Aggregator

Jaclyn Fieberg, 40, from New York, and her husband, Greg Fieberg, 46, went through years of heartbreak to start a family.

Writing in Communications of the ACM, former Go tech lead Russ Cox warns we need to keep improving defenses of software supply chains, highlighting "promising approaches that should be more widely used" and "areas where more work is needed." There are important steps we can take today, such as adopting software signatures in some form, making sure to scan for known vulnerabilities regularly, and being ready to update and redeploy software when critical new vulnerabilities are found. More development should be shifted to safer languages that make vulnerabilities and attacks less likely. We also need to find ways to fund open source development to make it less susceptible to takeover by the mere offer of free help. Relatively small investments in OpenSSL and XZ development could have prevented both the Heartbleed vulnerability and the XZ attack. Some highlights from the 5,000-word article: Make Builds Reproducible. "The Reproducible Builds project aims to raise awareness of reproducible builds generally, as well as building tools to help progress toward complete reproducibility for all Linux software. The Go project recently arranged for Go itself to be completely reproducible given only the source code... A build for a given target produces the same distribution bits whether you build on Linux or Windows or Mac, whether the build host is X86 or ARM, and so on. Strong reproducibility makes it possible for others to easily verify that the binaries posted for download match the source code..." Prevent Vulnerabilities. "The most secure software dependencies are the ones not used in the first place: Every dependency adds risk... Another good way to prevent vulnerabilities is to use safer programming languages that remove error-prone language features or make them needed less often..." Authenticate Software. ("Cryptographic signatures make it impossible to nefariously alter code between signing and verifying. The only problem left is key distribution...") "The Go checksum database is a real-world example of this approach that protects millions of Go developers. The database holds the SHA256 checksum of every version of every public Go module..." Fund Open Source. [Cox first cites the XKCD cartoon "Dependencies," calling it "a disturbingly accurate assessment of the situation..."] "The XZ attack is the clearest possible demonstration that the problem is not fixed. It was enabled as much by underfunding of open source as by any technical detail." The article also emphasized the importance of finding and fixing vulnerabilities quickly, arguing that software attacks must be made more difficult and expensive. "We use source code downloaded from strangers on the Internet in our most critical applications; almost no one is checking the code.... We all have more work to do."

Read more of this story at Slashdot.

The Daily Mail tested the van to find out to see if it kept its iconic status.

The 55-year-old Oscar winner - who shares three children with the Brazilian-American model - opened up about the topic in his new book titled Poems & Prayers which hit shelves on September.

The Welsh ballroom professional has returned to the BBC show on a full time basis after injury curtailed her original return in 2024, for which she was paired with JLS star JB Gill .

Hackers who targeted Collins Aerospace, a tech firm that provides services for several airlines at multiple airports across the world, caused chaos yesterday.

A Porsche-driving businessman who bulldozed a modest home and replaced it with a hulking 'monster mansion' has been ordered to tear it down.

When you set yourself a mission to get a clear, glowing, complexion, a frantic dash around your local branch of Boots can seem like the quickest way to get there.

James Middleton, brother of Catherine, Princess of Wales, has shared a joyful photograph of son Inigo to mark the toddler's second birthday.

The British actor will play John Lennon in an ambitious four-part anthology of films  that will chart the lives of each individual member of The Beatles.

Deep underneath a granite hill in southern China, an enormous detector is sniffing out the secrets of the universe.

Edward Enninful, the former editor of British Vogue, bluntly dismissed the possibility that onetime friend Meghan Markle might appear on the pages of his new magazine in an interview with The Times.

Last month, a senior Hamas official described the decision to recognise a Palestinian state as 'one of the fruits of October 7'. Pictured: A Palestinian boy with an Israeli car on October 7, 2023

Near Microsoft's headquarters in Redmond, the Five Stones coffee shop advertised for a barista a few months ago — and started getting resumes from "people who listed Microsoft and other tech companies," writes the Wall Street Journal: The applicants typically had master's degrees and experience in graphic design or marketing roles, Andrews said — sometimes senior ones. They were applying to jobs at Five Stones that would pay Redmond's minimum wage, $16.66 an hour. Five Stones hasn't yet hired such candidates because the coffee shop gives priority to more traditional entry-level baristas, like high-schoolers... [Microsoft and Amazon] have laid off more than 46,000 employees since 2023, according to Layoffs.fyi, which tracks workforce reductions. That represents 85% of layoffs by Seattle-area tech companies... As Amazon and Microsoft have made cuts — and other local tech firms including Expedia and Redfin have followed suit — the effects have rippled through Seattle's other business sectors. Weakness in payroll and sales tax contributed to a projected $146 million shortfall in revenue over the next two years. Restaurant and retail spending is down in the business and shopping districts surrounding Amazon's and Microsoft's campuses, with total transactions falling by as much as 7% in some popular areas in the past year, according to data from Square. In the first half of 2025, around 450 restaurants closed in Seattle, or about 16% of its total. "At the halfway point of the year, we've already seen as many closures as we'd usually see in a full year," said Anthony Anton, chief executive officer of the Washington Hospitality Association. Uber driver Juan Prado made six figures in 2021, often shuttling passengers in town for job interviews and doing frequent drop-offs near downtown tech offices. Now, he said, demand is much lower. "There are moments where you can be online, and in certain areas, it shows nothing...." Seattle tech firms are asking for significantly fewer job placements than years ago, said Noelle McDonald, senior vice president at recruiting company Aquent, which counts Amazon and Microsoft as clients. Hiring windows have lengthened and open roles receive around 10 times as many applications. And of course, "Commercial real-estate vacancies stand at a record high as offices built to accommodate a boom sit empty... " While some laid-off employees launched their own startups, "the outlook for many tech workers is dour as companies invest in software tools they can use to streamline teams," the article points out. Microsoft CEO Satya Nadella "has said the company is increasingly looking to AI to perform coding and other tasks once done by people," while in June, Amazon "said its workforce would shrink going forward."

Read more of this story at Slashdot.

EXCLUSIVE: An undercover Daily Mail investigation has exposed an Albanian drug dealer laughing at the police. We can also reveal gangsters use Facebook to advertise cocaine dealing jobs.

Debbie Duncan, whose son Jay died on June 17 last year, is supporting 'Jay's Law', which would clamp down on those spreading falsehoods about missing people online.

Clifford Wildgoose was last seen at around 2am on Saturday, September 21, at Patrick's  19th Hole Bar in the upmarket resort of Puerto Banus near Marbella.

It's a beautiful walk to enjoy

In a year where plenty of other brands have had to share difficult news, Dunelm announced the opening of a milestone 200th store in Merthyr Tydfil, but the news is not all rosey.

Furious neighbours in her sleepy Berkshire village berated the Princess of Wales 's sister for her 'entitled' and 'inconsiderate' behaviour that kept them awake into the small hours.