All the News that Matters

• Fedora 42 Nix Critical Privilege Escalation Fix GHSA-g3g9-5vj6-r3gj
  update to 2.31.4 fixes nix-daemon critical GHSA-g3g9-5vj6-r3gj (CVE-2026-39860) https://github.com/NixOS/nix/security/advisories/GHSA-g3g9-5vj6-r3gj

• Fedora 42 Thunderbird Update 149.0.1 Advisory FEDORA-2026-db2b4e5b64
  Update to latest upstream version.

• Ubuntu 25.10 Rack Advisory USN-8182-1 Security Issues and Threats
  Several security issues were fixed in Rack.

• Fedora 43 Skopeo Critical DoS Security Fix FEDORA-2026-75c2b7868a
  Automatic update for skopeo-1.22.2-1.fc43, podman-5.8.2-1.fc43, buildah-1.43.1-1.fc43. Changelog for skopeo * Tue Apr 14 2026 Packit - 1:1.22.2-1 - Update to 1.22.2 upstream release

• Fedora 43 Podman CVE-2026-34986 Denial of Service Security Update
  Automatic update for skopeo-1.22.2-1.fc43, podman-5.8.2-1.fc43, buildah-1.43.1-1.fc43. Changelog for skopeo * Tue Apr 14 2026 Packit - 1:1.22.2-1 - Update to 1.22.2 upstream release

• Fedora 43 libexif Medium Denial of Service Info Leak Vulnerability
  Update to 0.6.26, fixing several CVEs https://github.com/libexif/libexif/releases/tag/v0.6.26

• New Media Drivers Merged For Linux 7.1
  The media subsystem updates have been merged for the ongoing Linux 7.1 merge window and includes new hardware support...

• Proton 11 Enters Beta Testing with Support for Breath of Fire IV, Unknown Faces
  Valve released today the beta version of the upcoming Proton 11 open-source compatibility tool for Steam Play, based on Wine and additional components for playing Windows games on Linux systems.

• New NTFS File-System Driver Submitted For Linux 7.1
  Making today very exciting in Linux 7.1 merge window land was a pull request being sent out for introducing the new, modern NTFS file-system driver. Linus Torvalds has yet to comment if he's going to merge the new driver but it looks like it's ready for providing a better Linux NTFS experience over the current NTFS3 driver that was upstreamed by Paragon Software a few years ago and hasn't seen too much feature progress...

• FunOS: Ubuntu LTS with JWM and No Snaps
  With Ubuntu LTS under the hood and JWM on top, FunOS keeps things light, snap?free, and ready for you to assemble your own workspace.

• Linux 7.1 sched_ext Brings cgroup Sub-Scheduler Groundwork, Idle SMT Sibling Improvement
  The extensible scheduler "sched_ext" code for allowing Linux scheduling behavior to be defined via BPF programs is seeing some useful improvements with the in-development Linux 7.1 kernel...

• Linux Mint Will Adopt a Longer Development Cycle Starting with Linux Mint 23
  Linux Mint project leader Clement Lefebvre revealed today in the monthly newsletter for March 2026 that Linux Mint will adopt a longer development cycle starting with the upcoming Linux Mint 23 release.

• How to Add User to Sudo Group
  Sudo users have the most authority over the system, including the ability to install, remove, update packages, and modify system files.

• Linux Mint Targets Christmas 2026 for Next Major Release
  Linux Mint 23 Alfa is now based on Ubuntu 26.04 LTS and Linux kernel 7.0, marking the start of development for the project’s next major release.

• Rust 1.95 Released With Several Improvements
  Rust 1.95 was released to the wild today as the latest feature update to this popular programming language...

• Duane O’Brien Takes OSI’s Hot Seat
  O’Brien’s first job at OSI won’t be polishing the logo; it’ll be navigating a community still concerned over the group’s Open Source AI Definition and last year’s messy board election.

• Intel's New Core Series 3 Is Its Answer To the MacBook Neo
  Intel has launched a new budget-focused Core Series 3 processor line for lower-cost laptops -- "Intel's response to budget CPUs that are appearing in laptops like the Apple MacBook Neo," writes PCWorld's Mark Hachman. From the report: Intel unexpectedly launched the Core Series 3, based on its excellent "Panther Lake" (Core Ultra Series 3) architecture and 18A manufacturing, for devices for home consumers and small business on Thursday. Intel announced that a number of partners will launch laptops based upon the chip, including Acer, Asus, HP, Lenovo, and others. Although those laptops will be available beginning today, a number of them will begin shipping later this year, the partners said. All of it -- from the specifications down to the messaging -- feels extremely aimed at trimming the fat and delivering to users just what they'll want. Intel's new Core Series 3 family just includes two "Cougar Cove" performance cores and four low-power efficiency "Darkmont" cores, with two Xe graphics cores on top of it. Intel isn't really worrying about AI, with an NPU capable of just 17 TOPS, though the company claims the CPU, NPU, and GPU combined reach 40 TOPS of performance. Yes, laptops will use pricey DDR5 memory, but at the lower end: just DDR5-6400 speeds. Support for three external displays will be included, though, maximizing multiple screens for maximum productivity. Intel used the term "all day battery life" without elaboration. [...] Intel Core Series 3 delivers up to 47 percent better single-thread performance, up to 41 percent better multi thread performance, and up to 2.8x better GPU AI performance, Intel said. Compared against Intel's older Core 7 150U, Intel is saying that the new chip will outperform it by 2.1 times in content-creation and 2.7 times the AI performance. [...] We still don't know what Intel will charge for the chip, nor do we know what you'll be able to buy a Core Series 3 laptop for.
  
