All the News that Matters

• Debian Trixie: DSA-6092-1 smb4k Critical Local Privilege Escalation
  Two vulnerabilities were discovered in smb4k, a KDE desktop utility which allows unprivileged mounting of Samba/CIFS network shares, which may result in local denial of service or local privilege escalation. For the stable distribution (trixie), these problems have been fixed in version 4.0.0-1+deb13u1.

• openSUSE Tumbleweed: kepler Moderate Threats Resolved 2025:15854-1
  An update that solves 2 vulnerabilities can now be installed.

• Debian 11: net-snmp Important Buffer Overflow Fix DLA-4430-1 CVE-2025-68615
  net-snmp is a SNMP application library, tools and daemon. A specially crafted packet to an net-snmp snmptrapd daemon can cause a buffer overflow and the daemon to crash. (SNMP ports should never be open to public networks. There is no mitigation available other than ensuring ports to snmptrapd are

• Slackware 15.0: libpcap Critical OOB Fix SSA:2026-001-02
  New libpcap packages are available for Slackware 15.0 and -current to fix security issues.

• Slackware 15.0: Seamonkey Important Security Fix SSA:2026-001-01
  New seamonkey packages are available for Slackware 15.0 and -current to fix security issues.

• Ubuntu 23: golang-github-google-wire Critical Patch CVE-2025-47906
  Rebuilt for CVE-2025-47906

• Asahi Linux Has Experimental Code For DisplayPort, Apple M3/M4/M5 Bring-Up Still Ongoing
  Prominent Asahi Linux developer Sven Peter spoke at this week's 39th Chaos Communication Congress "39C3" in Hamburg, Germany. He provided an update around the still-in-the-works Apple M3 / M4 / M5 SoC and device support as well as other outstanding features like getting DisplayPort working on Apple Macs under Linux...

• Our Top Five Most Underrated Linux Distros for 2025
  Not every great distro makes a splash on the front page of DistroWatch or in mainstream coverage. These are the five Linux distros from 2025 that we think merit a closer look.

• Linux 6.19 Lands Fix For Dead WiFi With MediaTek MT792x Wireless
  Merged to Linux Git on New Year's Eve was a fix in the form of a code revert for broken MediaTek WiFi on the in-development Linux 6.19 kernel...

• IceWM 4.0 Lightweight Window Manager Released with an Improved Alt+Tab Switch
  IceWM 4.0 lightweight window manager has been released today as a major update that introduces exciting new features, new options, new commands, as well as many improvements and bug fixes.

• ReactOS Starts 2026 With Another "Major Step" Toward Windows NT6 Compatibility
  The ReactOS free software project is turning 30 this year and its "open-source Windows" OS ambitions remain. They are starting out this year with another "major step" towards Windows NT 6.0 compatibility...

• My Five Linux and Open Source 2026 Resolutions (Oh… and BSD)
  After a rough 2025, Jack Wallen maps out five practical resolutions for 2026, from covering BSD more seriously to actually speaking up when people complain about Windows.

• Intel Meteor Lake On Linux Two Years Post-Launch: 93% The Original Performance
  As part of the various end-of-year annual benchmarking comparisons and the like on Phoronix, today is a look at how the Intel Core Ultra 7 155H "Meteor Lake" performance has evolved under Ubuntu Linux in the two years since launching. Plus with next-gen Intel Panther Lake laptops expected to be showcased next week at CES, it's a good time for revisiting the Meteor Lake performance to see the difference two years have made for Intel Meteor Lake laptops on Linux.

• Arch Linux Installer Archinstall 3.0.15 Adds Support for the rEFInd Boot Manager
  Archinstall 3.0.15 has been released today as the latest stable version of Arch Linux’s menu-based installer, adding a couple of new features and fixing various bugs and other issues.

• Linux 6.19 Closing Out 2025 With Several Laptop Additions
  A New Year's Eve pull request is ready with several Intel/AMD laptop improvements for the ongoing Linux 6.19 kernel cycle. An x86 platform drivers pull request sent to Linus Torvalds today brings several notable driver enhancements with expanding the range of supported laptops...

• Orange Pi Unveils AI Station with Ascend 310 and 176 TOPS Compute
  Orange Pi closes the year by unveiling new details about the Orange Pi AI Station, a compact board-level edge computing platform built around the Ascend 310 series processor. The system targets high-density inference workloads with large memory options, NVMe storage support, and extensive I/O in a small footprint. The AI Station is powered by an […]

• No Standard iPhone 18 Launch This Year, Reports Suggest
  MacRumors: Apple is not expected to release a standard iPhone 18 model this year, according to a growing number of reports that suggest the company is planning a significant change to its long-standing annual iPhone launch cycle. Despite the immense success of the iPhone 17 in 2025, the iPhone 18 is not expected to arrive until the spring of 2027, leaving the iPhone 17 in the lineup as the latest standard model for over 18 months. This would mark the first time Apple skips an entire calendar year without releasing a new generation of its flagship non-Pro iPhone.
  
  
  Read more of this story at Slashdot.
  

