All the News that Matters

• Debian 11: DLA-4434-1 SOGo XSS Threats CVE-2024-34462 CVE-2025-63499
  Several XSS vulnerabiltiies have been found in SOGo, a groupware server. CVE-2024-34462 XSS during attachment preview. CVE-2025-63499 Cross Site Scripting (XSS) via the theme parameter.

• Mageia 9: libpcap Important Out-of-Bounds Access CVE-2025-11961
  MGASA-2026-0005 - Updated libpcap packages fix security vulnerability

• Mageia 9: Sodium Important Cryptography Check Exploit MGASA-2026-0004
  MGASA-2026-0004 - Updated sodium packages fix security vulnerability

• Mageia 9: curl Important Security Issues OpenSSL Bypass MGASA-2026-0003
  MGASA-2026-0003 - Updated curl packages fix security vulnerabilities

• Mageia 9: wget2 Important Path Traversal Fix MGASA-2026-0002 CVE-2025-69194
  MGASA-2026-0002 - Updated wget2 packages fix security vulnerability

• Debian: Chromium Critical Arbitrary Code Execution DSA-6097-1
  A security issue was discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the oldstable distribution (bookworm), this problem has been fixed in version 143.0.7499.192-1~deb12u1.

• Monday, January 12, Red Hat Layoffs Allegedly Planned
  We'll update this post or follow up if or when we get more information

• AMD Enabling New GFX12.1 & More RDNA 3.5 Hardware Blocks With Linux 6.20~7.0
  AMD today sent out their latest pull request to DRM-Next of new AMDGPU/AMDKFD kernel driver changes they are looking to get into the next kernel cycle, which will either be known as Linux 6.20 or more than likely be called Linux 7.0. Notable with this week's pull request is enabling a lot of new GPU hardware IP blocks, including GC/GFX 12.1 as a new addition past the current GFX12.0 / RDNA4...

• Dozzle 9.0 Real?Time Docker Log Viewer Improves Log Grouping
  Dozzle 9.0 real?time Docker log viewer adds collapsible homepage sections, container group counters, and multiple UI refinements for better log navigation.

• Linux 6.19-rc5 To Fix Broken Nouveau Driver With Newer NVIDIA GPUs
  Now past the end-of-year holidays, this round of Direct Rendering Manager (DRM) fixes for the in-development Linux 6.19 are a bit more meaningful following those light holiday weeks. Sent out today were the DRM fixes for Linux 6.19-rc5 that includes a fix for broken support for newer NVIDIA GPUs on the Nouveau open-source driver...

• LMDE 7 Users Get the Cinnamon 6.6 Desktop Environment
  Cinnamon 6.6 has landed in LMDE 7, allowing Linux Mint Debian Edition users to experience the updated desktop before Mint 22.3 arrives.

• TrueNAS WebShare: ZFS-Backed, Enterprise-Grade File Sharing From The Web Browser
  For situations where Samba (SMB) or NFS usage aren't appropriate or desiring the convenience of accessing files from a web browser on any device, TrueNAS is introducing TrueNAS WebShare as an easy-to-use solution for enterprise-grade file sharing in the web browser...

• Most devs don't trust AI-generated code, but fail to check it anyway
  Developer survey from Sonar finds AI tool adoption has created a verification bottleneckTalk about letting things go! Ninety-six percent of software developers believe AI-generated code isn't functionally correct, yet only 48 percent say they always check code generated with AI assistance before committing it.…

• Steam Is Coming to ARM64 as Ubuntu Opens Testing via Snap
  Steam is moving closer to ARM64 availability as Ubuntu opens testing of a Snap package powered by FEX x86 emulation.

• QEMU 11.0 Could Finish Removing 32-bit Host CPU Support
  The QEMU emulator already deprecated 32-bit host CPU support while for the QEMU 11.0 release this year they could eliminate the 32-bit host support for good...

• KDE Frameworks 6.22 Brings Internal Cleanups Across Core Libraries
  KDE Frameworks 6.22 is out with broad stability improvements, internal cleanups, and refinements across core KDE libraries used by Plasma and apps.

• AI-Powered Social Media App Hopes To Build More Purposeful Lives
  A founder of Twitter and a founder of Pinterest are now working on"social media for people who hate social media," writes a Washington Post columnist. "When I heard that this platform would harness AI to help us live more meaningful lives, I wanted to know more..."Their bid for redemption is West Co. — the Workshop for Emotional and Spiritual Technology Corporation — and the platform they're testing is called Tangle, a "purpose discovery tool" that uses AI to help users define their life purposes, then encourages them to set intentions toward achieving those purposes, reminds them periodically and builds a community of supporters to encourage steps toward meeting those intentions. "A lot of people, myself included, have been on autopilot," Stone said. "If all goes well, we'll introduce a lot of people to the concept of turning off autopilot." But will all go well? The entrepreneurs have been at it for two years, and they've scrapped three iterations before even testing them. They still don't have a revenue model. "This is a really hard thing to do," Stone admitted. "If we were a traditional start-up, we would have probably been folded by now." But the two men, with a combined net worth of at least hundreds of millions, and possibly billions, had the luxury of self-funding for a year, and now they have $29 million in seed funding led by Spark Capital... [T]he project revolves around training existing AI models in "what good intentions and helpful purposes look like," explained Long Cheng, the founding designer. When you join Tangle, which is invitation-only until this spring at the earliest, the AI peruses your calendar, examines your photos, asks you questions and then produces "threads," or categories that define your life purpose. You're free to accept, reject or change the suggestions. It then encourages you to make "intentions" toward achieving your threads, and to add "reflections" when you experience something meaningful in your life. Users then receive encouragement from friends, or "supporters." A few of the "threads" on Tangle are about personal satisfaction (traveler, connoisseur), but the vast majority involve causes greater than self: family (partner, parent, sibling), community (caregiver, connector, guardian), service (volunteer, advocate, healer) and spirituality (seeker, believer). Even the work-related threads (mentor, leader) suggest a higher purpose. The column includes this caveat. "I have no idea whether they will succeed. But as a columnist writing about how to keep our humanity in the 21st century, I believe it's important to focus on people who are at least trying..." "Quite possibly, West Co. and the various other enterprises trying to nudge technology in a more humane direction will find that it doesn't work socially or economically — they don't yet have a viable product, after all — but it would be a noble failure."
  
  
  Read more of this story at Slashdot.
  

• AI Fails at Most Remote Work, Researchers Find
  A new study "compared how well top AI systems and human workers did at hundreds of real work assignments," reports the Washington Post. They add that at least one example "illustrates a disconnect three years after the release of ChatGPT that has implications for the whole economy."AI can accomplish many impressive tasks involving computer code, documents or images. That has prompted predictions that human work of many kinds could soon be done by computers alone. Bentley University and Gallup found in a survey [PDF] last year that about three-quarters of Americans expect AI to reduce the number of U.S. jobs over the next decade. But economic data shows the technology largely has not replaced workers. To understand what work AI can do on its own today, researchers collected hundreds of examples of projects posted on freelancing platforms that humans had been paid to complete. They included tasks such as making 3D product animations, transcribing music, coding web video games and formatting research papers for publication. The research team then gave each task to AI systems such as OpenAI's ChatGPT, Google's Gemini and Anthropic's Claude. The best-performing AI system successfully completed only 2.5 percent of the projects, according to the research team from Scale AI, a start-up that provides data to AI developers, and the Center for AI Safety, a nonprofit that works to understand risks from AI. "Current models are not close to being able to automate real jobs in the economy," said Jason Hausenloy, one of the researchers on the Remote Labor Index study... The results, which show how AI systems fall short, challenge predictions that the technology is poised to soon replace large portions of the workforce... The AI systems failed on nearly half of the Remote Labor Index projects by producing poor-quality work, and they left more than a third incomplete. Nearly 1 in 5 had basic technical problems such as producing corrupt files, the researchers found. One test involved creating an interactive dashboard for data from the World Happiness Report, according to the article. "At first glance, the AI results look adequate. But closer examination reveals errors, such as countries inexplicably missing data, overlapping text and legends that use the wrong colors — or no colors at all." The researchers say AI systems are hobbled by a lack of memory, and are also weak on "visual" understanding.
  
  
  Read more of this story at Slashdot.
  