  
  Read more of this story at Slashdot.
  

• Sperm Whales' Communication Closely Parallels Human Language, Study Finds
  An anonymous reader quotes a report from the Guardian: We may appear to have little in common with sperm whales – enormous, ocean-dwelling animals that last shared a common ancestor with humans more than 90 million years ago. But the whales' vocalized communications are remarkably similar to our own, researchers have discovered. Not only do sperm whale have a form of "alphabet" and form vowels within their vocalizations but the structure of these vowels behaves in the same way as human speech, the new study has found. Sperm whales communicate in a series of short clicks called codas. Analysis of these clicks shows that the whales can differentiate vowels through the short or elongated clicks or through rising or falling tones, using patterns similar to languages such as Mandarin, Latin and Slovenian. The structure of the whales' communication has "close parallels in the phonetics and phonology of human languages, suggesting independent evolution," the paper, published in the Proceedings B journal, states. Sperm whale coda vocalizations are "highly complex and represent one of the closest parallels to human phonology of any analyzed animal communication system," it added. [...] The new study shows that "sperm whale communication isn't just about patterns of clicks -- it involves multiple interacting layers of structure," said Mauricio Cantor, a behavioral ecologist at the Marine Mammal Institute who was not involved in the research. "With this study, we're starting to see that these signals are organized in ways we didn't fully appreciate before." The latest discovery around sperm whale speech has inched forward the possibility of someday fully understanding the creatures and even communicating with them. Project CETI has set a goal of being able to comprehend 20 different vocalized expressions, relating to actions such as diving and sleeping, within the next five years. A future where we're able to fully understand what the whales are saying and be able to have a conversation with them is "totally within our grasp," said David Gruber, founder and president of Project CETI. "We've already got a lot further than I thought we could. But it will take time, and funding. At the moment we are like a two-year-old, just saying a few words. In a few years' time, maybe we will be more like a five-year-old."
  
  
  Read more of this story at Slashdot.
  

• 'TotalRecall Reloaded' Tool Finds a Side Entrance To Windows 11 Recall Database
  An anonymous reader quotes a report from Ars Technica: Two years ago, Microsoft launched its first wave of "Copilot+" Windows PCs with a handful of exclusive features that could take advantage of the neural processing unit (NPU) hardware being built into newer laptop processors. These NPUs could enable AI and machine learning features that could run locally rather than in someone's cloud, theoretically enhancing security and privacy. One of the first Copilot+ features was Recall, a feature that promised to track all your PC usage via screenshot to help you remember your past activity. But as originally implemented, Recall was neither private nor secure; the feature stored its screenshots plus a giant database of all user activity in totally unencrypted files on the user's disk, making it trivial for anyone with remote or local access to grab days, weeks, or even months of sensitive data, depending on the age of the user's Recall database. After journalists and security researchers discovered and detailed these flaws, Microsoft delayed the Recall rollout by almost a year and substantially overhauled its security. All locally stored data would now be encrypted and viewable only with Windows Hello authentication; the feature now did a better job detecting and excluding sensitive information, including financial information, from its database; and Recall would be turned off by default, rather than enabled on every PC that supported it. The reconstituted Recall was a big improvement, but having a feature that records the vast majority of your PC usage is still a security and privacy risk. Security researcher Alexander Hagenah was the author of the original "TotalRecall" tool that made it trivially simple to grab the Recall information on any Windows PC, and an updated "TotalRecall Reloaded" version exposes what Hagenah believes are additional vulnerabilities. The problem, as detailed by Hagenah on the TotalRecall GitHub page, isn't with the security around the Recall database, which he calls "rock solid." The problem is that, once the user has authenticated, the system passes Recall data to another system process called AIXHost.exe, and that process doesn't benefit from the same security protections as the rest of Recall. "The vault is solid," Hagenah writes. "The delivery truck is not." The TotalRecall Reloaded tool uses an executable file to inject a DLL file into AIXHost.exe, something that can be done without administrator privileges. It then waits in the background for the user to open Recall and authenticate using Windows Hello. Once this is done, the tool can intercept screenshots, OCR'd text, and other metadata that Recall sends to the AIXHost.exe process, which can continue even after the user closes their Recall session. "The VBS enclave won't decrypt anything without Windows Hello," Hagenah writes. "The tool doesn't bypass that. It makes the user do it, silently rides along when the user does it, or waits for the user to do it." A handful of tasks, including grabbing the most recent Recall screenshot, capturing select metadata about the Recall database, and deleting the user's entire Recall database, can be done with no Windows Hello authentication. Once authenticated, Hagenah says the TotalRecall Reloaded tool can access both new information recorded to the Recall database as well as data Recall has previously recorded. "We appreciate Alexander Hagenah for identifying and responsibly reporting this issue. After careful investigation, we determined that the access patterns demonstrated are consistent with intended protections and existing controls, and do not represent a bypass of a security boundary or unauthorized access to data," a Microsoft spokesperson told Ars. "The authorization period has a timeout and anti-hammering protection that limit the impact of malicious queries."
  
  
  Read more of this story at Slashdot.
  