• IDC Estimates Apple Shipped Just 45,000 Vision Pros Last Quarter
  Apple's Chinese manufacturing partner Luxshare halted production of the Vision Pro headset at the start of 2025, according to market research firm IDC, after the device shipped 390,000 units during its 2024 launch year. The $3,499 headset has also seen its digital advertising budget cut by more than 95% year to date in the US and UK, according to market intelligence group Sensor Tower. IDC expects Apple to ship just 45,000 new units in the fourth quarter of 2025. Apple launched an upgraded M5 version in October featuring a more powerful chip, extended battery life, and a redesigned headband. The company sells the device directly in 13 countries and did not expand availability in 2025.
  
  
  Read more of this story at Slashdot.
  

• Some of Your Cells Are Not Genetically Yours
  Every human body contains a small population of cells that are not genetically its own -- cells that crossed the placenta during pregnancy and that persist for decades after birth. These "microchimeric" cells, named after the lion-goat-serpent hybrid of Greek mythology, have been found in every organ studied so far, though they are exceedingly rare: one such cell exists for every 10,000 to 1 million of a person's own cells. The cells were first noticed in the late 1800s when pathologist Georg Schmorl described placenta-like "giant cells" in the lungs of people who had died from eclampsia. In 1969, researchers detected Y-chromosome-containing white blood cells in people who would later give birth to boys. For more than two decades, scientists presumed these cells were temporary. That changed in 1993 when geneticist Diana Bianchi found Y-chromosome cells in women who had given birth to sons up to 27 years earlier. The cells appear to have regenerative properties, transforming into blood vessels or skin cells to promote wound healing. They also challenge a central assumption of immunology -- that the immune system classifies cells as either "self" or "non-self" and rejects foreign material. Microchimeric cells should trigger rejection but do not. Higher-than-typical concentrations have been found in people with autoimmune conditions including diabetes, lupus, and scleroderma.
  
  
  Read more of this story at Slashdot.
  

• 'The Cult of Costco'
  Costco's consistency -- from its $1.50 hot dog and drink combo to its functional shopping carts and satisfied employees -- has produced what The Atlantic calls a "cultlike loyalty" among members at more than 600 locations across the U.S. Its annual membership costs $65. The model traces back to Fedco, a nonprofit wholesale collective for federal employees founded in Los Angeles in the 1940s. Costco's private label Kirkland Signature has become one of the world's largest consumer packaged goods brands while maintaining deliberately understated branding. The company relies on word-of-mouth marketing from satisfied members rather than traditional advertising. Atlantic staff writer Jake Lundberg, who shops at the Granger, Indiana location, describes the stores as spaces of "cooperation, courtesy, and grown-ups mostly acting like grown-ups." Shoppers follow unwritten rules: move along, don't block the way, step aside to check your phone. Checkout lines form orderly queues. The exceptions come near sample stations and before major holidays, when spatial awareness and common courtesy break down.
  
  
  Read more of this story at Slashdot.
  

• Iran Offers To Sell Advanced Weapons Systems For Crypto
  Iran is offering to sell advanced weapons systems including ballistic missiles, drones and warships to foreign governments for cryptocurrency, in a bid to use digital assets to bypass western financial controls. From a report: Iran's Ministry of Defence Export Center, known as Mindex, says it is prepared to negotiate military contracts that allow payment in digital currencies, as well as through barter arrangements and Iranian rials, according to promotional documents and payment terms analysed by the Financial Times. The offer, introduced during the past year, appears to mark one of the first known instances in which a nation state has publicly indicated its willingness to accept cryptocurrency as payment for the export of strategic military hardware. Mindex, a state-run body responsible for Iran's overseas defence sales, says it has client relationships with 35 countries and advertises a catalogue of weapons that includes Emad ballistic missiles, Shahed drones, Shahid Soleimani-class warships and short-range air defence systems.
  
  
  Read more of this story at Slashdot.
  

• 'IPv6 Just Turned 30 and Still Hasn't Taken Over the World, But Don't Call It a Failure'
  Three decades after RFC 1883 promised to future-proof the internet by expanding the available pool of IP addresses from around 4.3 billion to over 340 undecillion, IPv6 has yet to achieve the dominance its creators envisioned. Data from Google, APNIC and Cloudflare analyzed by The Register shows less than half of all internet users rely on IPv6 today. "IPv6 was an extremely conservative protocol that changed as little as possible," APNIC chief scientist Geoff Huston told The Register. "It was a classic case of mis-design by committee." The protocol's lack of backward compatibility with IPv4 meant users had to choose one or run both in parallel. Network address translation, which allows thousands of devices to share a single public IPv4 address, gave operators an easier path forward. Huston adds: "These days the Domain Name Service (DNS) is the service selector, not the IP address," Huston told The Register. "The entire security framework of today's Internet is name based and the world of authentication and channel encryption is based on service names, not IP addresses." "So folk use IPv6 these days based on cost: If the cost of obtaining more IPv4 addresses to fuel bigger NATs is too high, then they deploy IPv6. Not because it's better, but if they are confident that they can work around IPv6's weaknesses then in a largely name based world there is no real issue in using one addressing protocol or another as the transport underlay." But calling IPv6 a failure misses the point. "IPv4's continued viability is largely because IPv6 absorbed that growth pressure elsewhere -- particularly in mobile, broadband, and cloud environments," said John Curran, president and CEO of the American Registry for Internet Numbers. "In that sense, IPv6 succeeded where it was needed most." Huawei has sought 2.56 decillion IPv6 addresses and Starlink appears to have acquired 150 sextillion.
  