• Amazon Plans Massive Superstore Larger Than a Walmart Supercenter Near Chicago
  Amazon "has submitted plans for a large-format store near Chicago that would be larger than a Walmart Supercenter," reports CNBC:As part of the plans, Amazon has proposed building a one-story, 229,000-square-foot building [on a 35-acre lot] in Orland Park, Illinois, that would offer a range of products, such as groceries, household essentials and general merchandise, the city said on Saturday. By comparison, Walmart's U.S. Supercenters typically average 179,000 square feet... The Orland Park Plan Commission approved Amazon's proposal on Tuesday, and it will now proceed to a vote from the full village board. That meeting is scheduled for January 19. In a statement cited by CNBC, an Amazon spokesperson called it "a new concept that we think customers will be excited about."
  
  
  Read more of this story at Slashdot.
  

• China's 'Artificial Sun' Breaks Nuclear Fusion Limit Thought to Be Impossible
  "Scientists in China have made a breakthrough with fusion energy that could finally overcome one of the most stubborn barriers to realising the next-generation energy source," reports the Independent:A team from the Chinese Academy of Sciences (CAS) said its experimental nuclear reactor, dubbed the 'artificial Sun', achieved a plasma density that was previously thought impossible... Through a new process called plasma-wall self organisation, the CAS researchers were able to keep the plasma stable at unprecedented density levels. By pushing plasma density well past long-standing empirical limits, the researchers said fusion ignition can be achieved with far higher energy outputs. "The findings suggest a practical and scalable pathway for extending density limits in tokamaks and next-generation burning plasma fusion devices," said Professor Ping Zhu from Huazhong University of Science and Technology, who so-led the research. Professor Zhu's team now plan to apply this new method on the EAST reactor to confirm that it will work under high-performance plasma conditions. The latest breakthrough was detailed in the journal Science Advances in a study titled 'Accessing the density-free regime with ECRH-assisted ohmic start-up on EAST'.
  
  
  Read more of this story at Slashdot.
  

• Meta Announces New Smartglasses Features, Delays International Rollout Claiming 'Unprecedented' Demand'
  This week Meta announced several new features for "Meta Ray-Ban Display" smartglasses: - A new teleprompter feature for the smart glasses (arriving in a phased rollout) - The ability to send messages on WhatsApp and Messenger by writing with your finger on any surface. (Available for those who sign up for an "early access" program). - "Pedestrian navigation" for 32 cities. ("The 28 cities we launched Meta Ray-Ban Display with, plus Denver, Las Vegas, Portland, and Salt Lake City," and with more cities coming soon.) But they also warned Meta Ray-Ban Display "is a first-of-its-kind product with extremely limited inventory," saying they're delaying international expansion of sales due to inventory constraints — and also due to "unprecedented" demand in the U.S. CNBC reports:"Since launching last fall, we've seen an overwhelming amount of interest, and as a result, product waitlists now extend well into 2026," Meta wrote in a blog post. Due to "limited" inventory, the company said it will pause plans to launch in the U.K., France, Italy and Canada early this year and concentrate on U.S. orders as it reassesses international availability... Meta is one of several technology companies moving into the smart glasses market. Alphabet announced a $150 million partnership with Warby Parker in May and ChatGPT maker OpenAI is reportedly working on AI glasses with Apple.
  
  
  Read more of this story at Slashdot.
  

• Medical Evacuation from Space Station Next Week for Astronaut in Stable Condition
  It will be the first medical evacuation from the International space station in its 25-year history. The Guardian reports:An astronaut in the orbital laboratory reportedly fell ill with a "serious" but undisclosed issue. Nasa also had to cancel its first spacewalk of the year... The agency did not identify the astronaut or the medical problem, citing patient privacy. "Because the astronaut is absolutely stable, this is not an emergent evacuation," [chief health and medical officer Dr. James] Polk said. "We're not immediately disembarking and getting the astronaut down, but it leaves that lingering risk and lingering question as to what that diagnosis is, and that means there is some lingering risk for that astronaut onboard." "SpaceX says it's Dragon spacecraft at the International Space Station is ready to return its four Crew-11 astronauts home in an unprecedented medical evacuation on Jan. 14 and 15," reports Space.com:The SpaceX statement came on the heels of NASA's announcement that the Crew-11 astronauts were scheduled to undock from the space station on Jan. 14 and splashdown off the coast of California early on Jan. 15. The Crew-11 Dragon spacecraft will return NASA astronauts Zena Cardman and Mike Fincke to Earth alongside Japanese astronaut Kimiya Yui and Russian cosmonaut Oleg Platanov... NASA officials opted for a "controlled medical evacuation" in order to provide the astronaut better treatment on the ground, NASA chief Jared Isaacman has said... Dr. James Polk, NASA's chief medical officer, has said the medical issue is not an injury to the astronaut afflicted, but rather something related to the prolonged exposure to weighlessness by astronauts living and working on the International Space Station. "It's mostly having a medical issue in the difficult areas of microgravity and the suite of hardware that we operate in," Polk said.
  
  
  Read more of this story at Slashdot.
  

• More US States Are Preparing Age-Verification Laws for App Stores
  Yes, a federal judge blocked an attempt by Texas at an app store age-verification law.But this year Silicon Valley giants including Google and Apple "are expected to fight hard against similar legislation," reports Politico, "because of the vast legal liability it imposes on app stores and developers."In Texas, Utah and Louisiana, parent advocates have linked up with conservative "pro-family" groups to pass laws forcing mobile app stores to verify user ages and require parental sign-off. If those rules hold up in court, companies like Google and Apple, which run the two largest app stores, would face massive legal liability... California has taken a different approach, passing its own age-verification law last year that puts liability on device manufacturers instead of app stores. That model has been better received by the tech lobby, and is now competing with the app-based approach in states like Ohio. In Washington D.C., a GOP-led bill modeled off of Texas' law is wending its way through Capitol Hill. And more states are expected to join the fray, including Michigan and South Carolina. Joel Thayer, president of the conservative Digital Progress Institute and a key architect of the Texas law, said states are only accelerating their push. He explicitly linked the age-verification debate to AI, arguing it's "terrifying" to think companies could build new AI products by scraping data from children's apps. Thayer also pointed to the Trump administration's recent executive order aimed at curbing state regulation of AI, saying it has galvanized lawmakers. "We're gonna see more states pushing this stuff," Thayer said. "What really put fuel in the fire is the AI moratorium for states. I think states have been reinvigorated to fight back on this." He told Politico that the issue will likely be decided by America's Supreme Court, which in June upheld Texas legislation requiring age verification for online content. Thayer said states need a ruling from America's highest court to "triangulate exactly what the eff is going on with the First Amendment in the tech world. "They're going to have to resolve the question at some point."
  
  
  Read more of this story at Slashdot.
  

• How the Free Software Foundation Kept a Videoconferencing Software Free
  The Free Software Foundation's president Ian Kelling is also their senior systems administrator. This week he shared an example of how "the work we put in to making sure a program is free for us also makes it free for the rest of the world."During the COVID-19 pandemic, like everyone everywhere, the FSF increased its videoconferencing use, especially videoconferencing software that works in web browsers. We have experience hosting several different programs to accomplish this, and BigBlueButton was an important one for us for a while. It is a videoconferencing service which describes itself as a virtual classroom because of its many features designed for educational environments, such as a shared whiteboard... In BigBlueButton 2.2, the program used a freely licensed version of MongoDB, but it unintentionally picked up MongoDB's 2018 nonfree license change in versions 2.3 and 2.4. At the FSF, we noticed this [after a four-hour review] and raised the alarm with the BigBlueButton team in late 2020. In many cases of a developer changing to a nonfree license, free forks have won out, but in this case no one judged it worth the effort to maintain a fork of the final free MongoDB version. This was a very unfortunate case for existing users of MongoDB, including the FSF, who were then faced with a challenge of maintaining their freedom by either running old and unmaintained software or switching over to a different free program. Luckily, the free software world is not especially lacking in high quality database software, and there is also a wide array of free videoconferencing software. At the FSF, we decided to spend some effort to make sure MongoDB would no longer make BigBlueButton nonfree, to help other users of MongoDB and BigBlueButton. We think BigBlueButton is really useful for free software in schools, where it is incredibly important to have free software. On the tech team, especially when it comes to software running in a web browser, we are used to making modifications to better suit our needs. In the end, we didn't find a perfect solution, but we did find FerretDB to be a promising MongoDB alternative and assisted the developers of FerretDB to see what would be required for it to work in BigBlueButton. The BigBlueButton developers decided that some architectural level changes for their 3.0 release would be the path for them to remove MongoDB. As of BigBlueButton 3.0, released in 2025, BigBlueButton is back to being entirely free software...! As you can see, in the world of free software, trust can be tricky, and this is part of why organizations like the FSF are so important. Kelling notes he's part of a tech team of just two people reponsible for "63 different services, platforms, and websites for the FSF staff, the GNU Project, other community projects, and the wider free software community..."
  
