All posts tagged: ars technica

Dangerous New Linux Exploit Gives Attackers Root Access to Countless Computers

Dangerous New Linux Exploit Gives Attackers Root Access to Countless Computers

Published by skeptic

Publicly released exploit code for an effectively unpatched vulnerability that gives root access to virtually all releases of Linux is setting off alarm bells as defenders scramble to ward off severe compromises inside data centers and on personal devices. The vulnerability and exploit code that exploits it were released Wednesday evening by researchers from security firm Theori, five weeks after privately disclosing it to the Linux kernel security team. The team patched the vulnerability in versions 7.0, 6.19.12, 6.18.12, 6.12.85, 6.6.137, 6.1.170, 5.15.204, and 5.10.254) but few of the Linux distributions had incorporated those fixes at the time the exploit was released. A Single Script to Hack Them All The critical flaw, tracked as CVE-2026-31431 and the name CopyFail, is a local privilege escalation, a vulnerability class that allows unprivileged users to elevate themselves to administrators. CopyFail is particularly severe because it can be exploited with a single piece of exploit code—released in Wednesday’s disclosure—that works across all vulnerable distributions with no modification. With that, an attacker can, among other things, hack multi-tenant systems, break …

Microsoft Surface PCs Are Getting Big Price Hikes, and the Cheaper Models Are Going Away

Microsoft Surface PCs Are Getting Big Price Hikes, and the Cheaper Models Are Going Away

Published by skeptic

If you’ve been waiting for Microsoft to update its Surface PC lineup—perhaps with Qualcomm’s new Snapdragon X2 Elite processors—I’ve got bad news for you. Microsoft is shaking up its PC lineup, but it’s doing so by instituting big price hikes. This means you’ll be paying at least $1,500 for Surface devices that launched at $1,000 just two years ago and that Microsoft no longer offers new Surface devices under $1,000 at all. The 12-inch Surface Pro tablet that originally started at $799 and the 13-inch Surface Laptop that launched at $899 now cost $1,049 and $1,149, respectively, a $250 price increase. The higher-end Surface Laptop and 13-inch Surface Pro from 2024 both started at $999 but increased to $1,199 in 2025 when their entry-level versions with 256 GB of storage were discontinued; both now start at $1,499, a $300 increase. As originally reported by Windows Central, Microsoft is blaming “recent increases in memory and component costs” for the price hikes. Supply shortages for RAM and storage chips in particular have been wreaking havoc with consumer tech all …

The US Military’s GPS Software Is an Billion Mess

The US Military’s GPS Software Is an $8 Billion Mess

Published by skeptic

Last year, just before the Fourth of July holiday, the US Space Force officially took ownership of a new operating system for the GPS navigation network, raising hopes that one of the military’s most troubled space programs might finally bear fruit. The GPS Next-Generation Operational Control System, or OCX, is designed for command and control of the military’s constellation of more than 30 GPS satellites. It consists of software to handle new signals and jam-resistant capabilities of the latest generation of GPS satellites, GPS III, which started launching in 2018. The ground segment also includes two master control stations and upgrades to ground monitoring stations around the world, among other hardware elements. RTX Corporation, formerly known as Raytheon, won a Pentagon contract in 2010 to develop and deliver the control system. The program was supposed to be complete in 2016 at a cost of $3.7 billion. Today, the official cost for the ground system for the GPS III satellites stands at $7.6 billion. RTX is developing an OCX augmentation projected to cost more than $400 …

NASA Is Making Big Changes to Speed Up the Artemis Program

NASA Is Making Big Changes to Speed Up the Artemis Program

Published by skeptic

“This is just not the right pathway forward,” Isaacman said. A senior NASA official, speaking on background to Ars, noted that the space agency has experienced hydrogen and helium leaks during both the Artemis I and Artemis II prelaunch preparations, and these problems have led to monthslong delays in launch. “If I recall, the timing between Apollo 7 and 8 was nine weeks,” the official said. “Launching SLS every three and a half years or so is not a recipe for success. Certainly, making each one of them a work of art with some major configuration change is also not helpful in the process, and we’re clearly seeing the results of it, right?” The goal therefore is to standardize the SLS rocket into a single configuration in order to make the rocket as reliable as possible, and launching as frequently as every 10 months. NASA will fly the SLS vehicle until there are commercial alternatives to launch crews to the moon, perhaps through Artemis V as Congress has mandated, or perhaps even a little longer. …

