel glasses sometime down the road, but at least for now, I think that's a smart approach and possibly a lesson Google learned after releasing Google Glass over a decade ago. Meanwhile, hi-res and incredibly realistic avatars like Likenesses could be a turning point for virtual collaboration, because, in a first for me, talking to a digital representation of someone else felt kind of natural. After my demos, I had a chance to talk to Senior Director of Product Management for XR Juston Payne, who highlighted the difference between smart glasses and typical gadgets by saying "Smart glasses have to be great glasses first. They need to have a good form factor, good lenses with prescription support, they need to look good and they have to be easy to buy."
  
  That's no simple task and there's no guarantee that next-gen smart glasses and headsets will be a grand slam. But from what I've seen, Google is building a very compelling foundation with Android XR.
  
  
  
  
  
  
  This article originally appeared on Engadget at https://www.engadget.com/wearables/heres-how-google-is-laying-the-foundation-for-our-mixed-reality-future-180000716.html?src=rss

• TikTok announces shared feed and collections features
  TikTok just announced a couple of updates that that should make the app a bit more social. There9s something called Shared Feed, which is exactly what it sounds like. It9s a feed that friends and family can watch together, though at different times. 
  
  This feed is shared via direct messaging and pulls up relevant content to everyone involved in the chat. TikTok says this is a "new way to discover content together." It consists of a daily curated selection of 15 videos that are generated by TikTok activity.
  
  These feeds are shared via invitation and the participants can leave the chat at any time. There9s also a new dashboard that lets viewers check out their Shared Like history and other metrics. The Shared Feed tool rolls out globally in the coming months. It sounds similar to something Instagram began offering earlier this year. Instagram is typically the one copying TikTok, so this is a nice change of pace.
  TikTok
  TikTok has also announced something called Shared Collections. This is like the aforementioned Shared Feed, but for saved content. The tool lets users collect, organize and share groups of videos, with TikTok citing that people could use it to share reading lists, local restaurants to try and, of course, products to buy.
  
  All you have to do is save a video, create a Shared Collection and send that list to someone else via direct message. Users must follow one another to access one of these lists. The tool is available globally right now to folks over the age of 16.
  
  Finally, TikTok is rolling out themed holiday cards that can be sent in direct messages. They will be available globally later this month.
  This article originally appeared on Engadget at https://www.engadget.com/apps/tiktok-announces-shared-feed-and-collections-features-193857725.html?src=rss

• Paramount makes a $108 billion hostile takeover bid for Warner Bros. Discovery
  Paramount has been none too pleased about Netflix striking an $82.7 billion deal to buy much of Warner Bros. Discovery (WBD). Now, Paramount is making a hostile takeover bid for WBD. It's making its pitch directly to WBD shareholders with an all-cash offer of $30 per share that expires on January 8.
  
  Late last week, the WBD board unanimously accepted Netflix's offer of $27.75 per share. That breaks down to $23.25 per share in cash and another $4.50 per share in Netflix stock. Netflix's overall bid is valued at $82.7 billion, while Paramount's totals $108.4 billion.
  
  There's a key difference when it comes to the Paramount offer, as it’s for all of WBD. The latter is scheduled to split into two companies next year. Netflix only wants the Streaming and Studios side of WBD's business, which includes HBO Max and the Warner Bros. film, TV and game studios.
  
  Paramount is after the whole shebang, including WBD's cable channels (Global Networks). "WBD's Board of Directors recommendation of the Netflix transaction over Paramount's offer is based on an illusory prospective valuation of Global Networks that is unsupported by the business fundamentals and encumbered by high levels of financial leverage assigned to the entity," Paramount said in a press release on Monday.
  
  As of the end of September, WBD was carrying $34.5 billion of gross debt. It planned to saddle the Global Networks company (aka Discovery Global) with most of that. The Paramount offer includes $40.7 billion in financing from the family of Paramount CEO David Ellison — his father is Oracle co-founder Larry Ellison — and RedBird Capital, but it would be taking on more debt to secure a deal for WBD. The bid includes "$54 billion of debt commitments from Bank of America, Citi and Apollo." (Apollo owns a majority stake in Yahoo, Engadget's parent company).
  
