An anonymous reader quotes a report from TorrentFreak: In France, rightsholders have taken legal action to compel large VPN providers to support their pirate site blocking program. The aim is to reinforce existing blocking measures, but VPN providers see this as a dangerous move, leading to potential security issues and overblocking. As a result, some are considering leaving France altogether if push comes to shove. [...] Earlier this month, sports rightsholders Canal+ and LFP requested blocking injunctions that would require popular VPNs to start blocking pirate sites and services. The full requests are not public, but the details available show that Cyberghost, ExpressVPN, NordVPN, ProtonVPN, and Surfshark are listed as respondents. [...]

The blocking request has yet to be approved and several of the targeted VPN providers have reserved detailed commentary, for now. That said, the VPN Trust Initiative (VTI), which includes ExpressVPN, NordVPN and Surfshark as members, has been vocal in its opposition. VTI is part of the i2Coalition and while it doesn't speak directly for any of the members, the coalition's Executive Director Christian Dawson has been in regular discussions with VPN providers. From this, it became clear that VPN providers face difficult decisions. If VPN providers are ordered to block pirate sites, some are considering whether to follow in the footsteps of Cisco, which discontinued its OpenDNS service in the country, to avoid meddling with its DNS resolver.

Speaking with TorrentFreak, VTI's Dawson says that VPNs have previously left markets like India and Pakistan in response to restrictive requirements. This typically happens when privacy or security principles are at risk, or if the technical implementation of blocking measures is infeasible. VTI does not rule out that some members may choose to exit France for similar reasons, if required to comply with blocking measures. "We've seen this before in markets like India and Pakistan, where regulatory requirements forced some VPN services to withdraw rather than compromise on encryption standards or log-keeping policies," Dawson says. "France's potential move to force VPN providers to block content could put companies in a similar position -- where they either comply with measures that contradict their purpose or leave the market altogether." "This case in France is part of a broader global trend of regulatory overreach, where governments attempt to control encrypted services under the guise of content regulation. We've already seen how China, Russia, Myanmar, and Iran have imposed VPN restrictions as part of broader censorship efforts."

"The best path forward is for policymakers to focus on targeted enforcement measures that don't undermine Internet security or create a precedent for global Internet fragmentation," concludes Dawson. "As seen in other cases, blanket blocking measures do not effectively combat piracy but instead create far-reaching consequences that disrupt the open Internet."

An anonymous reader shared this report from the Washington Post's "Tech Brief": Last fall, reports that Kroger was considering bringing facial recognition technology into its stores sparked outcry from lawmakers and customers. They worried personalized data could be used to charge different prices for different customers based on their shopping habits, financial circumstances or appearance. Kroger, the country's largest supermarket chain, had already been using digital price tags in its stores.

Kroger told lawmakers that it doesn't use facial recognition to help it set prices, a stance the company reiterated to the Tech Brief on Thursday. Still, the uproar helped to spark a push by consumer advocates who warn that the threat of invasive, personalized pricing schemes is real. Now, Democratic lawmakers in several states are working to ban so-called "surveillance pricing" — when businesses charge customers more or less for the same item based on their personal information.
Besides a bill in California, three more bill were introduced this month in Colorado, Georgia, and Illinois that also ban "surveillance wages," which the article defines as employers adjusting wages based on how much data an employee collects. "Both surveillance pricing and surveillance wages really disrupt fundamental ideals of fairness," University of California, Irvine law professor Veena Dubal tells the Washington Post.

Dubal is one of the consumer advocates behind a new report which notes information released last month by America's consumer-protecting FTC that "suggests that surveillance pricing tools are being actively developed and marketed across a range of industries, including consumer-facing businesses like 'grocery stores, apparel retailers, health and beauty retailers, home goods and furnishing stores, convenience stores, building and hardware stores, and general merchandise retailers such as department or discount stores." The consumer advocates (which include the Electronic Privacy Information Center) put it this way.

"Imagine walking into a grocery store and seeing a price for milk that's higher than what the next shopper pays because an algorithm calculated that you're willing to spend more..."