Notepad++ Users, You May Have Been Hacked by China

Notepad++ Users, You May Have Been Hacked by China

Published by skeptic

Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by suspected China-state hackers who used their control to deliver backdoored versions of the app to select targets, developers said Monday. “I deeply apologize to all users affected by this hijacking,” the author of a post published to the official notepad-plus-plus.org site wrote Monday. The post said that the attack began last June with an “infrastructure-level compromise that allowed malicious actors to intercept and redirect update traffic destined for notepad-plus-plus.org.” The attackers, whom multiple investigators tied to the Chinese government, then selectively redirected certain targeted users to malicious update servers where they received backdoored updates. Notepad++ didn’t regain control of its infrastructure until December. The attackers used their access to install a never-before-seen payload that has been dubbed Chrysalis. Security firm Rapid 7 described it as a “custom, feature-rich backdoor.” “Its wide array of capabilities indicates it is a sophisticated and permanent tool, not a simple throwaway utility,” company researchers said. Hands-On Keyboard Hacking Notepad++ said that officials with the …

Apple Patches Old Versions of iOS to Keep iMessage and FaceTime Running

Apple Patches Old Versions of iOS to Keep iMessage and FaceTime Running

Published by skeptic

When Apple stops supporting older iPhones and iPads with the latest version of iOS or iPadOS, it usually isn’t the end of the line—Apple keeps releasing new security-only patches for those devices for another year or two, keeping them usable while their hardware is still reasonably capable. Once those updates dry up, it’s rare for Apple to revisit those older operating systems, but the company does sometimes make exceptions. That was the case Monday, when the company released a batch of updates for long-retired iOS and iPadOS versions that otherwise hadn’t seen a new patch in months or years. Those updates include iOS 12.5.8, available for devices as old as 2013’s iPhone 5S and 2014’s iPhone 6; iOS 15.8.6, available for devices like the iPhone 6S, iPhone 7, and iPad Air 2; and iOS 16.7.13, available for devices like the iPhone 8 and iPhone X. Both iOS 15 and iOS 16 were last patched in mid-2025, but iOS 12’s last patch was released in January of 2023. These updates don’t patch security flaws or add …

A Wikipedia Group Made a Guide to Detect AI Writing. Now a Plug-In Uses It to ‘Humanize’ Chatbots

A Wikipedia Group Made a Guide to Detect AI Writing. Now a Plug-In Uses It to ‘Humanize’ Chatbots

Published by skeptic

On Saturday, tech entrepreneur Siqi Chen released an open source plug-in for Anthropic’s Claude Code AI assistant that instructs the AI model to stop writing like an AI model. Called Humanizer, the simple prompt plug-in feeds Claude a list of 24 language and formatting patterns that Wikipedia editors have listed as chatbot giveaways. Chen published the plug-in on GitHub, where it has picked up more than 1,600 stars as of Monday. “It’s really handy that Wikipedia went and collated a detailed list of ‘signs of AI writing,’” Chen wrote on X. “So much so that you can just tell your LLM to … not do that.” The source material is a guide from WikiProject AI Cleanup, a group of Wikipedia editors who have been hunting AI-generated articles since late 2023. French Wikipedia editor Ilyas Lebleu founded the project. The volunteers have tagged over 500 articles for review and, in August 2025, published a formal list of the patterns they kept seeing. Chen’s tool is a “skill file” for Claude Code, Anthropic’s terminal-based coding assistant, which …

I Switched to eSIM, and I Am Full of Regret

I Switched to eSIM, and I Am Full of Regret

Published by skeptic

SIM cards, the small slips of plastic that have held your mobile subscriber information since time immemorial, are on the verge of extinction. In an effort to save space for other components, device makers are finally dropping the SIM slot, and Google is the latest to move to embedded SIMs with the Pixel 10 series. After long avoiding eSIM, I had no choice but to take the plunge when the time came to review Google’s new phones. And boy, do I regret it. The Journey to eSIM SIM cards have existed in some form since the 1990s. Back then, they were credit-card-sized chunks of plastic that occupied a lot of space inside the clunky phones of the era. They slimmed down over time, going through the miniSIM, microSIM, and finally nanoSIM eras. A modern nanoSIM is about the size of your pinky nail, but space is at a premium inside smartphones. So now there’s eSIM. The eSIM standard was introduced in 2016, slowly gaining support as a secondary option in smartphones. Rather than holding your …