• OpenAI's Big Codex Update Is a Direct Shot At Claude Code
  OpenAI is updating Codex with more agent-like capabilities, positioning it as a more direct rival to Anthropic's Claude Code. Some of the new features include the ability to operate macOS desktop apps, browse the web inside the app, generate images, use new workplace plug-ins, and remember useful context from past tasks. The Verge reports: Codex will now be able to operate desktop apps on your computer, OpenAI says in a blog post announcing the update. It can work in the background, meaning it won't interfere with your own work in other apps, and multiple agents can work in parallel. For developers, OpenAI says "this is helpful for testing and iterating on frontend changes, testing apps, or working in apps that don't expose an API." The feature will start rolling out to Codex desktop app users signed in with ChatGPT today and will initially be limited to macOS. OpenAI did not indicate a timeline for when use will expand to other operating systems. EU users will also have to wait, it said, adding that the update will roll out to users there "soon." Codex is also getting the ability to generate and iterate on images with gpt-image-1.5, new plug-ins for tools like GitLab, Atlassian Rovo, and Microsoft Suite, and native web browsing through an in-app browser, "where you can comment directly on pages to provide precise instructions to the agent." OpenAI also said it will also be easier to automate tasks, with users able to re-use existing conversation threads and Codex now able to schedule future work for itself and wake up automatically to continue on a long-term task. Codex will also be getting a memory feature allowing it to remember useful context from past experience, such as personal preferences, corrections, and information that took time to gather. OpenAI said it hopes the opt-in feature, which will be released as a preview, will help future tasks complete faster and to a quality that previously required detailed custom instructions. The personalization features will roll out to Enterprise, Edu, and EU users "soon."
  
  
  Read more of this story at Slashdot.
  

• Is Linux Mint In Trouble?
  BrianFagioli writes: The developers behind Linux Mint say the project is rethinking its release strategy and moving toward a longer development cycle, with the next version now expected around Christmas 2026. In a monthly update, project lead Clement Lefebvre said the team reached a "crossroads" and needs more flexibility to fix bugs, improve the desktop, and adapt to rapid changes across the Linux ecosystem. The upcoming development build, temporarily called Mint 23 "Alfa," is currently based on Ubuntu 26.04 LTS and includes Linux kernel 7.0, an unstable build of Cinnamon 6.7, and early Wayland related work. Mint is also replacing the long used Ubiquity installer with "live-installer," the same tool used by Linux Mint Debian Edition, allowing the project to unify installation infrastructure across its Ubuntu based and Debian based variants. While the team frames the changes as an opportunity to improve quality and reduce maintenance overhead, the shift has raised questions about the project's long term direction and whether Linux Mint may eventually lean more heavily on its Debian roots rather than its traditional Ubuntu base.
  
  
  Read more of this story at Slashdot.
  

• Europe Has 'Maybe 6 Weeks of Jet Fuel Left'
  The head of the International Energy Agency warned that Europe may have only "six weeks or so" of jet fuel left if oil supplies remain blocked by the Iran war and the Strait of Hormuz stays disrupted. The Associated Press reports: IEA Executive Director Fatih Birol painted a sobering picture of the global repercussions of what he called "the largest energy crisis we have ever faced," stemming from the pinch-off of oil, gas and other vital supplies through the Strait of Hormuz. "In the past there was a group called 'Dire Straits.' It's a dire strait now, and it is going to have major implications for the global economy. And the longer it goes, the worse it will be for the economic growth and inflation around the world," he told The Associated Press. The impact will be "higher petrol (gasoline) prices, higher gas prices, high electricity prices," said Birol, speaking in his Paris office looking out over the Eiffel Tower. Economic pain will be felt unevenly and "the countries who will suffer the most will not be those whose voice are heard a lot. It will be mainly the developing countries. Poorer countries in Asia, in Africa and in Latin America," said the Turkish economist and energy expert who has led the IEA since 2015. But without a settlement of the Iran war that permanently reopens the Strait of Hormuz, "Everybody is going to suffer," he added. "Some countries may be richer than the others. Some countries may have more energy than the others, but no country, no country is immune to this crisis," he said.
  
  
  Read more of this story at Slashdot.
  

• Google, Pentagon Discuss Classified AI Deal
  An anonymous reader quotes a report from Reuters: Alphabet's Google is negotiating an agreement with the Department of Defense that would allow the Pentagon to deploy its Gemini AI models in classified settings, the Information reported on Thursday, citing two people with direct knowledge of the discussions. The two parties are discussing an agreement that would allow the Pentagon to use Google's AI for all lawful uses, according to the report. During the negotiations, Google has proposed additional language in its contract with the department to prevent its AI from being used for domestic mass surveillance or autonomous weapons without appropriate human control, the Information reported. The Pentagon will continue to deploy frontier AI capabilities through strong industry partnerships across all classification levels, a Pentagon official said, without confirming any talks with Google.
  
  
  Read more of this story at Slashdot.
  