Google's Threat Intelligence Group notes "the growing threat to secure messaging applications." While specifically acknowledging "wide ranging efforts to compromise Signal accounts," they add that the threat "also extends to other popular messaging applications such as WhatsApp and Telegram, which are also being actively targeted by Russian-aligned threat groups using similar techniques.

"In anticipation of a wider adoption of similar tradecraft by other threat actors, we are issuing a public warning regarding the tactics and methods used to date to help build public awareness and help communities better safeguard themselves from similar threats."

Computer Weekly reports: Analysts predict it is only a matter of time before Russia starts deploying hacking techniques against non-military Signal users and users of other encrypted messaging services, including WhatsApp and Telegram. Dan Black, principal analyst at Google Threat Intelligence Group, said he would be "absolutely shocked" if he did not see attacks against Signal expand beyond the war in Ukraine and to other encrypted messaging platforms...

Russia-backed hackers are attempting to compromise Signal's "linked devices" capability, which allows Signal users to link their messaging account to multiple devices, including phones and laptops, using a quick response (QR) code. Google threat analysts report that Russia-linked threat actors have developed malicious QR codes that, when scanned, will give the threat actor real-time access to the victim's messages without having to compromise the victim's phone or computer. In one case, according to Black, a compromised Signal account led Russia to launch an artillery strike against a Ukrainian army brigade, resulting in a number of casualties... Google also warned that multiple threat actors have been observed using exploits to steal Signal database files from compromised Android and Windows devices.
The article notes that the attacks "are difficult to detect and when successful there is a high risk that compromised Signal accounts can go unnoticed for a long time." And it adds that "The warning follows disclosures that Russian intelligence created a spoof website for the Davos World Economic Forum in January 2025 to surreptitiously attempt to gain access to WhatsApp accounts used by Ukrainian government officials, diplomats and a former investigative journalist at Bellingcat."

Google's Threat Intelligence Group notes there's a variety of attack methods, though the "linked devices" technique is the most widely used. "We are grateful to the team at Signal for their close partnership in investigating this activity," Google's group says in their blog post, adding that "the latest Signal releases on Android and iOS contain hardened features designed to help protect against similar phishing campaigns in the future. Update to the latest version to enable these features."

The General Services Administration (GSA) is shutting down its nationwide electric vehicle (EV) chargers, deeming them "not mission critical." The U.S. government agency also plans to offload newly purchased EVs, reversing initiatives from the Biden administration aimed at transitioning the federal vehicle fleet to electric. The Verge reports: The GSA currently operates several hundred EV chargers across the country, with approximately 8,000 plugs that are available for government-owned EVs as well as federal employees' personally owned vehicles.

The official guidance instructing federal workers to begin the process of shutting down the chargers will be announced internally next week, according to a source with knowledge of the plans. Some regional offices have been told to start taking their chargers offline, according to an email viewed by The Verge. "As GSA has worked to align with the current administration, we have received direction that all GSA owned charging stations are not mission critical," the email reads.

The GSA is working on the timing of canceling current network contracts that keep the EV chargers operational. Once those contracts are canceled, the stations will be taken out of service and "turned off at the breaker," the email reads. Other chargers will be turned off starting next week. "Neither Government Owned Vehicles nor Privately Owned Vehicles will be able to charge at these charging stations once they're out of service," it concludes.

Apple is removing its most advanced, end-to-end encrypted security feature for cloud data in the United Kingdom [alternative source], in a stunning development after the government ordered the company to build a backdoor for accessing user data. From a report: The company said Friday that Advanced Data Protection, an optional feature that adds end-to-end encryption to a wide assortment of user data is no longer available in the UK for new users.

This layer of security covers iCloud data storage, device backups, web bookmarks, voice memos, notes, photos, reminders and text message backups. "We are gravely disappointed that the protections provided by ADP will not be available to our customers in the UK given the continuing rise of data breaches and other threats to customer privacy," the company said in a statement. "ADP protects iCloud data with end-to-end encryption, which means the data can only be decrypted by the user who owns it, and only on their trusted devices."