  
  Read more of this story at Slashdot.
  

• French-UK Starlink Rival Pitches Canada On 'Sovereign' Satellite Service
  An anonymous reader quotes a report from CBC.ca: A company largely owned by the French and U.K. governments is pitching Canada on a roughly $250-million plan to provide the military with secure satellite broadband coverage in the Arctic, CBC News has learned. Eutelsat, a rival to tech billionaire Elon Musk's Starlink, already provides some services to the Canadian military, but wants to deepen the partnership as Canada looks to diversify defence contracts away from suppliers in the United States. A proposal for Canada's Department of National Defence to join a French Ministry of Defence initiative involving Eutelsat was apparently raised by French President Emmanuel Macron with Prime Minister Mark Carney on the sidelines of last year's G7 summit in Alberta. The prime minister's first question, according to Eutelsat and French defence officials, was how the proposal would affect the Telesat Corporation, a former Canadian Crown corporation that was privatized in the 1990s. Telesat is in the process of developing its Lightspeed system, a Low Earth Orbit (LEO) constellation of satellites for high-speed broadband. And in mid-December, the Liberal government announced it had established a strategic partnership with Telesat and MDA Space to develop the Canadian Armed Forces' military satellite communications (MILSATCOM) capabilities. A Eutelsat official said the company already has its own satellite network in place and running, along with Canadian partners, and has been providing support to the Canadian military deployed in Latvia. "What we can provide for Canada is what we call a sovereign capacity capability where Canada would actually own all of our capacity in the Far North or wherever they require it," said David van Dyke, the general manager for Canada at Eutelsat. "We also give them the ability to not be under the control of a singular individual who could decide to disconnect the service for political or other reasons."
  
  
  Read more of this story at Slashdot.
  

• Scientists Tried To Break Einstein's Speed of Light Rule
  Scientists are putting Einstein's claim that the speed of light is constant to the test. While researchers found no evidence that light's speed changes with energy, this null result dramatically tightens the constraints on quantum-gravity theories that predict even the tiniest violations. ScienceDaily reports: Special relativity rests on the principle that the laws of physics remain the same for all observers, regardless of how they are moving relative to one another. This idea is known as Lorentz invariance. Over time, Lorentz invariance became a foundational assumption in modern physics, especially within quantum theory. [...] One prediction shared by several Lorentz-invariance-violating quantum gravity models is that the speed of light may depend slightly on a photon's energy. Any such effect would have to be tiny to match existing experimental limits. However, it could become detectable at the highest photon energies, specifically in very-high-energy gamma rays. A research team led by former UAB student Merce Guerrero and current IEEC PhD student at the UAB Anna Campoy-Ordaz set out to test this idea using astrophysical observations. The team also included Robertus Potting from the University of Algarve and Markus Gaug, a lecturer in the Department of Physics at the UAB who is also affiliated with the IEEC. Their approach relies on the vast distances light travels across the universe. If photons of different energies are emitted at the same time from a distant source, even minuscule differences in their speeds could build up into measurable delays by the time they reach Earth. Using a new statistical technique, the researchers combined existing measurements of very-high-energy gamma rays to examine several Lorentz-invariance-violating parameters favored by theorists within the Standard Model Extension (SME). The goal was ambitious. They hoped to find evidence that Einstein's assumptions might break down under extreme conditions. Once again, Einstein's predictions held firm. The study did not detect any violation of Lorentz invariance. Even so, the results are significant. The new analysis improves previous limits by an order of magnitude, sharply narrowing where new physics could be hiding.
  
  
  Read more of this story at Slashdot.
  

• Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two
  In Part One of this series, we examined how the SONiC control plane and the VPP data plane form a cohesive, software-defined routing stack through the Switch Abstraction Interface.` We outlined how SONiC’s Redis-based orchestration and VPP’s user-space packet engine come together to create a high-performance, open router architecture. In this second part, we’ll turn [0]
  
  The post Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One
  The networking industry is undergoing a fundamental architectural transformation, driven by the relentless demands of cloud-scale data centers and the rise of software-defined infrastructure. At the heart of this evolution is the principle of disaggregation: the systematic unbundling of components that were once tightly integrated within proprietary, monolithic systems.` This movement began with the separation [0]
  
  The post Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One appeared first on Linux.com.
  

• Kubernetes on Bare Metal for Maximum Performance
  When teams consider deploying Kubernetes, one of the first questions that arises is: where should it run? The default answer is often the public cloud, thanks to its flexibility and ease of use. However, a growing number of organizations are revisiting the advantages of running Kubernetes directly on bare metal servers. For workloads that demand [0]
  
  The post Kubernetes on Bare Metal for Maximum Performance appeared first on Linux.com.
  

• How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM
  This article was contributed by Vedrana Vidulin, Head of Responsible AI Unit at Intellias (LinkedIn). As AI becomes central to smart devices, embedded systems, and edge computing, the ability to run language models locally — without relying on the cloud — is essential. Whether its for reducing latency, improving data privacy, or enabling offline functionality, local AI [0]
  
  The post How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM appeared first on Linux.com.
  

• Automating Compliance Management with UTMStacks Open Source SIEM 8 XDR
  Achieving and maintaining compliance with regulatory frameworks can be challenging for many organizations. Managing security controls manually often leads to excessive use of time and resources, leaving less available for strategic initiatives and business growth. Standards such as CMMC, HIPAA, PCI DSS, SOC2 and GDPR demand ongoing monitoring, detailed documentation, and rigorous evidence collection. Solutions [0]
  
  The post Automating Compliance Management with UTMStacks Open Source SIEM & XDR appeared first on Linux.com.
  

• A Simple Way to Install Talos Linux on Any Machine, with Any Provider
  Talos Linux is a specialized operating system designed for running Kubernetes. First and foremost it handles full lifecycle management for Kubernetes control-plane components. On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence [0]
  
  The post A Simple Way to Install Talos Linux on Any Machine, with Any Provider appeared first on Linux.com.
  

• Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces
  OpenTelemetry (fondly known as OTel) is an open-source project that provides a unified set of APIs, libraries, agents, and instrumentation to capture and export logs, metrics, and traces from applications. The project’s goal is to standardize observability across various services and applications, enabling better monitoring and troubleshooting. Read More at Causely
  
  The post Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces appeared first on Linux.com.
  

• Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation.
  Exciting news! The Tazama project is officially a Digital Public Good having met the criteria to be accepted to the Digital Public Goods Alliance ! Tazama is a groundbreaking open source software solution for real-time fraud prevention, and offers the first-ever open source platform dedicated to enhancing fraud management in digital payments. Historically, the financial [0]
  
  The post Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation. appeared first on Linux.com.
  

• Xen 4.19 is released
  Xen Project 4.19 has been officially out since July 31st, 2024, and it brings significant updates. With enhancements in performance, security, and versatility across various architectures like Arm, PPC, RISC-V, and x86, this release is an important milestone for the Xen community. Read more at XCP-ng Blog
  
  The post Xen 4.19 is released appeared first on Linux.com.
  

• Advancing Xen on RISC-V: key updates
  At Vates, we are heavily invested in the advancement of Xen and the RISC-V architecture. RISC-V, a rapidly emerging open-source hardware architecture, is gaining traction due to its flexibility, scalability and openness, which align perfectly with our ethos of fostering open development ecosystems. Although the upstream version of Xen for RISC-V is not yet fully [0]
  
  The post Advancing Xen on RISC-V: key updates appeared first on Linux.com.
  

Engadget"Engadget is a web magazine with obsessive daily coverage of everything new in gadgets and consumer electronics"

• GameStop reportedly shuts down more than 400 US stores
  Your neighborhood GameStop might be on the chopping block, along with more than 400 other retail locations across the US. As first reported by blog that keeps track of GameStop closures, there are 410 locations that are confirmed to be closing or are already closed, along with another 11 that are reportedly also on their way, as of January 10. 
  