  According to an SEC filing [PDF], other entities are backing the Paramount bid, including Jared Kushner’s investment firm Affinity Partners and the sovereign wealth funds of Saudi Arabia (the Public Investment Fund), Qatar and Abu Dhabi. Tencent was a financing partner in a previous Paramount offer, but it’s not involved with the hostile takeover attempt.
  
  In a letter sent to WBD CEO David Zazlav before the company accepted Netflix's offer, Paramount questioned the "fairness and adequacy" of the sale process. It asked whether WBD was acting in the best interest of shareholders after the management team allegedly appeared to favor the Netflix offer.
  
  "Despite Paramount submitting six proposals over the course of 12 weeks, WBD never engaged meaningfully with these proposals which we believe deliver the best outcome for WBD shareholders," Paramount said. "Paramount has now taken its offer directly to WBD shareholders and its Board of Directors to ensure they have the opportunity to pursue this clearly superior alternative."
  
  Paramount — which Skydance bought for $8 billion this year — also claims that its offer is likely to face less regulatory scrutiny than the Netflix offer, which wouldn't close until sometime after WBD splits in two later in 2026. According to said that Netflix's bid for WBD has "got to go through a process, and we’ll see what happens. But it is a big market share. It could be a problem."
  
  In a statement to said at an event on Monday that Paramount’s new offer was “entirely expected. We have a deal done, and we are incredibly happy with the deal. We think it’s great for our shareholders. It’s great for consumers. We think it’s a great way to create and protect jobs in the entertainment industry. We’re super confident we’re going to get it across the line and finish.”
  
  Update December 8, 2025, 11:14AM ET: Added details about the involvement of sovereign wealth funds and Affinity Partners.
  
  Update December 8, 2025, 2:38PM ET: Added the responses from WBD and Netflix.
  This article originally appeared on Engadget at https://www.engadget.com/big-tech/paramount-makes-a-108-billion-hostile-takeover-bid-for-warner-bros-discovery-152248473.html?src=rss

• EU OS: A Bold Step Toward Digital Sovereignty for Europe
  Image
  A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
  What Is EU OS?
  EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.
  
  Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
  The Vision Behind EU OS
  The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.
  
  Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.
  
  However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
  Conclusion
  EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.
  
  Source: It's FOSS
  European Union

• Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.
  
  In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.
  
  On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.
  
  Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.
  
  The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.
  
  Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.
  
  You can download the latest kernel here.
  Linus Torvalds kernel

• AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
  Image
  AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.
  
  This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.
  
  Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.
  
  Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.
  
  Source: 9to5Linux
  AerynOS

• Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
  Image
  Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.
  
  Here’s a quick overview of what’s new in Xojo 2025r1:
  1. Linux ARM IDE Support
  Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
  2. Web Drag and Drop
  One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
  3. Direct App Store Publishing
  Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
  4. New Desktop and Mobile Features
  This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
  5. Performance and IDE Enhancements
  Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
  What Does This Mean for Developers?
  Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
  How to Get Started
  Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.
  
  Download Xojo 2025r1 today at xojo.com.
  Final Thoughts
  With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
  Xojo ARM

• New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux
  
  Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.
  
  Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.
  
  Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest. 
  
  Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.
  
  Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.
  
  Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.
  
  By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
  Windows

• Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities
  
  The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally. 
  
  As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.
  
  In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions. 
  
  After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.
  
  The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.
  
  At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.
  
  The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
  Security

• Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges
  
  The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.
  
  A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.
  
  This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem. 
  
  The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.
  
  On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.
  
  In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
  kernel

• Linux Celebrates 32 Years with the Release of 6.6-rc2 Version
  
  Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.
  
  The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.
  
  Here is what Linus Torvalds had to say in today's announcement:
  Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds

• Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction
  
  Want to interact with ChatGPT from your Linux desktop without using a web browser?
  
  Bavarder, a new app, allows you to do just that.
  
  Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.
  
  With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.
  
  During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.
  
  At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.
  
  As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!
  
  Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
  ChatGPT AI

• LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite
  
  Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.
  
  Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.
  
  LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.
  
  You can download LibreOffice 7.5.3 directly from the LibreOffice website��or from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.
  
  All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.
  
  In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.
  
  Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.
  
  The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
  LibreOffice