California is considering officially recognizing Bigfoot as its state cryptid through Assembly Bill 666, introduced last week by North Coast Assemblymember Chris Rogers. "Rogers' district spans Del Norte, Humboldt, Mendocino, Sonoma and Trinity counties, a region known as the epicenter of Bigfoot lore," reports SFGATE. From the report: Assemblyman Rogers' Assembly Bill 666 is still in its early stages. According to the California Legislative Information website, the bill's title has been read aloud in the state Assembly and is now being printed and distributed to committee members for review. If it clears committee, it must then pass the Assembly and Senate before reaching the governor's desk to be signed into law.

[Matt Moneymaker, a longtime Bigfoot researcher and former star of the Animal Planet series 'Finding Bigfoot], is eager to witness history. "If there's going to be a date, an occasion when they're voting on whether or not to make it the official cryptid, I would love to be up there in Sacramento," he said. "I would gladly pay my way to be there when that happens." "Mankind has always had a fascination with monsters, and mythologies from around the world include stories of strange and terrifying creatures," writes Slashdot reader Pickens in a story published in 2008. "Examples include the half-bull, half-human Minotaur of Greek myths, the living clay Golem of Jewish traditions, British elves and Chinese dragons..." What's your favorite monster?

Chinese hospitals dominate a first-ever analysis of scientific paper retractions worldwide, with some institutions having retraction rates 50 times higher than the global average, according to data published in Nature.

Jining First People's Hospital in Shandong leads with more than 5% of its research output from 2014-2024 being retracted -- over 100 papers. The hospital had disciplined 35 researchers for publication fraud in late 2021 amid a broader Chinese government crackdown on paper mills selling fake manuscripts.

The analysis, based on data from three research integrity firms, found that about 60% of retracted articles over the past decade had authors affiliated with Chinese institutions. Other retraction hotspots include universities in Saudi Arabia, India, Pakistan and Ethiopia.

While retractions remain rare globally, affecting fewer than 0.1% of published papers, rates have tripled over the past decade. In 2023, over 10,000 papers were retracted, mostly from journals owned by publisher Wiley's now-closed Hindawi subsidiary following widespread peer review fraud. The surge in retractions partly reflects increased scrutiny from research integrity experts who spot problematic papers, rather than definitively indicating which institutions produce fraudulent work, according to Ivan Oransky, co-founder of Retraction Watch.

The Canadian government has launched a six-year, $3.9 billion design phase for a high-speed rail project connecting Toronto and Quebec City, with electric trains reaching up to 300 km/h. Construction is expected to begin after the design phase, potentially in four to five years, but future governments could modify or cancel the project. CBC News reports: "Today I'm announcing the launch of Alto, the largest infrastructure project in Canadian history," Trudeau said from Montreal. "A reliable, efficient, high-speed rail network will be a game-changer for Canadians." Trudeau said the new rail network will run all-electric trains along 1,000 kilometers of track, reaching speeds of up to 300 km/hour, with stops in Toronto, Peterborough, Ottawa, Montreal, Laval, Trois-Rivieres and Quebec City. A government statement said the project will stimulate the economy, "boosting GDP by up to $35 billion annually, creating over 51,000 good-paying jobs during construction."

Trudeau said that once built, the new high-speed rail network will take passengers from Montreal to Toronto in three hours -- about half the time it takes to drive and at double the speed of Via Rail's current trains. [...] Trudeau said the consortium Cadence -- made up of CDPQ Infra, Atkins Realis, Keolis, SYSTRA, SNCF Voyageurs and Air Canada -- was selected to build the line. The group was only informed in the last 24 hours that their bid was the best of the three submitted, according to sources that spoke to Radio-Canada. Transport Minister Anita Anand said that Alto, the Crown corporation created to oversee the project, and Cadence will be signing a contract "in the coming weeks" that will outline the first-phase design work, such as where track will be laid and where stations will be built.