  
  Read more of this story at Slashdot.
  

• DHS Says REAL ID, Which DHS Certifies, Is Too Unreliable To Confirm US Citizenship
  An anonymous reader shares a report: Only the government could spend 20 years creating a national ID that no one wanted and that apparently doesn't even work as a national ID. But that's what the federal government has accomplished with the REAL ID, which the Department of Homeland Security (DHS) now considers unreliable, even though getting one requires providing proof of citizenship or lawful status in the country. In a December 11 court filing [PDF], Philip Lavoie, the acting assistant special agent in charge of DHS' Mobile, Alabama, office, stated that, "REAL ID can be unreliable to confirm U.S. citizenship." Lavoie's declaration was in response to a federal civil rights lawsuit filed in October by the Institute for Justice, a public-interest law firm, on behalf of Leo Garcia Venegas, an Alabama construction worker. Venegas was detained twice in May and June during immigration raids on private construction sites, despite being a U.S. citizen. In both instances, Venegas' lawsuit says, masked federal immigration officers entered the private sites without a warrant and began detaining workers based solely on their apparent ethnicity. And in both instances officers allegedly retrieved Venegas' Alabama-issued REAL ID from his pocket but claimed it could be fake. Venegas was kept handcuffed and detained for an hour the first time and "between 20 and 30 minutes" the second time before officers ran his information and released him.
  
  
  Read more of this story at Slashdot.
  

• Public Domain Day 2026 Brings Betty Boop, Nancy Drew and 'I Got Rhythm' Into the Commons
  As the calendar flips to January 1, 2026, thousands of copyrighted works from 1930 are entering the US public domain alongside sound recordings from 1925, making them free to copy, share, remix and build upon without permission or licensing fees. The literary haul includes William Faulkner's As I Lay Dying, Dashiell Hammett's full novel The Maltese Falcon, Agatha Christie's first Miss Marple mystery The Murder at the Vicarage, and the first four Nancy Drew books. The popular illustrated version of The Little Engine That Could also joins the commons. Betty Boop makes her public domain debut through her first appearance in the Fleischer Studios cartoon Dizzy Dishes. The original iteration of Disney's Pluto -- then named Rover -- enters as well. Nine additional Mickey Mouse cartoons and ten Silly Symphonies from 1930 are now available for reuse. Films entering the public domain include the Academy Award-winning All Quiet on the Western Front, the Marx Brothers' Animal Crackers, and John Wayne's first leading role in The Big Trail. Musical compositions going public include George and Ira Gershwin's "I Got Rhythm," Hoagy Carmichael's "Georgia on My Mind," and "Dream a Little Dream of Me." Sound recordings from 1925 now available include Bessie Smith and Louis Armstrong's "The St. Louis Blues" and Marian Anderson's "Nobody Knows the Trouble I've Seen." Piet Mondrian's Composition with Red, Blue, and Yellow rounds out the artistic entries.
  
  
  Read more of this story at Slashdot.
  

• European Space Agency Acknowledges Another Breach as Criminals Claim 200 GB Data Haul
  The European Space Agency has acknowledged yet another security incident after a cybercriminal posted an offer on BreachForums the day after Christmas claiming to have stolen over 20GB of data including source code, confidential documents, API tokens and credentials. The attacker claims they gained access to ESA-linked external servers on December 18 and remained connected for about a week, during which they allegedly exfiltrated private Bitbucket repositories, CI/CD pipelines, Terraform files and hardcoded credentials. ESA said that the breach may have affected only "a very small number of external servers" used for unclassified engineering and scientific collaboration, and that it has initiated a forensic security analysis.
  
  
  Read more of this story at Slashdot.
  

• The Man Taking Over the Large Hadron Collider
  Mark Thomson, a professor of experimental particle physics at the University of Cambridge, takes over as CERN's director general this week, and one of his first major decisions during his five-year tenure will be shutting down the Large Hadron Collider for an extended upgrade. The shutdown starts in June to make way for the high-luminosity LHC -- a major overhaul involving powerful new superconducting magnets that will squeeze the collider's proton beams and increase their brightness. The upgrade will raise collisions tenfold and strengthen the detectors to better capture subtle signs of new physics. The machine won't restart until Thomson's term is nearly over. Thomson is far from disconsolate about the downtime. "The machine is running brilliantly and we're recording huge amounts of data," he told The Guardian. "There's going to be plenty to analyse over the period." Beyond the upgrade, Thomson must shepherd CERN's plans for the Future Circular Collider, a proposed 91km machine more than three times the size of the current collider. Member states vote on the project in 2028; the first phase carries an estimated price tag of 15 billion Swiss francs (nearly $19 billion).
  
  
  Read more of this story at Slashdot.
  

• Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two
  In Part One of this series, we examined how the SONiC control plane and the VPP data plane form a cohesive, software-defined routing stack through the Switch Abstraction Interface.` We outlined how SONiC’s Redis-based orchestration and VPP’s user-space packet engine come together to create a high-performance, open router architecture. In this second part, we’ll turn [0]
  
  The post Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One
  The networking industry is undergoing a fundamental architectural transformation, driven by the relentless demands of cloud-scale data centers and the rise of software-defined infrastructure. At the heart of this evolution is the principle of disaggregation: the systematic unbundling of components that were once tightly integrated within proprietary, monolithic systems.` This movement began with the separation [0]
  
  The post Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One appeared first on Linux.com.
  