• IPv6 Usage Reaches Historic 50% Across Google Services
  IPv6 usage briefly reached 50% across Google services for the first time, marking a major milestone for a protocol created in 1998 to solve IPv4's address shortage. Tom's Hardware reports: [...] IPv6 was dismissed early on as a headache-inducing, hard-to-implement complication that would hardly ever gain any traction -- despite offering 2^128 possible numbers, solving all network number assignments in one fell swoop. That changed over time by force of necessity, and Google's tracking graph shows that for a brief moment in time on March 28, 50% of worldwide users accessed the service over an IPv6 connection, marking a historic first. APNIC's stats show that the protocol is in use by 43% of the world, with Asia and the Americas inching ever close to those 50%. Cloudflare, meanwhile, shows that 40% of traffic is done in IPv6, an actually impressive figure if you consider it's measuring actual transferred packets rather than just counting addresses. The tried-and-true IPv4 and its well-known 123.456.789.123 format from 1980 offers ~4.3 billion addresses in theory, and around 3.7 billion in practice. That always sounded like a lot, but nobody could have predicted just how rapid the explosion of the Internet would be. IANA, the entity controlling the North-American IPv4 space, ran out of IPv4 addresses around 2011, while its European equivalent RIPE NCC could spare no more four-octet addresses nearly seven years ago in 2019. Asian, African, and Latin-American IP registries equally ran out during that timeframe.
  
  
  Read more of this story at Slashdot.
  

• Anthropic Rolls Out Claude Opus 4.7, an AI Model That Is Less Risky Than Mythos
  Anthropic released Claude Opus 4.7, calling it its strongest generally available model and an improvement over Opus 4.6 in areas like software engineering, instruction-following, tool use, and agentic coding. But the company says it is "less broadly capable" than the restricted Claude Mythos Preview, "which Anthropic rolled out to a select group of companies as part of a new cybersecurity initiative called Project Glasswing earlier this month," reports CNBC. From the report: The launch of Claude Opus 4.7 on Thursday comes after Anthropic launched Claude Opus 4.6 in February. Anthropic said the new model outperforms Claude Opus 4.6 across many use cases, including industry benchmarks for agentic coding, multidisciplinary reasoning, scaled tool use and agentic computer use, according to a release. Anthropic said it experimented with efforts to "differentially reduce" Claude Opus 4.7's cyber capabilities during training. The company encouraged security professionals who are interested in using the model for "legitimate cybersecurity purposes" to apply through a formal verification program. Claude Opus 4.7 is available across all of Anthropic's Claude products, its application programming interface and through cloud providers Microsoft, Google and Amazon. The new model is the same price as Claude Opus 4.6, Anthropic said.
  
  
  Read more of this story at Slashdot.
  

• EU Age Verification App Announced To Protect Children Online
  The EU says a new age-verification app is technically ready and could let users prove they are old enough to access restricted online content without revealing their identity or personal data. Deutsche Welle reports: Once released, users will be able to download the app from an app store and set it up using proof of identity, such as a passport or national ID card. They can then use it to confirm they are above a certain age when accessing restricted content, without revealing their identity. According to the Commission, the system is similar to the digital certificates used during the COVID-19 pandemic, which allowed people to prove their vaccination status. The app is expected to support enforcement of the bloc's Digital Services Act, which aims to better regulate online platforms. This includes restricting access to content such as pornography, gambling and alcohol-related services. Officials say the app will be "completely anonymous" and built on open-source technology, meaning it could also be adopted outside the EU. [...] While there is no binding EU-wide law yet, the European Parliament has called for a minimum age of 16 for social media access. For now, enforcement would largely fall to individual member states, but the new app is intended to help platforms comply with future national and EU rules.
  
  
  Read more of this story at Slashdot.
  

• Open Source Powers the Planet — Get 35% Off Sitewide
  For a limited time, get 35% off sitewide with code EARTH26. Build in-demand skills, earn certifications, and grow your impact with training designed for real-world success. SAVE NOW
  
  The post Open Source Powers the Planet — Get 35% Off Sitewide appeared first on Linux.com.
  

• Implementing Secure Zero-Touch Provisioning in AI and Edge Infrastructure
  By Juha Holkkola, FusionLayer Group How DHCP Changed Connectivity In the late 1990s, the DHCP (Dynamic Host Configuration Protocol) quietly catalyzed a revolution in digital connectivity. Before DHCP was introduced, connecting devices to a network involved manual entry of IP addresses, DNS servers, subnet masks, and gateways. Networks were fragile, prone to errors, and severely [0]
  
  The post Implementing Secure Zero-Touch Provisioning in AI and Edge Infrastructure appeared first on Linux.com.
  

• From DHCP to SZTP – The Trust Revolution
  By Juha Holkkola, FusionLayer Group The Dawn of Effortless Connectivity In the transformative years of the late 1990s, a quiet revolution took place, fundamentally altering how we connect to networks. The introduction of DHCP answered a crucial question, Where are you on the network?!, by automating IP address assignment. This innovation eradicated the manual configuration [0]
  
  The post From DHCP to SZTP – The Trust Revolution appeared first on Linux.com.
  

• Celebrating the Second Year of Linux Man-Pages Maintenance Sponsorship
  Sustaining a Core Part of the Linux Ecosystem The Linux Foundation has announced a second year of sponsorship for the ongoing maintenance of the Linux manual pages (man-pages) project, led by Alejandro (Alex) Colomar. This critical initiative is made possible through the continued support of Google, Hudson River Trading, and Meta, who have renewed their [0]
  
  The post Celebrating the Second Year of Linux Man-Pages Maintenance Sponsorship appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two
  In Part One of this series, we examined how the SONiC control plane and the VPP data plane form a cohesive, software-defined routing stack through the Switch Abstraction Interface.` We outlined how SONiC’s Redis-based orchestration and VPP’s user-space packet engine come together to create a high-performance, open router architecture. In this second part, we’ll turn [0]
  
  The post Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One
  The networking industry is undergoing a fundamental architectural transformation, driven by the relentless demands of cloud-scale data centers and the rise of software-defined infrastructure. At the heart of this evolution is the principle of disaggregation: the systematic unbundling of components that were once tightly integrated within proprietary, monolithic systems.` This movement began with the separation [0]
  
  The post Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One appeared first on Linux.com.
  