Palantir CEO Alex Karp warns of "coming swarms of autonomous robots" and urges Silicon Valley to support U.S. defense capabilities. In his book, "The Technological Republic: Hard Power, Soft Belief, and the Future of the West," Karp argues that America risks losing its military edge to geopolitical rivals who better harness commercial technology.

He calls for the "engineering elite of Silicon Valley" to work with the government on national defense. The message comes as Palantir's stock has surged more than 1,800% since early 2023, pushing its market value above $292 billion -- exceeding traditional defense contractors Lockheed Martin and RTX combined. The company has expanded its military AI work since 2018, when it took over a Pentagon contract after Google employees protested their company's defense work.

"[O]ur intrepid China reporter, Caiwei Chen, has identified a new trend unfolding within China's tech scene: Companies that were dominant in electric vehicles are betting big on translating that success into developing humanoid robots," writes MIT Technology Review's James O'Donnell. "I spoke with her about what she found out and what it might mean for Trump's policies and the rest of the globe..." An anonymous reader quotes an excerpt from the report: Your story looks at electric-vehicle makers in China that are starting to work on humanoid robots, but I want to ask about a crazy stat. In China, 53% of vehicles sold are either electric or hybrid, compared with 8% in the US. What explains that?

Price is a huge factor -- there are countless EV brands competing at different price points, making them both affordable and high-quality. Government incentives also play a big role. In Beijing, for example, trading in an old car for an EV gets you 10,000 RMB (about $1,500), and that subsidy was recently doubled. Plus, finding public charging and battery-swapping infrastructure is much less of a hassle than in the US.

You open your story noting that China's recent New Year Gala, watched by billions of people, featured a cast of humanoid robots, dancing and twirling handkerchiefs. We've covered how sometimes humanoid videos can be misleading. What did you think?

I would say I was relatively impressed -- the robots showed good agility and synchronization with the music, though their movements were simpler than human dancers'. The one trick that is supposed to impress the most is the part where they twirl the handkerchief with one finger, toss it into the air, and then catch it perfectly. This is the signature of the Yangko dance, and having performed it once as a child, I can attest to how difficult the trick is even for a human! There was some skepticism on the Chinese internet about how this was achieved and whether they used additional reinforcement like a magnet or a string to secure the handkerchief, and after watching the clip too many times, I tend to agree.

President Trump has already imposed tariffs on China and is planning even more. What could the implications be for China's humanoid sector?

Unitree's H1 and G1 models are already available for purchase and were showcased at CES this year. Large-scale US deployment isn't happening yet, but China's lower production costs make these robots highly competitive. Given that 65% of the humanoid supply chain is in China, I wouldn't be surprised if robotics becomes the next target in the US-China tech war.

In the US, humanoid robots are getting lots of investment, but there are plenty of skeptics who say they're too clunky, finicky, and expensive to serve much use in factory settings. Are attitudes different in China?

Skepticism exists in China too, but I think there's more confidence in deployment, especially in factories. With an aging population and a labor shortage on the horizon, there's also growing interest in medical and caregiving applications for humanoid robots.

DeepSeek revived the conversation about chips and the way the US seeks to control where the best chips end up. How do the chip wars affect humanoid-robot development in China?

Training humanoid robots currently doesn't demand as much computing power as training large language models, since there isn't enough physical movement data to feed into models at scale. But as robots improve, they'll need high-performance chips, and US sanctions will be a limiting factor. Chinese chipmakers are trying to catch up, but it's a challenge.

Cameron John Wagenius pleaded guilty to hacking AT&T and Verizon and stealing a massive trove of phone records from the companies, according to court records filed on Wednesday. From a report: Wagenius, who was a U.S. Army soldier, pleaded guilty to two counts of "unlawful transfer of confidential phone records information" on an online forum and via an online communications platform.

According to a document filed by Wagenius' lawyer, he faces a maximum fine of $250,000 and prison time of up to 10 years for each of the two counts. Wagenius was arrested and indicted last year. In January, U.S. prosecutors confirmed that the charges brought against Wagenius were linked to the indictment of Connor Moucka and John Binns, two alleged hackers whom the U.S. government accused of several data breaches against cloud computing services company Snowflake, which were among the worst hacks of 2024.