• Kubernetes on Bare Metal for Maximum Performance
  When teams consider deploying Kubernetes, one of the first questions that arises is: where should it run? The default answer is often the public cloud, thanks to its flexibility and ease of use. However, a growing number of organizations are revisiting the advantages of running Kubernetes directly on bare metal servers. For workloads that demand [0]
  
  The post Kubernetes on Bare Metal for Maximum Performance appeared first on Linux.com.
  

• How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM
  This article was contributed by Vedrana Vidulin, Head of Responsible AI Unit at Intellias (LinkedIn). As AI becomes central to smart devices, embedded systems, and edge computing, the ability to run language models locally — without relying on the cloud — is essential. Whether its for reducing latency, improving data privacy, or enabling offline functionality, local AI [0]
  
  The post How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM appeared first on Linux.com.
  

• Automating Compliance Management with UTMStacks Open Source SIEM 8 XDR
  Achieving and maintaining compliance with regulatory frameworks can be challenging for many organizations. Managing security controls manually often leads to excessive use of time and resources, leaving less available for strategic initiatives and business growth. Standards such as CMMC, HIPAA, PCI DSS, SOC2 and GDPR demand ongoing monitoring, detailed documentation, and rigorous evidence collection. Solutions [0]
  
  The post Automating Compliance Management with UTMStacks Open Source SIEM & XDR appeared first on Linux.com.
  

• A Simple Way to Install Talos Linux on Any Machine, with Any Provider
  Talos Linux is a specialized operating system designed for running Kubernetes. First and foremost it handles full lifecycle management for Kubernetes control-plane components. On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence [0]
  
  The post A Simple Way to Install Talos Linux on Any Machine, with Any Provider appeared first on Linux.com.
  

• Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces
  OpenTelemetry (fondly known as OTel) is an open-source project that provides a unified set of APIs, libraries, agents, and instrumentation to capture and export logs, metrics, and traces from applications. The project’s goal is to standardize observability across various services and applications, enabling better monitoring and troubleshooting. Read More at Causely
  
  The post Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces appeared first on Linux.com.
  

• Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation.
  Exciting news! The Tazama project is officially a Digital Public Good having met the criteria to be accepted to the Digital Public Goods Alliance ! Tazama is a groundbreaking open source software solution for real-time fraud prevention, and offers the first-ever open source platform dedicated to enhancing fraud management in digital payments. Historically, the financial [0]
  
  The post Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation. appeared first on Linux.com.
  

• Xen 4.19 is released
  Xen Project 4.19 has been officially out since July 31st, 2024, and it brings significant updates. With enhancements in performance, security, and versatility across various architectures like Arm, PPC, RISC-V, and x86, this release is an important milestone for the Xen community. Read more at XCP-ng Blog
  
  The post Xen 4.19 is released appeared first on Linux.com.
  

• Advancing Xen on RISC-V: key updates
  At Vates, we are heavily invested in the advancement of Xen and the RISC-V architecture. RISC-V, a rapidly emerging open-source hardware architecture, is gaining traction due to its flexibility, scalability and openness, which align perfectly with our ethos of fostering open development ecosystems. Although the upstream version of Xen for RISC-V is not yet fully [0]
  
  The post Advancing Xen on RISC-V: key updates appeared first on Linux.com.
  

Engadget"Engadget is a web magazine with obsessive daily coverage of everything new in gadgets and consumer electronics"

• Starlink is lowering thousands of satellites' orbits to reduce risk of collisions
  Starlink will lower the orbits of roughly 4,400 satellites this year as a safety measure, according to engineering VP, Michael Nicolls. In a post on X, Nicolls wrote that the company is "beginning a significant reconfiguration of its satellite constellation," in which all satellites orbiting at around 550 kilometers (342 miles) will be lowered to around 480 km (298 miles). The move is intended to reduce the risk of collisions, putting the satellites in a region that9s less cluttered and will allow them to deorbit more quickly should an incident occur. 
  
  "Lowering the satellites results in condensing Starlink orbits, and will increase space safety in several ways," Nicolls wrote, also pointing to the coming solar minimum — a period in the sun9s 11ish-year cycle when activity is lower — as one of the reasons for the move. The next solar minimum is expected to occur in the early 2030s. "As solar minimum approaches, atmospheric density decreases which means the ballistic decay time at any given altitude increases - lowering will mean a >80% reduction in ballistic decay time in solar minimum, or 4+ years reduced to a few months," Nicolls wrote.
  A screenshot of an X post by Starlink VP of engineering Michael Nicolls announcing that satellites orbiting at around 500 kilometers will be lowered to 480km
  The announcement comes a few weeks after Starlink said one of its satellites had experienced an anomaly that created some debris and sent it tumbling. Just a few days earlier, Nicolls posted about a close call with a batch of satellites he said were launched from China seemingly without any attempt to coordinate with operators of existing satellites in the space. With his latest announcement, Nicolls added that lowering Starlink9s satellites "will further improve the safety of the constellation, particularly with difficult to control risks such as uncoordinated maneuvers and launches by other satellite operators."
  This article originally appeared on Engadget at https://www.engadget.com/science/space/starlink-is-lowering-thousands-of-satellites-orbits-to-reduce-risk-of-collisions-030509067.html?src=rss