  As Polygon indicated, these closings aren9t much of a surprise considering GameStop9s SEC filing for December 2025 indicated that it would "anticipate closing a significant number of additional stores in fiscal 2025," which ends on January 31, 2026. The same filing detailed that the company9s board would pay out the GameStop CEO, Ryan Cohen, up to $35 billion in stock options, given that he increases the retailer9s market cap to $100 billion.
  
  While the blog covers only closures in the US, the SEC filing also noted that GameStop is planning to reduce its presence in several other European countries and Canada. Even though GameStop saw a historic spike in market value in 2021, it has struggled with the brand9s direction, as seen with failed attempts at offering a crypto locker and an NFT marketplace.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/gamestop-reportedly-shuts-down-more-than-400-us-stores-210632743.html?src=rss

• An Instagram data breach reportedly exposed the personal info of 17.5 million users
  If you received a bunch of password reset requests from Instagram recently, you9re not alone. As reported by Malwarebytes, an antivirus software company, there was a data breach revealing the "sensitive information" of 17.5 million Instagram users. Malwarebytes added that the leak included Instagram usernames, physical addresses, phone numbers, email addresses and more.
  
  The company added that the "data is available for sale on the dark web and can be abused by cybercriminals." Malwarebytes noted in an email to its customers that it discovered the breach during its routine dark web scan and that it9s tied to a potential incident related to an Instagram API exposure from 2024.
  
  The reported breach has resulted in users receiving several emails from Instagram about password reset requests. According to Malwarebytes, the leaked information could lead to more serious attacks, like phishing attempts or account takeovers. Meta hasn9t released an official statement about the latest incident, but it9s not the first time Instagram9s parent company has been in hot water for data breaches. If you haven9t already, it9s always a good idea to turn on two-factor authentication and change your password. Even better, you can review what devices are logged into your Instagram account in Meta9s Accounts Center.
  This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/an-instagram-data-breach-reportedly-exposed-the-personal-info-of-175-million-users-192105616.html?src=rss

• Don’t count on Baldur’s Gate 3 coming to Switch 2, as least for now
  Nintendo Switch 2 owners can forget about seeing Baldur’s Gate 3 in the Nintendo Store, at least as of now. In a Reddit AMA, Larian Studio9s CEO, Swen Vicke, said that the team would have loved to bring the title to Switch 2, but "it wasn9t our decision to make."
  
  As cryptic as that may sound, Vicke9s response hints that either Wizards of the Coast, which owns the Dungeons and Dragons IP that Baldur9s Gate 3 is set in, or Nintendo is behind the lack of a port. When it comes to Wizards of the Coast, rumors have circulated that the game studio and Wizards of the Coast may have a strained relationship. On the other hand, Larian Studios9 technical director, Bert van Semmertier, revealed in a response to another AMA question that the studio just released Divinity: Original Sin 2 on the Switch 2, adding that "we love the platform and we will certainly consider Switch 2 for the next Divinity game."
  
  There9s still a chance that Wizards of the Coast decides to hire another studio to pursue a port in the future, but there9s been no indication yet. As for why Larian Studios won9t be behind a potential Switch 2 port, the developer said in a statement last year that it would no longer develop any major content updates or expansions for Baldur9s Gate 3, nor work on a sequel.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/nintendo/dont-count-on-baldurs-gate-3-coming-to-switch-2-as-least-for-now-180538969.html?src=rss

• SpaceX can deploy 7,500 more Starlink Gen2 satellites with FCC approval
  The Federal Communications Commission has approved SpaceX’s request to deploy an additional 7,500 Gen2 Starlink satellites, allowing the company to launch 15,000 in all. It has also allowed SpaceX to upgrade its Gen2 satellites with “advanced form factors and cutting-edge technology,” to operate across more frequencies and to add more orbital shells to optimize coverage and performance. This approval will give the company’s fleet a boost and will allow it to offer internet and mobile services to more parts of the globe. The satellites will also enable SpaceX to offer “direct-to-cell connectivity outside the United States and supplemental coverage” within the US.
  
  In the United States, SpaceX has a partnership with T-Mobile, which gives its subscribers access to satellite-to-phone services. It enables subscribers to send texts and access compatible apps even in remote locations. The companies are also planning to roll out voice calls over satellite in the future.
  
  As revealed that it was moving 4,400 satellites from an altitude of 341 miles down to 298 miles to reduce the risk of collision. SpaceX originally asked for permission to deploy 29,988 second-generation Starlinks in 2020, but the FCC only granted it permission for 7,500 in 2022. Back then the commission said that it was giving SpaceX a limited approval to help maintain a safe space environment due to concerns about orbital debris.
  This article originally appeared on Engadget at https://www.engadget.com/science/space/spacex-can-deploy-7500-more-starlink-gen2-satellites-with-fcc-approval-180000843.html?src=rss

• The CES companies hoping your brain is the next big thing in computing
  At every CES I’ve ever been to, there’s been one or two gadgets promising to boost your mental health. In recent years, the number of companies making forays into this space has grown, and will likely continue to do so in the future. Could it be, much like the number of people wearing heart-monitoring wearables today, everyone will be strapping an EEG to their skulls a decade or so down the line? It’s more likely than you think, so it’s worth asking what these devices are good for, what benefit they could bring, and where does the science end and the hype begin.
  
  An Electroencephalogram (EEG) is a clinical tool to monitor the electrical activity of our brains. Put very simply, our minds are constantly moving ions around, and when they reach the scalp, it’s possible to measure those ions. By placing electrodes on the scalp, you can record the changes in voltages pushed out by our brains more or less in real time. These voltages are commonly grouped into categories, which are often described as brain waves. Each one represents a different state of mind: Gamma (hard thinking), Beta (anxious or active), Alpha (relaxed), Theta (creative, or dreaming) and Delta (asleep). 
  
  Professor Karl Friston at University College London is one of the world’s most influential neuroscientists and an expert in brain imaging. He explained that these technologies can be used to diagnose issues both in the structure and function of the brain. And while there are many technologies which can look at how our brains work, “we’re a long way away from understanding the brain like we understand the heart.” Broadly speaking, EEGs are a fairly simple tool for looking at how our minds work, but they have one benefit over more complex methods such as fMRI (functional Magnetic Resonance Imaging), since they work in real time.
  
  Consumer-use EEGs are nothing new — in 2011 I tested the Zeo Mobile, a small device which you stuck to your forehead and wore overnight. It monitored how well you slept and sounded an alarm when you were at the top of a sleep cycle, so you woke up pretty easily. It worked well but with one downside: It’s hard to sleep with a hard plastic puck stuck to your forehead.
  
  EEGs are more recently used as part of brain computer interfaces, or for neurofeedback tools to help you calibrate the quality of your meditation. InteraXon, for instance, makes the Muse headbands which will monitor your brain waves, telling you when you shift states. Last year, EEG startup Neurable partnered with Master & Dynamic to launch the MW75S Neuro, a pair of high-end headphones designed to track your focus levels. When your attention starts to wane, the system will alert you, advising you to take a rest with the hope of alleviating burnout.
  NeurableDaniel Cooper for Engadget
  At CES this year, Neurable announced a partnership with HP’s gaming arm HyperX to produce EEG headsets with specific benefits for gamers. As gamers are looking for any way to improve their performance, the company has developed algorithms and training programs to help. You might already know that being in a place of high stress isn’t great for your concentration and focus. Consequently, Neurable research scientist Dr. Alicia Howell-Munson walked me through a system that encourages you to reach a state of calm focus with demonstrable improvements in reaction time and accuracy. It’s a system that was initially designed in partnership with Singapore’s Air Force to help ensure pilots remain in a state of calm focus. 
  
  I sat through this demo myself, initially testing my skills in Aimlabs (a tool people use to test their reflexes) where my accuracy and reaction times were measured. Then, while wearing Neurable’s headset, I had to practice focusing my attention on a galaxy of dots, the greater my focus, the slower and closer together the dots got. That wasn’t an easy process, and it took me nearly five minutes to reach the point where I could push all of the dots to coalesce into a single point on the screen. But, when I had, I retook the shooting gallery, and saw dramatic spikes in my performance. My accuracy increased from 91.3 to 99.1 percent, while my reaction time fell from 623ms to 532ms. 
  Neurable HyperX headsetDaniel Cooper for Engadget
  Neurable believes that its systems, which are designed to integrate with any manufacturer’s gear, has the potential to dramatically increase a person’s brain health and productivity. For instance, by taking a break when a person’s focus started to wane, they were able to bounce back and function for far longer than if they’d simply pushed harder. Similarly, the company can advise on your cognitive speed and brain age and guide you toward making healthy choices. The company says that this isn’t just about wellness, either, as being able to identify loss of focus is vital, for instance, to help reduce auto accidents when truck drivers feel fatigued. 
  