• Kubernetes on Bare Metal for Maximum Performance
  When teams consider deploying Kubernetes, one of the first questions that arises is: where should it run? The default answer is often the public cloud, thanks to its flexibility and ease of use. However, a growing number of organizations are revisiting the advantages of running Kubernetes directly on bare metal servers. For workloads that demand [0]
  
  The post Kubernetes on Bare Metal for Maximum Performance appeared first on Linux.com.
  

• How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM
  This article was contributed by Vedrana Vidulin, Head of Responsible AI Unit at Intellias (LinkedIn). As AI becomes central to smart devices, embedded systems, and edge computing, the ability to run language models locally — without relying on the cloud — is essential. Whether its for reducing latency, improving data privacy, or enabling offline functionality, local AI [0]
  
  The post How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM appeared first on Linux.com.
  

• Automating Compliance Management with UTMStacks Open Source SIEM 8 XDR
  Achieving and maintaining compliance with regulatory frameworks can be challenging for many organizations. Managing security controls manually often leads to excessive use of time and resources, leaving less available for strategic initiatives and business growth. Standards such as CMMC, HIPAA, PCI DSS, SOC2 and GDPR demand ongoing monitoring, detailed documentation, and rigorous evidence collection. Solutions [0]
  
  The post Automating Compliance Management with UTMStacks Open Source SIEM & XDR appeared first on Linux.com.
  

• A Simple Way to Install Talos Linux on Any Machine, with Any Provider
  Talos Linux is a specialized operating system designed for running Kubernetes. First and foremost it handles full lifecycle management for Kubernetes control-plane components. On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence [0]
  
  The post A Simple Way to Install Talos Linux on Any Machine, with Any Provider appeared first on Linux.com.
  

Engadget"Engadget is a web magazine with obsessive daily coverage of everything new in gadgets and consumer electronics"

• PSA: Stop using your Casely Power Pods wireless charger immediately
  Casely has reannounced a recall of its Power Pods 5,000mAh MagSafe E33A charger after dozens of people were injured and one even killed by the defective devices, the US Consumer Product Safety Commission (USCPSC) announced. It's recommended that you stop using the devices immediately, dispose of them safely and seek a replacement from the manufacturer. 
  
  A year ago, Casely and the USPSC published a recall of 429,000 units of the power bank with the model number E33A. That followed 51 incidents of the devices "overheating, expanding or catching fire" and burning users in multiple cases. 
  
  However, many of the devices have remained in use and are even more dangerous than initially thought. "In August 2024, a 75-year-old woman from New Jersey, was charging her cell phone with the power bank on her lap when it caught on fire and exploded," the USCPSC reported. "The victim suffered second and third degree burns and later passed away from complications from her injuries." In another incident this year, a 47-year-old woman was charging her phone on a plane when it caught on fire and exploded, giving her first degree burns.
  
  As a result, the recall has been reissued due to "a risk of serious injury or death from fire and burn hazards to consumers," according to the Commission. 
  
  The defective Casely Power Pods 5,000mAh charger is identifiable by the Casely embossed logo on the front and model number E33A on the back. It was sold at various online retailers including getcasely.com and Amazon between 2022 and 2024.
  
  Casely is offering free replacement units as a remedy (it's not clear if you can get a full refund). Those seeking one should write "recalled" on the battery pack in permanent marker and submit a photo, along with a second photo showing the E33A model number as pictured above. Owners are instructed to dispose of them by contacting a facility that handles lithium-ion batteries. Do NOT throw them away with regular household waste, recycling, or standard battery disposal bins due to the risk of fire and explosion.
  This article originally appeared on Engadget at https://www.engadget.com/general/psa-stop-using-your-casely-power-pods-wireless-charger-immediately-062120825.html?src=rss

• Bluesky blames DDoS attack for server outages
  Bluesky is once again having a wobble. The platform said some of its systems are down and that it’s “investigating an incident with service in one of our reginos” (that’s Bluesky’s typo, not mine). The issue appears to have started at 1:42AM ET and was still persisting as of 11AM when this story was originally published. Since then, the site has been experiencing intermitent interuptions, including at times to its status page where users should be able to monitor outages.
  
  At 7:47PM ET, the platform explained that it’s been attempting to mitigate “a sophisticated Distributed Denial-of-Service (DDoS) attack, which intensified throughout the day.” It said the attack had caused interruptions to users’ feeds, notifications, threads and search, all of which the Engadget team experienced first-hand at various points through the day. While DDoS attacks are frequently used as virtual smokescreens for hacks, Bluesky says it has “not seen any evidence of unauthorized access to private user data.” The social media service had another brief outage earlier this month.
  
  The outage is ongoing, but due to its intermittent nature it’s more of a rolling blackout than a power outage. Bluesky says it will provide another update on the situation by 1PM ET on April 17.
  