• Samsung's latest Freestyle portable projector is brighter and smarter
  Samsung has upgraded its Freestyle portable projector for 2026. The company announced a new model, the Freestyle+, ahead of CES, touting twice the brightness of its predecessor at 430 ISO lumens, and AI-powered screen optimization features. As with Freestyles past, the Freestyle+ offers 180-degree rotation and 360-degree audio. This one also supports Q-Symphony so it9ll work with some Samsung soundbars. Samsung hasn9t revealed much else in the way of specs or pricing, but it9ll be showing off the Freestyle+ at CES 2026, so we9re likely to learn more details soon. 
  
  While previous iterations of Samsung9s compact projector offered automatic screen adjustment features, like auto focus and auto leveling, the Freestyle+ uses AI to take optimization a step further. With AI OptiScreen, as the company is calling it, the projector offers 3D auto keystone to fix distortion on uneven or non-flat surfaces, real-time focus when the projector is moved, automatic screen fit for compatible accessories and wall calibration to reduce visual distractions from the projection surface. It9ll also support Samsung9s Vision AI Companion. 
  
  The company hasn9t announced a specific release date yet for the new projector, but says it9s targeting the first half of the year. It9ll be released in phases globally. 
  This article originally appeared on Engadget at https://www.engadget.com/home/home-theater/samsungs-latest-freestyle-portable-projector-is-brighter-and-smarter-014026804.html?src=rss

• How to watch Hyundai's CES 2026 presentation live
  A look at Hyundai9s Holographic Windshield Display. (Hyundai)
  While it often feels like a full-on auto show, the car vibes feel somewhat lessened at .
  
  Indeed, the company9s Mobis subsidiary will present "more than 30 mobility convergence technologies" during CES. And we9ll also get to see Hyundai9s AI Robotics Strategy, which will showcase its new Atlas robot fresh out of the lab.
  How to watch Hyundai9s presentation at CES 2026
  Hyundai9s presentation takes place on January 5 at 4PM ET, and you can livestream it on either its HyundaiUSA YouTube channel or its global YouTube channel. We9ll embed the stream here once it9s available.
  What to expect
  As mentioned above, Hyundai will have its Holographic Windshield Display for viewing. It9s essentially a next-gen heads-up display that projects key data from the vehicle9s dash on the windshield for less distraction, and without obstructing the driver9s view. It9s a vertically expandable 18.1-inch large display, and passengers can even watch videos without being visible to the driver.
  
  Hyundai Mobis collaborated with German optics specialist Zeiss to develop the "world9s first system to utilize holographic film to transform the entire front windshield into an ultra-large display surface." It says it will begin mass production in 2029, so don9t expect to see this on the market anytime soon.
  
  Beyond automotive, though, we9ll also get a first-ever look at the company9s new Atlas robot. In the teaser image shown in the press release, Atlas looks rather dog-like, which makes sense when you remember that Boston Dynamics was purchased by the Korean multinational back in 2020.
  
  "This next-generation Atlas represents a tangible step toward the commercialization of AI Robotics, highlighting the Group’s commitment to building safe and adaptable robotic co-workers," the company said in the same press release.
  
  Hyundai said it will also discuss its other tech areas, including electronics and chassis system safety, as well as an AR head-up display, low-power display solutions and EV drive systems.
  This article originally appeared on Engadget at https://www.engadget.com/transportation/how-to-watch-hyundais-ces-2026-presentation-live-190051181.html?src=rss

• How to watch the Hisense CES 2026 presentation live
  Xinhua News Agency via Getty Images
  Hisense is generally best known for its budget-friendly electronics and appliances, like TVs and refrigerators. However, at CES 2025, the China-based company showcased its high-end capabilities with a massive 136-inch micro LED TV, which has recently become available for a staggering $100,000. So what's on deck for this year's show? New leadership, for starters.
  
  The company has two new hires, including Chief Marketing Officer Sarah Larsen and Chief Commercial Officer James Fishler. In a press release, Hisense said Fishler's experience in home entertainment, appliances and HVAC is important as the company "builds toward a milestone 2026 and its presence at CES."
  
  We'll give you a rundown of what to expect during Hisense's presentation and how you can watch it live.
  How to watch Hisense's presentation
  Hisense will have a livestream available on Monday, January 5 at 1PM ET on its website. We'll embed the link here once it's available.
  What to expect
  With its new hires in place, Hisense is clearly aiming to further polish its brand. Between Fishler and Larsen, the new front office is bringing to bear their experience from such high-powered competitors as LG, Samsung and Beats. And in a recent interview with Tom's Guide, Larsen emphasized a continued focus on the company's fast turnaround time from concept to market as a key differentiator for Hisense.
  
