新聞4月8日Python資料分析工具Marimo開發團隊揭露重大漏洞CVE-2026-39987(CVSS v4.0風險評為9.3分),資安公司Sysdig於10小時後首度看到漏洞利用活動,如今他們提出警告,已有多起漏洞利用攻擊出現。Sysdig指出,他們在4月11日至14日,總共看到有11個IP位址發動662起攻擊,包括反向Shell、擷取憑證與DNS資訊,以及利用竊得憑證橫向移動,駭入資料庫系…
新聞因應Anthropic Claude Code挑戰,OpenAI本週宣布更新Codex macOS版App,加入背景使用電腦工具的功能,不再只能撰寫程式,可理解螢幕、上網和生成圖片,幾乎什麼都能做。Codex並且大幅提升自動化與記憶能力,為開發人員提供更多協助。透過加入背景電腦工具使用能力,Codex現在不只能幫忙寫程式。它能理解螢幕上內容、能以滑鼠點擊App或打字。現在在Mac電腦上多個代理…
新聞Google週三(4/16)宣布將AI Mode整合進Google Chrome,讓原本存在於搜尋中的對話式AI能力直接進入瀏覽器使用流程。用戶在瀏覽網頁時可即時提問、比較資訊並延伸查詢,無需反覆切換分頁。此舉顯示Google正將AI從搜尋結果頁推向瀏覽器核心場景,迎戰微軟於Microsoft Edge中導入Copilot的策略。AI Mode是Google在搜尋中推出的生成式AI模式,起源於…
新聞Google在Pixel 10系列基頻(Baseband)韌體中導入記憶體安全語言,具體作法是導入以Rust實作用來解析DNS回應的DNS解析器。Google選用開源Rust函式庫hickory-proto作為基礎,並以體積最佳化設定建置原型後估算,相關Rust程式碼總計約371 KB。Google指出,基頻近年已成為攻擊者與資安研究人員的重點目標,自家Project Zero過去就曾透過網際…
新聞為推動政府數位服務現代化並提升軟體開發治理能力,數位發展部於4月初發布「公部門開源軟體應用參考手冊」,針對公部門在使用開源軟體過程中常見的授權、管理與資安議題,提供系統化指引,作為各級機關落實開源策略的重要依據。數發部自2024年起推動公共程式平臺,透過與政府機關及民間開發社群合作,推動公私協力開發,並鼓勵將成果上架平台供外界使用,以降低各機關重複開發的成本。不過,在推動過程中,軟體授權與管理…
Sperm Whales' Communication Closely Parallels Human Language, Study Finds https://science.slashdot.org/story/26/04/17/0143228/sperm-whales-communication-closely-parallels-human-language-study-finds?ut…
After a saga of broken promises, a European rover finally has a ride to Mars Europe's first Mars rover mission is now on its fourth rocket: SpaceX's Falcon Heavy. https://arstechnica.com/space/2026/04…
After a saga of broken promises, a European rover finally has a ride to Mars Europe's first Mars rover mission is now on its fourth rocket: SpaceX's Falcon Heavy. https://arstechnica.com/science/2026/…
We're not half way there, we're still livin' on a prayerIPv6 carried half of global traffic for a single day in March, according to Google.…
New NTFS File-System Driver Submitted For Linux 7.1 Making today very exciting in Linux 7.1 merge window land was a pull request being sent out for introducing the new, modern NTFS file-system driver.…
Phoronix@masto.ai
·
Robot dogs now read gauges and thermometers using Google Gemini Google's AI enables robots to read gauges while inspecting industrial facilities. https://arstechnica.com/ai/2026/04/robot-dogs-now-read…
Artemis II astronauts say landing on the Moon is "absolutely doable" soon "If you had given us the keys to the lander, we would have taken it down." https://arstechnica.com/space/2026/04/artemis-ii-as…
YouTube’s mobile app finally lets you share timestamped videos https://www.theverge.com/streaming/913611/youtube-mobile-app-share-at-timestamp-clips
Lucasfilm drops The Mandalorian and Grogu final trailer at CinemaCon "The old protect the young, and then the young protect the old." https://arstechnica.com/culture/2026/04/lucasfilm-drops-mandaloria…
Bug or feature?A design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into Anthropic's official Model Context Protocol (MCP) puts as many as 2…
'TotalRecall Reloaded' Tool Finds a Side Entrance To Windows 11 Recall Database https://yro.slashdot.org/story/26/04/16/2052224/totalrecall-reloaded-tool-finds-a-side-entrance-to-windows-11-recall-dat…
Gemini can now create personalized AI images by digging around in Google Photos Google is making it easier to feed your photos into Nano Banana for more personal image generation. https://arstechnica.…
Client connects to deepset's Haystack platformMozilla has declared war on OpenAI, Microsoft, and other firms flogging enterprise AI platforms with an open-source alternative it says provides data priv…
Mozilla launches Thunderbolt AI client with focus on self-hosted infrastructure New tool builds on deepset’s Haystack toward a “decentralized open source AI ecosystem” https://arstechnica.com/ai/2026/…
Ad firms settle with Trump FTC over claims they boycotted conservative media FTC aims to stamp out brand-safety standards that hurt Breitbart and Musk's X. https://arstechnica.com/tech-policy/2026/04/…
We can't find the internet
Attempting to reconnect
Something went wrong!
Attempting to reconnect