  Update, April 16, 8PM ET: This story was updated after publish with an of the outage from Bluesky.
  This article originally appeared on Engadget at https://www.engadget.com/social-media/bluesky-blames-ddos-attack-for-server-outages-150515882.html?src=rss

• Reed Hastings is leaving Netflix after 29 years
  Netflix co-founder and current chairman Reed Hastings is leaving the streaming company’s board in June to focus on "his philanthropy and other pursuits," according to a shareholder letter released alongside Netflix9s Q1 earnings. Hastings has served as chairman of Netflix9s board since 2023, a role he assumed after stepping down as co-CEO and promoting Greg Peters in his place.
  
  "Netflix changed my life in so many ways, and my all‑time favorite memory was January 2016, when we enabled nearly the entire planet to enjoy our service," Hastings said in a statement. "My real contribution at Netflix wasn’t a single decision; it was a focus on member joy, building a culture that others could inherit and improve, and building a company that could be both beloved by members and wildly successful for generations to come. A special thanks to Greg and Ted, whose commitment to Netflix’s greatness is so strong that I can now focus on new things."
  
  Hastings founded Netflix in 1997 as a DVD-by-mail rental service with his co-founder and the company9s first CEO Marc Randolph. In 1999, Hastings became CEO, and eventually led the company through its transformation into a streaming service in 2007. Netflix started producing its own television series and movies in 2013, and in 2020, the company9s board named Ted Sarandos as Hasting9s co-CEO, in part to oversee its growing production business. Hastings stepped down as co-CEO in 2023 to become Netflix’s executive chairman, as then COO Greg Peters was promoted to co-CEO. Among his other contributions, Hasting is also the architect of Netflix9s infamous "culture memo," which codified the company9s high-performance culture.
  
  While he9ll no longer be on Netflix9s board, Hastings still has a seat on the board of AI startup Anthropic and media and financial software company Bloomberg. Netflix, for its part, is continuing to expand outside of the television and film business Hastings helped build, by offering a selection of curated party games, a growing library of video podcasts and live sports.
  This article originally appeared on Engadget at https://www.engadget.com/entertainment/streaming/reed-hastings-is-leaving-netflix-after-29-years-213136444.html?src=rss

• Perplexity brings its Personal Computer AI assistant to Mac
  Perplexity has just released Personal Computer. The software, which is available starting today for Mac, builds on the multi-model orchestration capabilities the company debuted with Perplexity Computer at the end of February. Like Claude Cowork (and, as of today, OpenAI Codex too), it9s a suite of computer use agents that can work with your files, apps, connectors and the web to complete complex and "even continuous workflows." 
  
  Perplexity suggests a few different use cases for Personal Computer, starting with the obvious. “You can ask Personal Computer to read your to-do list,” the company states. “In fact, you can ask it to DO your to-do list." It explains you can open the Notes app on your Mac, ask Personal Computer for help and the system will reason how to best assist you. In the process of tackling that task, it can work across all your files, as well as apps like Apple Messages. When needed, it will also employ multiple agents to complete a request. Like Anthropic did with Claude Cowork, Perplexity says you can also use its software to organize messy folders so files feature sensible names and there9s an easy-to-understand structure to everything.
  
  You can prompt Personal Computer with your voice, and you can even initiate and manage tasks from your phone. Perplexity says the app creates files in a secure sandbox, and any actions it takes are auditable and reversible. "A system that acts on your behalf needs to be useful and legible. It should feel like a team you manage, not a rogue employee with keys to your most important data," the company said.   
  
  Personal Computer for Mac is available starting today, beginning with Max subscribers. Perplexity said it would bring the app to its other users soon, prioritizing those who joined the waitlist for the experience. 
  This article originally appeared on Engadget at https://www.engadget.com/ai/perplexity-brings-its-personal-computer-ai-assistant-to-mac-202045969.html?src=rss

• Call of Duty movie arrives on June 30, 2028
  A Call of Duty movie is still happening, but don9t hold your breath for it to hit screens any time soon. Today, the popular FPS9 social media revealed that the movie9s theatrical release date will be June 30, 2028. 
  
  A film adaptation of the game franchise was first revealed last year, and shortly after, we learned that Taylor Sheridan and Peter Berg would be serving as the producers. The duo, whose past credits include Friday Night Lights and Yellowstone, will also be co-writing the project under Berg9s direction. We still haven9t heard anything about the cast, or even what era of the long-running series will be depicted, so it seems like a safe bet that there9s still a ways to go before this wraps. But CoD is nothing if not a money-maker, so reimagining it as a summer blockbuster seems pretty expected.
  This article originally appeared on Engadget at https://www.engadget.com/entertainment/tv-movies/call-of-duty-movie-arrives-on-june-30-2028-200033481.html?src=rss

• Blackmagic Camera for iOS now has a companion Watch app
  Blackmagic Camera is one of the more powerful third-party smartphone camera apps available and it9s now even more useful for solo creators. Blackmagic Design just announced that the latest iOS version 3.3 now supports Apple Watch, letting you control the app and monitor video remotely from your wrist. It also includes ATEM camera control so you can use your iPhone as a live studio camera. 
  