  Co-founder Adam Molnar explained that the benefits of this technology compound over time, so the more practice a user has in finding that mental state of calm focus, the easier it will be to maintain it for longer. CEO Ramses Alcaide added the company’s aim is to enable people to visualize the often invisible symptoms of cognitive stress to ensure they’re looking after themselves. He added that one thing that separates Neurable from other companies is that it’s looking at far finer-grain detail from its EEG data. 
  MyWavesDaniel Cooper for Engadget
  There are plenty of companies at CES that are using EEGs for more specific goals, such as MyWaves. It uses an EEG as part of its broader offering to use sound patterns to make it easier to go to sleep. It sells you a pricey forehead-worn EEG which you wear for a few nights over the course of a year. From there, the system produces a half hour audio file that will mirror the pattern of your delta brainwaves. It claims that, if you listen to the track before you go to bed, the experience of hearing your delta waves will help you fall asleep faster and experience more REM sleep.
  
  And there are plenty of companies which are building EEGs for you to wear to keep an eye on your mental health. Brain-Life, for instance, showed off an early prototype of Focus+, a headband EEG with a companion app that can offer feedback on your cognitive load. It can also tell you how long you can sustain your attention and how well your mind relaxes and recovers. The company didn’t have details on when the hardware would be available or how much it cost, as it’s still early days.
  BrainEULink.Daniel Cooper for Engadget
  There is broad potential to use an EEG as a brain computer interface, such as the one worked on by Braineulink. That company has combined an EEG with an AR headset to enable people to interact with the world just with their brains. For instance, in a demonstration in the show floor at CES, I was able to turn a light on and off by “focusing” on it, although it’s hard to know how useful that would be in, for instance, creating an assistive device for folks with limited mobility. Like Brain-Life, it’s early days, and so there’s no product that we can point to, but it’s clear we’re going to see more startups looking to enter this world. 
  Brain-LifeDaniel Cooper for Engadget
  As EEGs become more commonplace, it’s likely they’ll be packaged in smaller devices which fit more seamlessly into our lives. One such example is NAOX, a French startup which has built a wearable, clinical-grade EEG into a pair of earbuds for the sort of longitudinal testing required to diagnose conditions like epilepsy. But the company is also planning on incorporating the technology into a pair of true wireless earbuds.These headphones won’t be arriving until the end of 2026, but Naox says the tech is small enough that it can be integrated with other companies earbuds. Consequently, it’s certainly plausible we could see plenty of earbuds that will keep an eye on our brain health as a side hustle. 
  NaoxDaniel Cooper for Engadget
  NAOX was co-founded by Dr. Michel Le Van Quyen who, at a talk in London in December 2025, talked about the rationale for creating an in-ear ECG. Essentially, he was looking to build a brain equivalent to the Apple Watch’s continuous heart rate monitoring (and ECG). I was curious about the science behind an ear-mounted EEG given they commonly use the scalp. Professor Friston said that an ear-mounted EEG is potentially more useful as “you can get slightly closer to the sources of activity.” And that it makes a lot of sense for a consumer-grade EEG to be added to wireless earbuds given their utility in practices like meditation.
  Naox9s prototype TWS earbuds sensors.Daniel Cooper for Engadget
  One downside of the proliferation of wearable EEGs is that it could lead users to jump to the wrong conclusions about their mental health. For instance, if someone is to be diagnosed with a condition such as epilepsy, they need to undergo a 24-hour perambulatory EEG. As Professor Friston explained, the recording of that 24 hour EEG would be “carefully scrutinized by experts who are able to run a differential diagnosis ... to specify what further investigations are required.” He, like a lot of clinicians, is concerned about ill-informed consumers using these devices to make medical interventions without consulting a professional. 
  
  Friston added that people shouldn’t expect wearable EEGs to be magic bullets for their brain health or cognition. He said the best way for a consumer to approach them is by treating them with the same level of reverence as a household thermometer. “Are thermometers useful in managing the wellness of my children?, Yes,” he explained, “can your thermometer tell you what particular virus you have? Absolutely not.” “In the context of well-being and to augment or validate practices such as mindfulness and meditation, they can be fun and useful quantitative devices.” But, fundamentally, that is all he feels they can be, especially right now.
  This article originally appeared on Engadget at https://www.engadget.com/wearables/the-ces-companies-hoping-your-brain-is-the-next-big-thing-in-computing-175048601.html?src=rss

• Engadget Podcast: Best of CES 2026 and a chat with Pebble's founder
  That’s a wrap for CES 2026! In this episode, Devindra and Cherlynn chat about their favorite aspects of the show, as well as Engadget’s best of CES awards lineup. Also, Cherlynn chats with Pebble founder Eric Migicovsky about his Pebble smartwatch revival, as well as an intriguing new AI ring that’s built entirely around notetaking.
  Subscribe!
  iTunes
  
  Spotify
  
  Pocket Casts
  
  Stitcher
  
  Google Podcasts
  Topics
  TVs at CES 2026: all eyes on Micro RGB and LG’s super thin OLED – 1:48
  
  L9Oréal debuts LED/Infrared face masks seem cool but needs some development – 5:46
  
  Engadget’s official Best of CES 2026: Lego’s Smart Brick, Lenovo’s rollable laptop screen, a super quiet leafblower and more – 9:55  
  
  Health Tech at CES 2026: Eyebot’s 30-second vision exam, Wheelmove makes manual wheelchairs motorized –  11:41
  
  Interview with Pebble founder Eric Migicovsky – 20:43
  Credits
  Hosts: Devindra Hardawar and Cherlynn Low
  Producer: Ben Ellman
  Music: Dale North and Terrence O’Brien
  
  
  This article originally appeared on Engadget at https://www.engadget.com/computing/engadget-podcast-best-of-ces-2026-and-a-chat-with-pebbles-founder-160000762.html?src=rss

• The robots we saw at CES 2026: The lovable, the creepy and the utterly confusing
  CES always has its share of attention-grabbing robots. But this year in particular seemed to be a landmark year for robotics. The advancement in AI technology has not only given robots better “brains,” it’s enabled new levels of autonomy and given rise to an ambitious, if sometimes questionable, vision for our robot-filled future.
  
  From sassy humanoids to AI-powered pets and chore-handling assistants, we sought out as many cute, strange and capable robots as we could find in Las Vegas. These are the ones that made the biggest impression.
  Agibot HumanoidsAgibot9s X2 humanoid robot.Karissa Bell for Engadget
  Of all the humanoids we saw at CES, Agibot9s made the biggest impression. The company was showing off two models: the larger A2 and the smaller X2 (pictured above). The latter impressed us with its dance moves — the company told us it can learn surprisingly complex choreography — but the A2 turned out to be surprisingly capable at chatting up CES goers.
  
  Later in the show, we came across the A2 at IntBot9s booth, where the company had custom versions of both Agibot humanoids "running" their booth. I spent several minutes talking with "Nylo" and was genuinely impressed by its conversational skills, even if its roasts could use a little work. — Karissa Bell, Senior Reporter
  Dreame9s robo vac arms and legs
  Dreame was back this year with some wild robot vacuums. The company showed of the Cyber 10 Ultra, a robot vacuum with a multipurpose extendable arm. The arm, which we got a glimpse of at last year9s show, can pick up stuff, but it also has its own cleaning attachments, allowing the robot to clean hard-to-reach corners and other spots that wouldn9t otherwise be accessible.
  
  Dreame also brought its latest wild concept, the Cyber X, which has legs that propel it up and down full-size staircases. The legs are somewhat unsettling — they look alarmingly similar to mini chainsaws — but watching it glide up and down stairs was impressive all the same. — KB
  OlloBotThe long neck version of OlloBot.Cheyenne MacDonald for Engadget
  OlloBot is one of those semi-ridiculous CES robots that9s just impossible not to smile at. It has the goofiest face, with top-sitting frog eyes slapped onto a tablet where its mouth is displayed. Then, on top of that, it has a patch of soft fur on its neck and nowhere else on its body, which is penguin shaped and complete with flappy little arms. There are two versions of OlloBot, one that9s short with a fixed neck and another where the neck can stretch out to make it much taller. And of course, it can be dressed up in silly outfits.
  