France has upped the ante in the quest for fusion power by maintaining a plasma reaction for over 22 minutes -- a new record. From a report: The milestone was reached on February 12 at the Commissariat a lenergie atomique et aux energies alternatives (CEA) WEST Tokamak reactor.

Achieving the dream of commercial fusion power is the Holy Grail of engineering and has been for 80 years. With a single gram of hydrogen isotopes yielding the energy equivalent of 11 tonnes of coal, a practical fusion reactor would hold the promise of unlimited, clean energy for humanity until the end of time.

Small wonder that billions have been invested by both government and industry in the quest to make fusion power a reality. However, while fusion is relatively easy to achieve in the heart of the sun or in a hydrogen bomb, creating a practical reactor that produces more energy than is put into it is another matter entirely.

Apple has told Britain's competition regulator that some of the remedy options proposed by the watchdog to address concerns in the mobile browser market would impact the iPhone maker's incentive to innovate. From a report: The responses from Apple and Google to the regulator's investigation in the supply of mobile browsers and browser engines and the distribution of cloud gaming services through app stores on mobile devices in the country were published on the government website on Wednesday.

Late Tuesday afternoon, the White House confirmed that it would not proceed with laying off more than 1,000 probationary employees at NASA. "NASA had sought exemptions for all of these employees, who comprise about 6 percent of NASA's workforce," notes Ars Technica. "The Trump administration has sought to fire federal employees at several federal agencies who are in the 'probationary' period of their employment. This includes new hires within the last one or two years or long-time employees who have moved into or been promoted into a new position." From the report: It was not immediately clear why. A NASA spokesperson in Washington, DC, offered no comment on the updated guidance. Two sources indicated that it was plausible that private astronaut Jared Isaacman, whom President Trump has nominated to lead the space agency, asked for the cuts to be put on hold.

Although this could not be confirmed, it seems reasonable that Isaacman would want to retain some control over where cuts at the agency are made. Firing all probationary employees -- which is the most expedient way to reduce the size of government -- is a blunt instrument. It whacks new hires that the agency may have recruited for key positions, as well as high performers who earned promotions.

The reprieve in these terminations does not necessarily signal that NASA will escape significant budget or employment cuts in the coming months. The administration could still seek to terminate probationary employees. In addition, Ars reported earlier that directors at the agency's field centers have been told to prepare options for a "significant" reduction in force in the coming months. The scope of these cuts has not been defined, and it's likely they would need to be negotiated with Congress.

Ten years after publishing his influential book on data privacy, security expert Bruce Schneier warns that surveillance has only intensified, with both government agencies and corporations collecting more personal information than ever before. "Nothing has changed since 2015," Schneier told The Register in an interview. "The NSA and their counterparts around the world are still engaging in bulk surveillance to the extent of their abilities."

The widespread adoption of cloud services, Internet-of-Things devices, and smartphones has made it nearly impossible for individuals to protect their privacy, said Schneier. Even Apple, which markets itself as privacy-focused, faces limitations when its Chinese business interests are at stake. While some regulation has emerged, including Europe's General Data Protection Regulation and various U.S. state laws, Schneier argues these measures fail to address the core issue of surveillance capitalism's entrenchment as a business model.

The rise of AI poses new challenges, potentially undermining recent privacy gains like end-to-end encryption. As AI assistants require cloud computing power to process personal data, users may have to surrender more information to tech companies. Despite the grim short-term outlook, Schneier remains cautiously optimistic about privacy's long-term future, predicting that current surveillance practices will eventually be viewed as unethical as sweatshops are today. However, he acknowledges this transformation could take 50 years or more.