  As for actual announcements, while you can expect Hisense to tout its strength in appliances and HVAC systems (really), Larsen's aforementioned interview specifically calls out the emerging RGB TV space as a focus. We expect this year's show will be all about explaining the shades of difference between mini and micro LED display technologies, as both Samsung and LG have already thrown down pre-announcement gauntlets on the latter. Will any of them cost less than six figures? Let's hope Hisense has some good news to share on that front.
  This article originally appeared on Engadget at https://www.engadget.com/home/how-to-watch-the-hisense-ces-2026-presentation-live-monday-190040380.html?src=rss

• Pick up a four-pack of AirTags for only $65 right now
  Most Apple products are pretty expensive, but some of the most affordable (and useful) ones are AirTags. The Bluetooth trackers are priced pretty reasonably even when not on sale, but they can be a steal if you can get them on a discount — like right now. A four pack of AirTags is on sale for $65 at Amazon, which is only a few dollars more than the record-low price we saw during Black Friday a couple of months ago.
  
  
  
  AirTags can be useful for people who travel frequently, helping you to keep track of essentials like your passport as well as a way to keep tabs on luggage while you9re on the go. If you do purchase some AirTags, we have some recommendations for useful accessories to go along with them, such as different styles of cases to best attach the trackers to different types of items. These are worth looking over and adding to your shopping cart in order to make the most of the product. 
  
  AirTags have an IP67 rating for water and dust resistance and their replaceable batteries should last for about a year. They can also support Precision Finding, which gives more exact directions to a lost item, when paired with most models after the iPhone 11. Up to five people can share an AirTag9s location, which is helpful for families or large travel groups. 
  
  If you really only need one AirTag, that configuration is also on sale at Amazon right now — it9s 34 percent off and down to just $19 a pop.
  
  
  
  Follow @EngadgetDeals on X for the latest tech deals and buying advice.
  This article originally appeared on Engadget at https://www.engadget.com/deals/pick-up-a-four-pack-of-airtags-for-only-65-right-now-202333572.html?src=rss

• Airloom will showcase its new approach to wind power at CES
  One of the many concerns about artificial intelligence these days is how the rush to build data centers is impacting local communities. Data centers can create a drain on resources, and some utility companies have already said customers can expect to see their electricity bills growing as these facilities increase demand. There have been some discussions of what other power sources could support the AI engine, and wind power specialist Airloom is one company that9s looking to address the problem. Ahead of the business9 upcoming appearance at CES, we9ve learned a bit about what Airloom has accomplished this year and what it is aiming for next.
  
  Rather than the very tall towers typically used for this approach, Airloom9s structures are 20 to 30 meters high. They are comprised of a loop of adjustable wings that move along a track, a design that’s akin to a roller coaster. As the wings move, they generate power just like the blades on a regular wind turbine do. Airloom claims that its structures require 40 percent less mass than a traditional one while delivering the same output. It also says the Airloom9s towers require 42 percent fewer parts and 96 percent fewer unique parts. In combination, the company says its approach is 85 percent faster to deploy and 47 percent less expensive than horizontal axis wind turbines. Airloom broke ground on a pilot site in June for testing out its approach and confirming how those figures work in practice.
  
  It’s not feasible to bring a wind farm, even a small one, into CES, but Airloom will have a booth at the event with materials about its technology and engineering. While the business isn9t in a consumer-facing field, the impact of Airloom9s work could have a future positive impact on people if the data center boom continues.
  This article originally appeared on Engadget at https://www.engadget.com/science/airloom-will-showcase-its-new-approach-to-wind-power-at-ces-160000063.html?src=rss

• How to watch the NVIDIA CES 2026 presentation live
  CFOTO via Getty Images
  During CES 2025, we watched NVIDIA tout its leading position in the artificial intelligence arena for the bulk of the presentation. But it did reveal some new hardware, including its RTX 5000-series GPUs and Project Digits desktop supercomputer (later redubbed Spark). This year, the company9s website says it9s "lighting up CES 2026 with the power of AI." To that end, NVIDIA is pulling out all the stops at its Vegas installation, promising hands-on demos in its booth at the Fontainebleau, replete with the "latest NVIDIA solutions driving innovation and productivity across industries."
  
  But don9t worry if you9re not on the ground in Vegas. Here9s how you can watch the livestream of the company9s January 5 press conference, and what to expect from NVIDIA at CES this year.
  How to watch the NVIDIA CES 2026 keynote
  NVIDIA CEO Jensen Huang will deliver a 90-minute keynote at CES 2026. The event will be livestreamed on January 5 at 4PM ET via NVIDIA9s website (and likely on YouTube as well). We9ll embed the link here once it9s available.
  What to expect
  NVIDIA9s game plan for CES is suitably vague so far, including "cutting-edge AI, robotics, simulation, gaming and content creation at the NVIDIA Showcase." It also notes there will be more than 20 demos. Although we9re unsure if all of these will be shown during the keynote, we can at least expect to see them throughout the week of CES.
  