  It9s a family-focused robot that responds to voice commands and touch, and is meant to capture memories as they happen, snapping pics and videos for its diary of notable moments. It can be used to make calls and control smart home devices. Everything is stored locally in its removable heart module, and there9s a companion app for additional interactions. — Cheyenne MacDonald, Weekend Editor
  RovieA robot with a dust pan like appendage dumps toys into a bin.Cheyenne MacDonald for Engadget
  Sure, we9ve seen multiple robots (particularly robovacuums) that can pick objects up off the floor and put them away to make homes tidier, but this one is cute and has a little face. Instead of using an arm to grab one thing at a time, Clutterbot9s Rovie has a dustpan-style tray with two sweepers that fold out from its front. It drives around and, using computer vision, identifies toys that have been left on the floor and scoops them up. Then, it dumps them in a designated bin where they9re consolidated and out of the way. 
  
  It9s still in the R&D phase, a team member said when I visited the booth, but this is one I9m hoping to see become a real, purchasable product soon. For parents of small children who are constantly leaving their toys around, it would be pretty convenient to have a tiny robot picking up after them. Also for me, who doesn9t have children but a very sweet and hardworking cat who loves to steal socks and then deliver them as if they9re her kills, leaving socks scattered all over the house. Clutterbot team, if you9re reading this, please add socks to the list of items Rovie can sweep up. — CM
  Saros Rover
  Not to be outdone, Roborock also brought a stairclimbing robot vacuum to CES, Saros Rover. And, unlike Dreame9s prototype, the Roborock can also clean the stairs while it climbs. No word on when it will be available or how much it might cost (probably a lot!) but the company says it is "a real product in development." -KB
  CLOiDCLOiD folded laundry at LG9s CES booth.Karissa Bell for Engadget
  LG9s CLOiD was definitely the most ambitious robot we saw at CES 2026. The company showed its home helper concept (slowly) folding and sorting laundry, fetching drinks from the fridge, putting food in the oven and retrieving a set of lost keys. But while the 15-minute demo gave us a tantalizing look at the appliance maker9s vision for a "zero labor home," it9s unlikely to be anything more than a slick demo anytime soon. The company has made no commitment to actually make a version of CLOiD people can actually buy. — KB
  AllexWIRobotics9 Allex robot makes a heart sign with its hands.Cheyenne MacDonald for Engadget
  WIRobotics brought its new humanoid, Allex, to CES, and the robot was really hamming it up when we stopped by the booth, striking poses and engaging with visitors. It9s a waist-up robot with articulated parts, from its arms to its fingers, and is meant to be a general purpose tool that could be used in manufacturing, the service industry or even households. Each hand can hold objects of up to about 6.6 lbs, and the robotic hand has 15 degrees of freedom. The company9s website shows the robot9s fingers are dexterous enough to do the Gen-Z heart sign, but when it looked at Karissa and me it threw a millennial heart up. Did Allex lowkey call us unc? — CM
  PoketomoPoketomo in one of the many outfits Sharp brought to CES.Cheyenne MacDonald for Engadget
  Sharp9s Poketomo is an improbably adorable tiny meerkat. Well, technically it9s an AI companion shaped like a fuzzy, portable meerkat. It might look like a toy, but the company says it9s actually to be a companion for adults.
  
  It’s small enough you can carry it around with you throughout the day (Sharp even makes a tiny Poketomo-sized clear backpack). Like a lot of AI companion devices we saw at CES, it’s equipped with a small camera and microphone that enables it to constantly interact with you. The camera also enables its “memory” so the pet can recognize and deliver personalized updates to its person. Poketomo launched recently in Japan, but sadly Sharp says it has no current plans to sell it in other markets. — KB
  BiboMoony bibo (I-Type).Cheyenne MacDonald for Engadget
  It seemed like everyone was trying to cash in on Labubu hype at CES 2026. There were Pop Mart-style bag charms all over the place and countless products that looked suspiciously like the now ubiquitous toy monster. We even got one pitch for a "a labubu-like robot that talks to you" that, in fact, did not look like a Labubu in any way, shape or form. But there was one truly Labubu-like tiny robot that managed to stand out from the rest and kind of stole my heart, even though I9m not particularly into Labubus. (Please don9t make me say Labubu ever again.)
  
  Bibo is a cute-as-hell AI toy that9s meant to be a companion you bring with you everywhere. It has a little camera on its head that it uses to see the world around it, and can recognize its owner9s face and tone of voice, so it can respond to interactions in an emotionally appropriate way. It9ll keep a daily diary of its activities, and while the toy comes in two starting personality "types" — Sunny bibo (E-Type), the bubbly extrovert, and Moony bibo (I-Type), the gentle, sensitive one — they9ll develop more unique personalities over time. Their fur is soft and warm, so it feels like you9re petting a kitten.
  Why is it even cuter like this?Cheyenne MacDonald
  At the booth, the team had several of them on display wearing various outfits, in little dioramas showing them in classroom and camping scenes, and even deconstructed with the fur removed, which somehow made it look even cuter. Bibo isn9t available to purchase yet, and when it is, it9ll launch first in China before potentially expanding depending on its success at home. — CM
  SharpaSharpa9s humanoid robot is seen playing ping-pong.Cheyenne MacDonald for Engadget
  Sharpa9s booth had a lot going on and was definitely one of the bigger crowd-pullers. There was a humanoid robot playing ping-pong, another taking selfies with people and another dealing  blackjack, along with a disembodied robotic hand that could mirror visitors9 finger movements. The autonomous demos showed off what that highly dexterous hand can do, and it was pretty impressive — especially seeing it draw individual cards from the deck. — CM
  
  
  ZerothZeroth9s W1 robot.Cheyenne MacDonald for Engadget
  Chinese robotics startup Zeroth brought two adorable home robots to CES: a pint-sized humanoid companion bot and a rolling robot that looks like Wall-E, with tank-style tracked treads so it can ride around outside. We didn9t see these guys doing too much, but they sure were cute. The one that resembles Wall-E, called W1, kind of melted my heart just looking at it. (Don9t get attached, you can9t afford it.)
  
  The tiny humanoid, M1, costs $2,400 while W1 costs $5,000. Both are expected to ship this spring, with a tentative date of April 15. — CM
  SweekarSweekars in their little outfits.Karissa Bell for Engadget
  Takway9s Sweekar pocket pet was something I looked at and immediately thought, sigh, I9m going to buy that. It9s a Tamagotchi-like virtual pet with AI smarts so it can form a personality based on your interactions with it and the activities you do together. The idea is that it "grows" with you. Like a Tamagotchi, it will require more frequent care in the younger stages of its life cycle. But after it reaches the adult level, it autonomously cares for itself, and it never dies. It can eventually keep itself entertained, and go off on its own virtual adventures and bring you back tales of its travels. 
  
  Sweekar is super cute as is, and it can be dressed up in little outfits for more personalization. The device comes in light yellow, pink, and blue, and we saw it sporting a snowboarder outfit and a full cowboy getup. — CM
  RealbotixOne of Realbotix9 robots. Cheyenne MacDonald for Engadget
  Realbotix is a company we9ve seen a lot at CES over the years, and it was at the show again for 2026 with several of its highly customizable, realistic humanoid robots. As always, it was among the most unnerving exhibits we saw. New for this year, Realbotix was demonstrating its Robotic Vision System, which allows its robots to see and react to their surroundings more naturally, tracking faces to look directly at whoever is talking and better reading emotion from facial expressions. Damn, it can sense my fear now… — CM
  Onero H1Onero H1 had an endearingly blank stare.Karissa Bell for Engadget
  Switchbot surprised us with its own chore-handling robot, Onero H1, which also won Engadget editors9 pick for best robot of CES 2026. We were immediately taken by its weirdly long body and endearingly blank stare as it slowly wheeled around picking up laundry and depositing the items in a washing machine. 
  
  Like a lot of robot demos we saw at CES, we only saw Onero performing a small part of what Switchbot says it9s actually capable of. But Onero also seemed much more realistic in terms of the type of robot helpers that people might actually see outside of CES, and the company told us it does plan to sell Onero (albeit in limited quantities) by the end of the year.  — KB
  CocomoLudens AI Cocomo robot.Cheyenne MacDonald for Engadget
  Another robot pet that won us over immediately was Cocomo. Created by Japanese startup Ludens AI, Cocomo is an autonomous robot friend that yes, uses AI to respond to voice and touch and is meant to bond with its owners over time. The egg-shaped creature can scoot around on a wheeled base, or you can carry it around with you. 
  