Today Seoul's Personal Information Protection Commission "said DeepSeek would no longer be available for download until a review of its personal data collection practices was carried out," reports AFP. A number of countries have questioned DeepSeek's storage of user data, which the firm says is collected in "secure servers located in the People's Republic of China"... This month, a slew of South Korean government ministries and police said they blocked access to DeepSeek on their computers. Italy has also launched an investigation into DeepSeek's R1 model and blocked it from processing Italian users' data. Australia has banned DeepSeek from all government devices on the advice of security agencies. US lawmakers have also proposed a bill to ban DeepSeek from being used on government devices over concerns about user data security.
More details from the Associated Press: The South Korean privacy commission, which began reviewing DeepSeek's services last month, found that the company lacked transparency about third-party data transfers and potentially collected excessive personal information, said Nam Seok [director of the South Korean commission's investigation division]... A recent analysis by Wiseapp Retail found that DeepSeek was used by about 1.2 million smartphone users in South Korea during the fourth week of January, emerging as the second-most-popular AI model behind ChatGPT.

California is "considering state ownership of one or more oil refineries," reports the Los Angeles Times.

They call the idea "one item on a list of options presented by the California Energy Commission to ensure steady gas supplies as oil companies pull back from the refinery business in the state." "The state recognizes that they're on a pathway to more refinery closures," said Skip York, chief energy strategist at energy consultant Turner Mason & Co. The risk to consumers and the state's economy, he said, is gasoline supply disappearing faster than consumer demand, resulting in fuel shortages, higher prices and severe logistical challenges.

Gasoline demand is falling in California, albeit slowly, for two reasons: more efficient gasoline engines, and the increasing number of electric vehicles on the road. Gasoline consumption in California peaked in 2005 and fell 15% through 2023, according to the Union of Concerned Scientists. Electric vehicles, including plug-in hybrids, now represent about 25% of annual new car sales... The drop in demand is causing fundamental strategic shifts among the state's major oil refiners: Chevron, Marathon, Phillips 66, PBF Energy and Valero.

Already, two California refineries have ceased producing gasoline to make biodiesel fuel for use in heavy-duty trucks, a cleaner-fuel alternative that enjoys rich state subsidies. More worrisome, the Phillips 66 refinery complex in Wilmington, just outside Los Angeles, plans to close down permanently by year's end. That leaves eight major refineries in California capable of producing gasoline. The closure of any one would create serious gasoline supply issues, industry analysts say. But both Chevron and Valero are contemplating permanent refinery closures. The implications? "Demand will decline gradually," York said, "but supply will fall out in chunks." What's unknown is how many refineries will close, and how soon, and how that will affect supply and demand...

A state refinery takeover seems like a radical idea, but the fact that it's being considered demonstrates the seriousness of the supply issue. It's one of several option laid out by the California Energy Commission, which is fulfilling a legislative order to find ways to ensure "a reliable supply of affordable and safe transportation fuels in California." The options list is disparate: Ship in more gasoline from Asia; regulate refineries on the order of electric utilities; cap profit margins; and many more.
92% of California's gas is produced in refineries, the Times reports. But the special gasoline blends required to reduce air pollution "also drive up gasoline prices and raise the risk of shortages, because little such gasoline is produced outside California."

gwolf (Slashdot reader #26,339) writes: On Friday, February 14, Libertarian Argentinian president, Javier Milei, promoted the just-created $LIBRA cryptocoin, created by the Viva la libertad project, strongly aligned with his political party, La Libertad Avanza. Milei tweeted, "This private project will be devoted to promote growth of the Argentinian economy, funding small startups and enterprises. The world wants to invest in Argentina!"

It is worth noting that the project's website was registered a mere three minutes before Milei tweeted his endorsement. The cryptocoin quickly reached a $4.6 billion market cap... Only to instantaneously lose 89% of its value, with nine core investers pulling the rug from under the enthusiast investors. More details from the blog Web3 Is Going Just Great: [W]ithin hours of the launch, insiders began selling off their holdings of the token. The token had been highly concentrated among insiders, with around 82% of the token held in a small cluster of apparently insider addresses. Those insiders cashed out around $107 million, crashing the token price by around 95%. After the crash, Milei deleted his tweet promoting the project. He later claimed he was "not aware of the details of the project."
UPDATE: CNN reports that Argentine President Milei is now facing calls for impeachment. The presidency on Saturday announced an investigation into the matter, saying: "President Javier Milei has decided to immediately involve the Anti-Corruption Office to determine whether there was improper conduct on the part of any member of the national government, including the president himself."