  With the new Camera Apple Watch companion app, you can remotely control and monitor your iPhone from anywhere within Wi-Fi range. It lets you start and stop recording, control zoom and adjust settings like frame rate, shutter speed (angle), white balance and ISO with a tap. You can also see a view of your video for framing control, though a Watch screen is probably a bit too small to accurately check focus. 
  
  The Watch app will benefit solo creators who want to mount their iPhone on a tripod to record standup or vlogging activities. To set it up, you install the Watch app through your iPhone and it will automatically connect and sync to your device. 
  Use your iPhone as a broadcast camera? Sure, why notBlackmagic Design
  The other key feature is iPhone control from Blackmagic9s ATEM Mini switcher used by streamers and broadcasters. To use it, you need the $420 Blackmagic Camera ProDock that gives your iPhone 17 Pro or iPhone 17 Pro Max an HDMI output, timecode, USB-C and other ports. Blackmagic Camera now lets you connect a single HDMI cable from the ProDock to an ATEM Mini switcher, then adjust settings, trigger recording, focus and zoom. It also offers a DaVinci primary color corrector so you can match and create digital film looks during live production. 
  
  Finally, Camera now supports Blackmagic9s "Focus and Zoom Demand" controls (a knob and handle) designed for broadcast cameras. When those controls and an iPhone 17 Pro/Pro Max are connected via USB-C to a ProDock as shown above, you can zoom and focus Camera app video without taking your hands off the tripod handles. Together with the ATEM feature, it lets you use an iPhone as a full broadcast camera, which looks slightly weird but is pretty cool.
  
  On top of those features, Blackmagic Design also added ProRes RAW stabilization and general bug fixes and improvements. Blackmagic Camera for iOS 3.3 is available now as a free download from the Apple App Store.
  This article originally appeared on Engadget at https://www.engadget.com/apps/blackmagic-camera-for-ios-now-has-a-companion-watch-app-194529980.html?src=rss

• Meta is giving Threads on web a redesign that finally adds direct messages
  Meta is starting to test a long-overdue facelift for Threads on web. The company9s head of Threads Connor Hayes showed off a new look for the web version of Threads that finally adds direct messaging and makes it easier to navigate between multiple feeds.
  
  The new layout adds a bunch of new shortcuts to the site9s left rail, including saved posts, insights, activity, and the ability to move between different feeds. Those features have all been accessible on web before, but many were hard to find. For example, the only way to currently get to "insights" is to navigate to your own profile or save it as a "pinned" column. Most importantly, though, the update finally adds the Threads inbox, which has not been available to web users even though the feature was added to the app last June.
  
  It9s not clear when the new look will roll out, but Hayes said Meta has already started to test it and that the company will "be investing more here going forward." The last time the Threads website got a major update was last April, which added some basic functionality. But since then, Meta has focused much of its efforts on the Threads app, rather than the website. Some newer features, like disappearing "ghost posts," are able to be viewed on the web but can only be created in the app.
  
  Speaking of the Threads app, the web updates come one day after Hayes previewed some tweaks to how replies look on mobile. With the change, replies under a post will be indented slightly to make it easier to follow conversations. That change is rolling out now on iOS and currently "testing" on Android. 
  This article originally appeared on Engadget at https://www.engadget.com/social-media/meta-is-giving-threads-on-web-a-redesign-that-finally-adds-direct-messages-192903284.html?src=rss

• The European Commission wants Google to share search engine data with competitors
  The European Commission has proposed new measures for Google aimed at bringing the tech giant9s search business into compliance with the Digital Markets Act. In order to allow third-party online search engines to be competitive with Google, the EC has recommended that Google permit those services to access its treasure trove of search engine data. As it stands, the proposal would require Google to let rivals see data points "such as ranking, query, click and view data, on fair, reasonable and non-discriminatory terms."
  
  "Data is a key input for online search and for developing new services, including AI," said Teresa Ribera, the Commission9s executive vice-president for Clean, Just and Competitive Transition. "Access to this data should not be restricted in ways that could harm competition. In fast-moving markets, small changes can quickly have a big impact. We will not allow practices that risk closing markets or limiting choice."
  
  European regulators have been using the Digital Markets Act to hammer at Google9s dominant market position for several years. Beginning in March 2024, Google was required to be in compliance with the DMA and it did plan some changes in accordance with the legislation. A year later, though, the Commission levied preliminary charges against Google arguing that Google Search and the Play Store had not met their obligations for market competition. Google offered some possible adjustments to how search results are displayed in response, but it seems the regulator is going to keep fighting for more robust changes to Google9s search business.
  
  If you think all that sounds like something Google is unwilling and unlikely to do, you9d be correct. For starters, the actual requirements for Google could change in the coming months. The EC is accepting comments on the proposed measures through May 1, and Google9s legal team is certain to have a lot of opinions to share. We9ve reached out to the company for a comment on these preliminary measures. A final, binding decision on Google9s next steps is due by July 27, so we9re expecting a lot of back-and-forth between the parties until that date.
  This article originally appeared on Engadget at https://www.engadget.com/big-tech/the-european-commission-wants-google-to-share-search-engine-data-with-competitors-192709530.html?src=rss

• Blizzard just made Overwatch’s best mode much worse
  While I dabble in other say they modified Mystery Heroes "to help keep the mode9s casual pace intact while mitigating some of the more extreme pain points it9s had in the past." That might have something to do with how the mode handled perks. In other modes, players earn perks (upgrades to their existing tools or entirely new abilities) throughout a match. In Mystery Heroes, they load into a round with random perks already equipped. That9s fun! I love the chaos of Mystery Heroes and trying to make things work with whatever hero and perks I have. 
  