  But what we loved about Cocomo is that it9s not trying to be yet another AI assistant, give out life advice or perform tasks. Its goal is to provide companionship and well, be your friend. And while it can respond to voice input it doesn9t exactly have a voice of its own: it communicates via cute humming sounds, which is a lot less creepy than some of the talking robots we saw. — KB 
  Yonbo Yonbo at CES.Cheyenne MacDonald for Engadget
  Yonbo is a kids9 AI companion robot that totally charmed us. It kind of looks like a dog, and when we visited its booth at Unveiled, there were four of them playfully bopping their heads to a pop song and cycling through different cute facial expressions and emoji eyes (including bowls of ramen). It9s designed to be an intelligent playmate that can tag along for activities, talk with a child and read them stories, and even help them work through emotions, like getting frustrated during a game. 
  
  Yonbo9s movement is controlled by a wristband, so it doesn9t require a phone to play with. It can also be used as an extra pair of eyes for parents around the house. In Parental Monitor mode, which the team says is the only time its camera will be able to stream and store video, parents are able to see what Yonbo sees. The robot costs $800 and is available now.  — CM
  MÖFOMÖFO in a glass case at CES.Cheyenne MacDonald for Engadget
  If we9re being completely honest, the pitch for Rabbit R1 or AI Pin but in the form of a teddy bear. Sadly, we didn9t get to see MÖFO up close or watch it do anything, but we are nonetheless intrigued, if still a bit confused, by this strange teddy bear. — CM and KB
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  This article originally appeared on Engadget at https://www.engadget.com/ai/the-robots-we-saw-at-ces-2026-the-lovable-the-creepy-and-the-utterly-confusing-153537930.html?src=rss

• NASA makes final preparations for its first crewed moon mission in over 50 years
  Back in 2024, NASA announced that the Artemis 2 mission was going to be pushed back to April 2026. Now, the agency says it could launch as early as February, with the first flight opportunity being on February 6. NASA is currently making the final preparations for the mission and will soon roll out the Space Launch System (SLS) rocket and the Orion spacecraft to their launch pad at the Kennedy Space Center in Florida. The spacecraft system’s four-mile journey from the assembly building to Launch Pad 39B will take up to 12 hours. NASA is targeting a date no earlier than January 17, with the exact day depending on the weather and on the possible need for additional time to address technical issues.
  
  Artemis 2 is the first crewed mission to the moon since the Apollo program’s final flight in 1972. The 10-day mission will have four astronauts on board who’ll be testing if Orion’s critical life support systems can sustain human passengers on future longer duration missions. They will first orbit the Earth twice before making their way 4,700 miles beyond the far side of the moon. If the SLS and Orion system is rolled out as planned, NASA intends to conduct a wet dress rehearsal at the end of January. The agency will load cryogenic propellants into the rocket and will do a full launch countdown during the rehearsal to prepare for the real event.
  This article originally appeared on Engadget at https://www.engadget.com/science/space/nasa-makes-final-preparations-for-its-first-crewed-moon-mission-in-over-50-years-150000825.html?src=rss

• How to change location with a VPN
  Chances are that you9re here because you9ve heard a virtual private network (VPN) can change your virtual location, and want to know what that means. If you know already, head over to my best VPN list to learn which services I recommend for changing your location. But if you9re clueless, read on.
  
  Whenever any device connects to the internet — whether it9s a laptop, a phone or a smart Lego brick — it9s assigned a unique IP address that other devices can use to identify it. Think of the name you give the barista at a coffee shop, except instead of a hot beverage, you’re being served websites and digital audio and video.
  
  That9s the upside. The downside is that a device9s IP address can be used to find its location in the real world. That means service providers can show you local weather reports — as well as targeted local ads. More ominously, however, it means service providers can restrict what you see online based on where you are physically. That impacts everything from the fun (what Netflix has available to stream) to the serious (what information gets censored on the government9s behalf).
  
  A VPN gets around that downside by running all your online activity through a middleman server before sending it to its destination. Instead of your real IP address, everyone sees the address of the VPN server, along with its geolocation. That means you can subvert any local restrictions getting in your way: You’re actually in Houston, but so far as the website you’re viewing is concerned, you seem to be coming from Amsterdam. Here9s how to do it.
  How to change your virtual location with a VPN
  With so many excellent commercial VPNs on the market, changing your virtual location is a lot easier than it sounds. You don9t need to be a hacker — just find a good VPN app and connect to a server in your desired location. On almost any VPN, this is a simple matter of opening the app or desktop client and choosing the server location from a list.
  On Proton VPN, for example, you can switch locations by clicking the name of any country in the list on the left.Sam Chapman for Engadget
  However, as with any technology, there are some potential pitfalls. For reference, I9ve laid out the steps below for both desktop and mobile devices.
  How to change location on Windows or Mac
  Use these steps to change the virtual location of any desktop or laptop device running macOS or Windows. There may be slight variations, but in general, this process works for any top VPN.
  
  Select a VPN provider. You can rely on Engadget9s best VPN list or, if you9re unable to pay for a new subscription right now, our list of the best free VPNs. My personal choice is Proton VPN, but there are other good options. Look for a service with fast speeds, modern encryption and a long, non-controversial record in the industry.
  
  Create an account with the VPN and save your username and password. Unless it9s a forever-free service, this is when you9ll be asked to pay for a subscription. If you9re sure about your provider, you can save a lot by going with a long-term deal. See our list of the best VPN deals for ideas.
  
  Download the VPN app. It9s best to go through the VPN9s website, even if you9re on Mac — in rare cases, the App Store versions can be outdated or short on features. Look for a download center on the site, and make sure you enter it while logged in.
  
  Install the VPN app. Most VPNs have an installation flow built in, so all you have to do is follow the steps. If the VPN asks you to change your settings or grant it permissions, do it; this installs the tools it needs to do its job.
  
  Open the VPN app and find your way around the user interface. At a minimum, make sure you know how to connect, disconnect and open the location selection menu.
  
  Connect to a server in the location where you want your internet connection to appear to originate. If you9re trying to get around local restrictions, you can just pick any nearby country without that censorship — for example, if you9re in China, then Japan, South Korea or Singapore will work. If you9re after content from a specific country, choose a server in that country.
  
  Get online through a browser or connected app as you normally would. To make sure your location has actually changed, use a site like WhatIsMyIPAddress to check where you9re coming from.
  
  When you want to use your real location again, disconnect from the VPN or choose a server in the county you9re in.
  
  It9s not necessary, but I also recommend activating your VPN9s kill switch if there is one. VPN servers aren9t perfect, and they do drop connections from time to time. If this happens, an active kill switch also cuts off your internet connection so your real location isn9t visible for a millisecond.
  How to change location on iPhone or Android
  The process for using a VPN to change your virtual location on mobile is pretty similar to how it9s done on desktop. Again, while individual installation flows have their own quirks, the following steps are broadly applicable to any iOS or Android VPN.
  
  Pick a VPN provider you like. The best VPNs also tend to be the best for mobile, including Proton VPN, ExpressVPN and Surfshark. On mobile, you can use app store reviews and comments to research. Make sure you9re getting the real version of your chosen VPN and not a similarly named one trying to piggyback.
  
  Download the VPN from the Apple App Store or Google Play Store. At this point, if you haven9t paid yet, you may be able to take advantage of a free trial by opening the app and proceeding through the setup flow. This is a good time to test if the VPN is changing your location in ways that can9t be seen through.
  
  Follow the VPN9s instructions to create an account, including paying for a subscription if necessary.
  
  Take some time to learn to use the VPN app. Mobile interfaces have to pack more features into a smaller space, usually relying on tabs. Try and find the tabs for picking server locations and toggling VPN settings.
  
  Connect to a server in your desired location. Make sure the VPN is actually active before you proceed (most of them make it pretty clear, but it9s still easy to forget).
  
  Get online through a browser or another internet-capable app.
  
  When you9re finished, disconnect from the VPN to return to using your real location.
  
  One more note: on both mobile and desktop, I recommend using either a paid VPN or a free VPN supported by a paid subscription. Entirely free VPNs come with risks, and some popular apps secretly share problematic connections. 
  Why change your virtual location?
  Changing your virtual location isn9t hard, but it9s still an extra step between you and the internet. However, the benefits of location masking far outweigh the small amount of extra work. Hiding your IP address — and your location along with it — is one of the most impactful steps you can take to stay safe online.
  