  Given NVIDIA9s sky-high valuation and the fact that the health of the US and global economy seems increasingly linked to infrastructure spending on AI data centers – largely powered by chips from NVIDIA and its competitors — expect Huang9s remarks to be as closely followed by Wall Street investors as technology acolytes, if not more so. Will we get any insight on a successor to the company9s Blackwell chip? A more detailed look at how NVIDIA9s partners are applying AI to real-world robotics? Time will tell, but you might want to keep your stock portfolio in a split screen while taking in Huang9s presentation.
  This article originally appeared on Engadget at https://www.engadget.com/computing/how-to-watch-the-nvidia-ces-2026-press-conference-live-130028668.html?src=rss

• In 2025, quitting social media felt easier than ever
  For a tech writer, being very offline is sort of like being a marathon coach who doesn’t run. So in 2025, I tried to reverse years of studied avoidance towards the most ubiquitous technological phenomenon on earth — I got back on social media. The change was short-lived. 
  
  My first exodus from the feeds took some work — disabling notifications, removing apps from my homescreen and then deleting accounts entirely. This time, the phone put itself down. The whole thing has simply lost its luster.
  
  I started with Instagram. Every experience went like this: I’d see a single post from one of the rare family members or IRL friends who are active on the platform. Next, I was fed a sponsored post, followed by suggestions to follow randos. After that, a series of influencer videos that, admittedly, appeal to my taste (funny/absurdist women and dissertations on urban planning). That was followed up with more sponsored posts, mostly from brands I’d looked up for work. Then it’d circle back to the influencers. My eyes glazed over and I tossed the phone aside.  
  
  Years back, the platform gave off a jolt of quasi-social connection that I’d spend hours sucking up. I fed on pointless thoughts from an ex-coworker, vacation reels from a college roommate, a half-baked loaf of bread that an old friend dropped on the floor but took a picture of anyway. Now it’s a bare sliver of that stuff, shoehorned between towers of sponsored content and posts from people who make or promote their living on Instagram. The real people have left. The connection is gone. The FOMO is no more.   
  
  I experienced some variation of the same disappointment on every platform I rejoined. When I got back on TikTok a few months after the ban, it felt like a frenzied shopping mall. Every video seems to be about four seconds long and most are promotional and/or shoppable. YouTube Shorts is drowning in AI-generated videos, and I don’t hit up social media to watch fake footage of desperate wild animal babies clambering onto the boats of helpful humans. My life has no need for simulated toddlers admonishing their pets. Occasionally, I’d hit on something compelling: a clip from late night TV, a stupidly decadent dessert recipe, people from other countries explaining cultural subtleties. 
  
  But for me, these social media platforms are no longer velcro for the eyes. I remember losing focus, spending long hours on YouTube Shorts and IG. I’d look up bleary-eyed and shame-faced after hours scrolling TikTok’s For You Page. Now, after a few minutes, a bored ickiness sets in. I feel like I’m trapped in a carnival of bots hawking shampoo at me and I just want to go home. 
  
  It’s not a mystery how or why things feel different; The answer is always money. These billion- and trillion-dollar companies have shareholders who prize year-over-year performance over anything else. So we get more sponsored posts on Instagram. TikTok purposefully, enthusiastically overloads itself with shoppable content (which isn’t going to change no matter who owns it). YouTube is obsessed with engagement so it ends up rewarding people who flood the platform with AI slop. These platforms aren’t about human connections and the spread of creativity — the stuff that used to draw me in — they’re thinly varnished ecommerce sites sprinkled with brute-forced AI oddities.   
  
  I’d be sadder about the whole thing if I thought it could be any different. These companies are among the most valuable in the world. The fact that I can’t connect with my fellow common people using their services is not surprising. The change isn’t even driving everyone away. Instagram reported more users than ever this year, to the tune of 35 percent of the planet. Billions of users still scroll TikTok and watch YouTube Shorts. So maybe it’s just a me thing.  
  
  And I have options. Over-monetization may have made me not want to engage with a few social media behemoths, but things aren’t so dire everywhere. Bluesky reminds me of Twitter before X. I take comfort in seeing posts that prove most people are as dismayed as I am over a government and wider economic system that are nakedly uninterested in serving the public. The hot takes aren’t quite as funny as they were on Twitter years back — maybe it’s just all been said before or perhaps things have gotten too dire for levity. I still don’t end up spending a lot of time on the platform, however. It’s not as weird as it was before the defection and I get tired of the stream of news headlines contextualized with tut-tutting and handwringing — I’m perfectly capable of doing that myself.  
  
  It’d be easy to say that social media just isn’t my thing, but that’s not true because I can’t quit Reddit — the shining exception to my social media ennui. It feels filled with actual people. Ads exist, but in a subdued, manageable way. And every contributor, commenter and moderator I’ve come across on the app is militantly vigilant against the onslaught of artificially generated content. I also like the organizational structure. I know my Home tab will only expose me to my chosen subs and I derive great joy from happy cows, greeble-chasing cats, enigmatic night feelings and freaky abandoned spaces. I use my local subreddit r/Albuquerque daily to answer questions and keep tabs on the world (directly) around me. 
  
  Sadly, Reddit is an outlier, a misfit exception to the rule, and now that it’s gone public, it may follow a similar monetization push. Bluesky is tiny, new and not yet profitable, so who knows where its financial journey will lead it (though the “world without Caesars��� shirt gives us some hope). 
  