  Now, perks are gone from Mystery Heroes. I kind of get it. Nixing them helps players clock what9s going on a bit faster — they won9t feel the need to quickly check which perks they have when they9re racing back to the action when the time is running out. Perks were only added to Overwatch a little over a year ago and they9ve helped make the game more enjoyable. Removing them from Mystery Heroes diminishes it compared with other modes, especially given that some heroes are now more oriented around their perks.
  OverwatchBlizzard Entertainment
  The other major change in Mystery Heroes is a switch from teams of five players to 6v6. I9m fine with 6v6 in other game types, but it makes Mystery Heroes much worse. 
  
  In other 6v6 formats, you typically have two tanks, two supports and two damage heroes. In Mystery Heroes, the defense might load in with four tanks and two supports (teams are limited to three heroes from any class after respawns). While tanks generally have lower health pools in 6v6 modes, that9s still an oppressive composition to run into. Attackers lack the agency to switch to other characters that can counter such a setup. For instance, if the attackers don9t spawn in as heroes that can get behind a chokepoint and take out those supports, they might never break through. That doesn9t make for a fun round. Trying to keep five other players alive as a solo support isn9t exactly a blast either.
  
  I’m not the only one who’s disappointed with these changes. In every single Mystery Heroes game I’ve played since the update, other players have lamented the loss of perks (the reaction to the 6v6 switch is more mixed). They9re protesting on Reddit and the added the big Stadium mode in 2025 and the game recently had a soft, successful relaunch. Even in this season, there are lots of positive tweaks, including some welcome hero updates (and some that are less welcome) and the return of post-match awards. New damage hero Sierra is rad too. 
  
  The Mystery Heroes changes, though, are a step in the wrong direction. I dearly hope Blizzard reverses course on those soon. 
  This article originally appeared on Engadget at https://www.engadget.com/gaming/blizzard-just-made-overwatchs-best-mode-much-worse-185114683.html?src=rss

• Playdate Season 3 is coming later this year
  Playdate is getting a third season of curated, surprise games, Panic announced today. We don't know much beyond the fact that Season Three is officially happening, but Panic's Head of Playdate Greg Maletic said in an announcement video that it will be here "in time for the holidays" this year. Considering we had to wait a whole three years for Season Two to come out following Season One's release with the console in 2022, that doesn't sound so bad.
  
  Panic hasn't yet said how many games Season Three will include, or how much it will cost. While Season One had a total of 24 games — with a release schedule of two games per week for 12 weeks — last year’s Season Two had half the amount (plus Blippo+), and cost $39. But that drop in quantity thankfully didn't mean a drop in quality. Season Two was great, with a collection of games that felt stronger overall than the first. I, for one, can't wait to see what Season Three brings. In other exciting news, Panic also announced today that the much, much-awaited game Office Chair Curling is finally available for purchase on Playdate and Steam, with the option for online cross-play.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/playdate-season-3-is-coming-later-this-year-181340117.html?src=rss

• EU OS: A Bold Step Toward Digital Sovereignty for Europe
  Image
  A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
  What Is EU OS?
  EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.
  
  Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
  The Vision Behind EU OS
  The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.
  
  Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.
  
  However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
  Conclusion
  EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.
  
  Source: It's FOSS
  European Union

• Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.
  
  In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.
  
  On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.
  
  Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.
  
  The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.
  
  Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.
  
  You can download the latest kernel here.
  Linus Torvalds kernel

• AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
  Image
  AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.
  
  This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.
  
  Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.
  
  Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.
  
  Source: 9to5Linux
  AerynOS

• Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
  Image
  Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.
  
  Here’s a quick overview of what’s new in Xojo 2025r1:
  1. Linux ARM IDE Support
  Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
  2. Web Drag and Drop
  One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
  3. Direct App Store Publishing
  Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
  4. New Desktop and Mobile Features
  This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
  5. Performance and IDE Enhancements
  Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
  What Does This Mean for Developers?
  Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
  How to Get Started
  Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.
  
  Download Xojo 2025r1 today at xojo.com.
  Final Thoughts
  With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
  Xojo ARM

• New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux
  
  Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.
  
  Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.
  
  Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest. 
  
  Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.
  
  Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.
  
  Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.
  
  By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
  Windows

• Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities
  
  The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally. 
  
  As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.
  
  In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions. 
  
  After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.
  
  The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.
  
  At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.
  
  The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
  Security

• Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges
  
  The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.
  
  A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.
  
  This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem. 
  
  The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.
  
  On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.
  
  In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
  kernel

• Linux Celebrates 32 Years with the Release of 6.6-rc2 Version
  
  Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.
  
  The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.
  
  Here is what Linus Torvalds had to say in today's announcement:
  Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds

• Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction
  
  Want to interact with ChatGPT from your Linux desktop without using a web browser?
  
  Bavarder, a new app, allows you to do just that.
  
  Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.
  
  With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.
  
  During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.
  
  At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.
  
  As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!
  
  Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
  ChatGPT AI

• LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite
  
  Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.
  
  Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.
  
  LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.
  
  You can download LibreOffice 7.5.3 directly from the LibreOffice website��or from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.
  
  All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.
  
  In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.
  
  Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.
  
  The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
  LibreOffice