  Concealing your IP address has massive benefits on its own, even if you use one close to your real location (which gets you shorter loading times). Lots of web services track you without your consent, frequently for advertising purposes. Some of this is done through third-party cookies, but a lot of it starts with building profiles about your IP address.
  
  Illicit actors can also take advantage of your IP address and its geolocation. A hacker can track you down to within your ZIP code — though an IP address can9t pinpoint your location to the square foot, it makes it much easier to narrow down where you live. Even with just your IP address, hackers can launch DDoS attacks against you, use the IP to make fake social media accounts in your name or even call in SWAT teams to your location.
  By changing my location to the UK using ExpressVPN, I can see shows on Netflix that aren9t listed in the US.Sam Chapman for Engadget
  Although masking your virtual location can be vital to staying safe online, there are other practical and even fun reasons to do it. For one thing, when traveling abroad, you might want to use a site only available in your home country. Simply connect to a server located near home and you can use your bank account and local streaming libraries as normal.
  
  If you9re home, there are lots of benefits to being virtually in another region. You can see a foreign country9s streaming libraries and shop for deals that may only be available in its currency. You can also get around any nationwide online censorship and potentially download banned apps. Just be sure to be aware of your local laws to know if doing so is merely frowned upon, or if it’s truly against the law.
  Can a VPN change your GPS location?
  There9s one more critical point to remember when changing location with a VPN. The VPN server only changes your IP address and the physical location associated with it. It does not change the GPS location your device might be broadcasting.
  
  GPS data can leak out in a few ways. Tablets and phones have location services turned on by default, and as anyone who9s heard a true crime podcast knows, they can also give away your location by contacting cell towers. Web browsers often have similar features. Websites can also use HTML5 geolocation to access your GPS — provided you give permission, but that9s easy to do without thinking.
  
  Some VPNs, including Surfshark and Windscribe, do have features designed to fool GPS, but they9re not standard. When you9re changing your location with a VPN, make sure to turn off location services and avoid granting any permissions that might reveal where you really are. You can also run a separate GPS spoofing app alongside your VPN.
  How to troubleshoot a VPN that9s not changing your location
  If you9ve found that browsers are still seeing your old IP address while you have a VPN active, or that websites show you the same content when you9re supposed to be virtually abroad, there9s a chance your VPN isn9t actually changing your location. To test if your real position is leaking, start by checking your IP address (with a search engine or WhatIsMyIPAddress). If it matches your home location, something has gone wrong.
  
  Note that it9s not necessarily a problem if it doesn9t match your home location or the stated location of your VPN server. VPNs use virtual server locations to reach a lot of locations where brick-and-mortar servers aren9t practical — Windscribe, for example, does not have a physical data center in Antarctica.
  
  If you find that your VPN is leaking your real IP address, try these troubleshooting steps in order. I9ve arranged them roughly from least to most time-intensive.
  
  Disconnect from your VPN and reconnect to the same location. This should hook you up with a different server in that same place. Test your IP again — there9s a good chance the problem was isolated to the first server you tried.
  
  Try a new location (skip this step if you need a server in a particular country).
  
  Try a different VPN protocol. If you9re using WireGuard, switch to OpenVPN or IKEv2.
  
  Make sure location services are turned off.
  
  Clear your browser cache and cookies to get rid of any saved information.
  
  Test for DNS leaks. Your VPN might accidentally be sending your IP address to a public server to resolve DNS requests. IPleak.org is a good tool for catching this.
  
  Try a different VPN. Use a free service like Proton or Windscribe and test for leaks. If the problem reoccurs, it might be coming from inside your network.
  
  Contact the helpdesk for your original VPN and inform them about the problem. Get screenshots of the VPN connected to the leaky location next to IP address data confirming the leak.
  
  I9ve already mentioned several VPNs that do a good job of changing your location, but in case you9re here for product advice, here are all my recommendations in one place. My favorite VPN is Proton VPN, which is so far the only service to receive full marks on my location-change test. I used 15 of its servers in five different countries to access Netflix. Each time, I saw the destination country9s full content library like I was really there.
  
  Surfshark is a close runner-up in this category. It passed 14 out of 15 tests, only slipping up once in Japan — and a quick disconnect and reconnect was enough to fix that. I got equally great results from ExpressVPN, only having to retry one server in the UK. NordVPN performed perfectly in every location except Nigeria, and that still didn9t leak my real IP address. The problem only seemed to exist on Netflix.
  This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/vpn/how-to-change-location-with-a-vpn-140000339.html?src=rss

• NASA is ending Crew-11 astronauts' mission a month early
  NASA has decided to bring the Crew-11 astronauts home a month earlier than originally planned due to a “medical concern��� with one of them. This is the first time in its history that the space agency is cutting a mission short due to a medical issue, but it didn’t identify the crew member or divulge the exact situation and its severity. The agency is targeting a return date no earlier than January 14, with the exact schedule depending on the weather. If NASA’s original plan pushes through, the crew will splash down off the coast of California at approximately 3:40 AM on January 15.
  
  The agency previously postponed an International Space Station (ISS) spacewalk scheduled for January 8, citing a medical concern with a crew member that appeared the day before. NASA’s chief health and medical officer, James “JD” Polk, said the affected astronaut is “absolutely stable” and that this isn’t a case of an emergency evacuation. The ISS has a “robust suite of medical hardware” onboard, he said, but not enough for a complete workup to determine a diagnosis. Without a proper diagnosis, NASA doesn’t know if the astronaut’s health could be negatively affected by the environment aboard the ISS. That is why the agency is erring on the side of caution.
  
  Crew-11 left for the space station on August 1 and was supposed to come back to Earth on or around February 20. After they leave the station, only three people will remain: Two cosmonauts and one astronauts who’ll be in charge of all the experiments currently being conducted on the orbiting lab. The team’s replacement, Crew-12, was supposed to head to the ISS mid-February, but NASA is considering sending the astronauts to the station earlier than that.
  
  Update, January 10, 2025, 5:15AM ET: This story has been updated to include Crew-11’s tentative return date.
  
  
  This article originally appeared on Engadget at https://www.engadget.com/science/space/nasa-is-ending-crew-11-astronauts-mission-a-month-early-140000750.html?src=rss

• EU OS: A Bold Step Toward Digital Sovereignty for Europe
  Image
  A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
  What Is EU OS?
  EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.
  
  Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
  The Vision Behind EU OS
  The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.
  
  Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.
  
  However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
  Conclusion
  EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.
  
  Source: It's FOSS
  European Union

• Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.
  
  In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.
  
  On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.
  
  Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.
  
  The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.
  
  Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.
  
  You can download the latest kernel here.
  Linus Torvalds kernel

• AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
  Image
  AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.
  
  This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.
  
  Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.
  
  Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.
  
  Source: 9to5Linux
  AerynOS

• Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
  Image
  Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.
  
  Here’s a quick overview of what’s new in Xojo 2025r1:
  1. Linux ARM IDE Support
  Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
  2. Web Drag and Drop
  One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
  3. Direct App Store Publishing
  Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
  4. New Desktop and Mobile Features
  This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
  5. Performance and IDE Enhancements
  Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
  What Does This Mean for Developers?
  Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
  How to Get Started
  Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.
  
  Download Xojo 2025r1 today at xojo.com.
  Final Thoughts
  With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
  Xojo ARM

• New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux
  
  Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.
  
  Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.
  
  Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest. 
  
  Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.
  
  Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.
  
  Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.
  
  By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
  Windows

• Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities
  
  The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally. 
  
  As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.
  
  In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions. 
  
  After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.
  
  The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.
  
  At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.
  
  The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
  Security

• Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges
  
  The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.
  
  A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.
  
  This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem. 
  
  The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.
  
  On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.
  
  In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
  kernel

• Linux Celebrates 32 Years with the Release of 6.6-rc2 Version
  
  Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.
  
  The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.
  
  Here is what Linus Torvalds had to say in today's announcement:
  Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds

• Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction
  
  Want to interact with ChatGPT from your Linux desktop without using a web browser?
  
  Bavarder, a new app, allows you to do just that.
  
  Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.
  
  With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.
  
  During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.
  
  At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.
  
  As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!
  
  Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
  ChatGPT AI

• LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite
  
  Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.
  
  Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.
  
  LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.
  
  You can download LibreOffice 7.5.3 directly from the LibreOffice website��or from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.
  
  All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.
  
  In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.
  
  Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.
  
  The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
  LibreOffice