  There’s something lamentable about the loss of the connections we gleaned from platforms that were once compelling, engrossing and rife with the creativity of our fellow humans. Ultimately, any public-facing company that prioritizes profits over everything else has no incentive to look out for its users. So I don’t expect any of the larger social platforms to pull back on their monetization marches. For now, I’ve decided I’m comfortable with my admittedly narrow interaction with the world of social media. As a Gen-Xer, online-first wasn’t how my relationship to the world started out. And I’m pretty confident I know enough about other tech-related stuff to be useful to my editors and readers without a black belt in social. (Ed. note: She is.) Besides, Karissa’s got us covered. 
  This article originally appeared on Engadget at https://www.engadget.com/social-media/in-2025-quitting-social-media-felt-easier-than-ever-140000374.html?src=rss

• How to watch the Bosch CES 2026 press conference live
  You may know Bosch as a home appliance brand (via its partnership with Siemens), but the German multinational is generally more focused on providing underlying technology and engineering solutions to auto, home and manufacturing partners across the globe. It9s fitting, then, that much of what it9s showing off at CES 2026 is more intended to be licensed to other companies versus Bosch-branded products you9ll be seeing on store shelves.
  
  Case in point is Bosch9s automotive plans at CES. The company will present "AI in the car," or more specifically, in the cockpit of the car. "Bosch9s AI-powered cockpit makes driving more comfortable, intuitive, and safer for all occupants," Bosch board member Markus Heyn said in a press release. We9ll get into all the details below, as well as how to tune in to the press conference on Monday.
  How to watch Bosch9s CES 2026 presentation
  You can livestream the event on Monday, January 5 at 12PM ET via the Bosch press page. (If the stream is embeddable, we9ll also include it here.)
  What to expect
  Bosch will be setting up shop in the Central Hall of the Las Vegas Convention Center (booth 16203), where the company will be focusing on its three big themes — mobility, smart home integrations and manufacturing — all of which will include hardware, software and AI solutions.
  
  Like many other CES 2026 exhibitors, look for Bosch to emphasize its partnerships with the big dogs of the AI space at the show. For instance, that AI-powered car cockpit mentioned above will feature integrations with both Microsoft and NVIDIA. For instance, Bosch is touting the ability to use voice commands to join a Teams call, while the car9s system will automatically activate adaptive cruise control. And it9s noting that NVIDIA9s software suites will help manage "real-time sensor processing and vision-language models."
  
  Here9s a glimpse of what the booth will look like:
  
  
  This article originally appeared on Engadget at https://www.engadget.com/ai/how-to-watch-the-bosch-ces-2026-press-conference-live-130020898.html?src=rss

• The best gear to help you stick to your New Year's resolutions
  The start of a new year always feels like a reset button. Everyone’s talking about moving more, eating better, sleeping longer or finally taming their digital chaos. But resolutions rarely survive on willpower alone. The right tools or piece of tech can make those goals easier to keep by turning motivation into a habit. Whether you’re trying to close your rings, track your progress or just build better routines, these smart picks make self-improvement feel a little more achievable, and a lot more enjoyable.
  Gear that can help you stick to your New Year9s resolutions
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  This article originally appeared on Engadget at https://www.engadget.com/the-best-gear-to-help-you-stick-to-your-new-years-resolutions-130000389.html?src=rss

• EU OS: A Bold Step Toward Digital Sovereignty for Europe
  Image
  A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
  What Is EU OS?
  EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.
  
  Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
  The Vision Behind EU OS
  The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.
  
  Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.
  
  However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
  Conclusion
  EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.
  
  Source: It's FOSS
  European Union

• Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.
  
  In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.
  
  On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.
  
  Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.
  
  The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.
  
  Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.
  
  You can download the latest kernel here.
  Linus Torvalds kernel

• AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
  Image
  AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.
  
  This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.
  
  Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.
  
  Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.
  
  Source: 9to5Linux
  AerynOS

• Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
  Image
  Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.
  
  Here’s a quick overview of what’s new in Xojo 2025r1:
  1. Linux ARM IDE Support
  Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
  2. Web Drag and Drop
  One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
  3. Direct App Store Publishing
  Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
  4. New Desktop and Mobile Features
  This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
  5. Performance and IDE Enhancements
  Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
  What Does This Mean for Developers?
  Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
  How to Get Started
  Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.
  
  Download Xojo 2025r1 today at xojo.com.
  Final Thoughts
  With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
  Xojo ARM

• New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux
  
  Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.
  
  Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.
  
  Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest. 
  
  Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.
  
  Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.
  
  Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.
  
  By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
  Windows

• Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities
  
  The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally. 
  
  As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.
  
  In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions. 
  
  After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.
  
  The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.
  
  At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.
  
  The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
  Security

• Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges
  
  The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.
  
  A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.
  
  This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem. 
  
  The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.
  
  On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.
  
  In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
  kernel

• Linux Celebrates 32 Years with the Release of 6.6-rc2 Version
  
  Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.
  
  The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.
  
  Here is what Linus Torvalds had to say in today's announcement:
  Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds

• Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction
  
  Want to interact with ChatGPT from your Linux desktop without using a web browser?
  
  Bavarder, a new app, allows you to do just that.
  
  Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.
  
  With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.
  
  During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.
  
  At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.
  
  As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!
  
  Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
  ChatGPT AI

• LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite
  
  Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.
  
  Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.
  
  LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.
  
  You can download LibreOffice 7.5.3 directly from the LibreOffice website��or from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.
  
  All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.
  
  In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.
  
  Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.
  
  The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
  LibreOffice