Long-time Slashdot reader shanen has been testing AI clients. (They report that China's DeepSeek "turned out to be extremely good at explaining why I should not trust it. Every computer security problem I ever thought of or heard about and some more besides.")

Then they wondered if there's also government censorship: It's like the accountant who gets asked what 2 plus 2 is. After locking the doors and shading all the windows, the accountant whispers in your ear: "What do you want it to be...?" So let me start with some questions about DeepSeek in particular. Have you run it locally and compared the responses with the website's responses? My hypothesis is that your mileage should differ...

It's well established that DeepSeek doesn't want to talk about many "political" topics. Is that based on a distorted model of the world? Or is the censorship implemented in the query interface after the model was trained? My hypothesis is that it must have been trained with lots of data because the cost of removing all of the bad stuff would have been prohibitive... Unless perhaps another AI filtered the data first?
But their real question is: what would it take to trust an AI? "Trust" can mean different things, including data-collection policies. ("I bet most of you trust Amazon and Amazon's secret AIs more than you should..." shanen suggests.) Can you use an AI system without worrying about its data-retention policies?

And they also ask how many Slashdot readers have read Ken Thompson's "Reflections on Trusting Trust", which raises the question of whether you can ever trust code you didn't create yourself. So is there any way an AI system can assure you its answers are accurate and trustworthy, and that it's safe to use? Share your own thoughts and experiences in the comments.

What would it take for you to trust an AI?

"Security researchers say the Chinese government-linked hacking group, Salt Typhoon, is continuing to compromise telecommunications providers," reports TechCrunch, "despite the recent sanctions imposed by the U.S. government on the group."

TechRadar reports that the Chinese state-sponsored threat actor is "hitting not just American organizations, but also those from the UK, South Africa, and elsewhere around the world." The latest intrusions were spotted by cybersecurity researchers from Recorded Future, which said the group is targeting internet-exposed web interfaces of Cisco's IOS software that powers different routers and switches. These devices have known vulnerabilities that the threat actors are actively exploiting to gain initial access, root privileges, and more. More than 12,000 Cisco devices were found connected to the wider internet, and exposed to risk, Recorded Future further explained. However, Salt Typhoon is focusing on a "smaller subset" of telecoms and university networks.
"The hackers attempted to exploit vulnerabilities in at least 1,000 Cisco devices," reports NextGov, "allowing them to access higher-level privileges of the hardware and change their configuration settings to allow for persistent access to the networks they're connected on... Over half of the Cisco appliances targeted by Salt Typhoon were located in the U.S., South America and India, with the rest spread across more than 100 countries." Between December and January, the unit, widely known as Salt Typhoon, "possibly targeted" — based on devices that were accessed — offices in the University of California, Los Angeles, California State University, Loyola Marymount University and Utah Tech University, according to a report from cyber threat intelligence firm Recorded Future... The Cisco devices were mainly associated with telecommunications firms, but 13 of them were linked to the universities in the U.S. and some in other nations... "Often involved in cutting-edge research, universities are prime targets for Chinese state-sponsored threat activity groups to acquire valuable research data and intellectual property," said the report, led by the company's Insikt Group, which oversees its threat research.

The cyberspies also compromised Cisco platforms at a U.S.-based affiliate of a prominent United Kingdom telecom operator and a South African provider, both unnamed, the findings added. The hackers also "carried out a reconnaissance of multiple IP addresses" owned by Mytel, a telecom operator based in Myanmar...

"In 2023, Cisco published a security advisory disclosing multiple vulnerabilities in the web UI feature in Cisco IOS XE software," a Cisco spokesperson said in a statement. "We continue to strongly urge customers to follow recommendations outlined in the advisory and upgrade to the available fixed software release."