Comment is this new? (Score 1) 167
First, let's note the referenced article IS A SALES PITCH.
Second, electrical outages are a normal thing in a storm prone country. The "outages" aren't news, it's only meaningful if they're growing more frequent.
The article asks plaintively "is this the new normal" without ever establishing what the old normal was.
When taking into account the higher population and higher electrical demand per person, are large blackouts becoming more common in the US?
Per ai: no.
"The North American Electric Reliability Corporation (NERC) tracks Bulk Power System (BPS) performance annually in its State of Reliability (SOR) reports. Key takeaways from the 2025 SOR (covering 2024 data):
The BPS "remains highly reliable and resilient." Core metrics like frequency response, misoperations, and many transmission outage categories are stable or improving.
Severe weather (hurricanes, winter storms) caused the most impactful outages, as in prior years. In 2024, events like Hurricanes Helene and Milton led to millions of (mostly distribution-level) customer outages, but BES restoration was often faster than historical averages for similar storms due to hardening efforts. No major operator-initiated load shed during key winter events.
There were notable events, but the Severity Risk Index (SRI) and other indicators do not show a clear upward trend in frequency or severity of large-scale BPS disruptions when viewed over multiple years. Distribution outages (local, below 100 kV) are more visible to customers and can be widespread, but they are outside NERC's primary jurisdiction."
I fully agree our policies toward the increasingly critical electrical grid infrastructure are incoherent. That's said: quit buying into advertisers insisting the world is ending and here's some snake oil that will fix it.
Comment Re:Zero day already in the wild? (Score 4, Informative) 72
The summary says: "Microsoft also addressed three zero-day flaws, including two that are already being exploited in the wild. "
(scratches head) How can a flaw be called zero-day and already be exploited in the wild?
Because a zero-day is any flaw made public before the developer knows about it. One of the main ways this happens is by noticing that hackers are breaking into systems using a heretofore unknown exploit.
Submission + - Physicists create first room-temperature quantum material (phys.org)
Comment Re:An AMAZING number of flaws (Score 1) 72
On the upside, we're probably going to get several months of this while everyone with access to Mythos et al runs their existing code through it and integrates into their release processes for new code, and the end result will be things being much harder for all the bad actors in the world. Even if you don't use the improved code yourself, that's hopefully going to have a significant impact on the number and size of all the botnets out there, and that's a net benefit to everyone apart from the bad actors.
Submission + - Records Are Made to Be Broken: Patch Tuesday Raises Triage Stakes (darkreading.com)
But with fixes for 622 unique CVEs, Microsoft’s July 2026 Patch Tuesday update is the largest by far in the program's history and offers a preview of the growing prioritization challenges organizations face as AI dramatically increases the volume of flaws requiring attention.
July's update contains fixes for three zero-day vulnerabilities, two of which attackers are already exploiting and one that's publicly known but remains unexploited. The patch update also includes fixes for more than five dozen critical vulnerabilities, many of which Microsoft identified as flaws that attackers are more likely to exploit. The total includes 416 vulnerabilities in Windows, 82 each in Office and Office 2016, 46 in Edge, 27 in Microsoft Developer Tools, and 17 in SharePoint Server.
"If people want a severity hook, July has 26 vulnerabilities with a CVSS base score above 9.0, and 13 of those sit at 9.8," said Josh Taylor, lead cybersecurity analyst at Fortra, in an emailed comment. "That matters, but CVSS is still only one part of the risk story. The real triage problem this month is the mix of exploited issues, a publicly disclosed BitLocker flaw, and a massive concentration of vulnerabilities in Windows and Office," he said. And rather than focusing on volume, patching teams need to prioritize the exploited vulnerabilities and their exposed infrastructure first, Taylor added.
"Today, July 14, 2026, marks a pivotal moment in our industry," researchers from Nightwing said in a statement. "We are officially moving past the traditional 'Patch Tuesday' approach and entering an era of continuous, high-volume security updates" and continuous patching.
Submission + - How Microsoft's "Little Workaround" Created a Major Pentagon Threat (propublica.org)
The arrangement was called “digital escorting.” She thought it sounded like a conspiracy theory — until she started looking into it. This is the story of what she found and how her investigation changed government policy.
Microsoft is using engineers in China to help maintain the Defense Department’s computer systems — with minimal supervision by U.S. personnel — leaving some of the nation’s most sensitive data vulnerable to hacking from its leading cyber adversary, a ProPublica investigation has found.
The arrangement, which was critical to Microsoft winning the federal government’s cloud computing business a decade ago, relies on U.S. citizens with security clearances to oversee the work and serve as a barrier against espionage and sabotage.
National security and cybersecurity experts in the Trump administration contacted by ProPublica were also surprised to learn that such an arrangement was in place, especially at a time when the U.S. intelligence community and leading members of Congress and the Trump administration view China’s digital prowess as a top threat to the country.
Microsoft uses the escort system to handle the government’s most sensitive information that falls below “classified.” According to the government, this “high impact level” category includes “data that involves the protection of life and financial ruin.” The “loss of confidentiality, integrity, or availability” of this information “could be expected to have a severe or catastrophic adverse effect” on operations, assets and individuals, the government has said. In the Defense Department, the data is categorized as “Impact Level” 4 and 5 and includes materials that directly support military operations.
“If someone ran a script called ‘fix_servers.sh’ but it actually did something malicious then [escorts] would have no idea,” a former Microsoft engineer who worked on the escort system, told ProPublica in an email. That said, he maintained that the “scope of systems they could disrupt” is limited.
In an emailed statement, the Defense Information Systems Agency said that cloud service providers “are required to establish and maintain controls for vetting and using qualified specialists,” but the agency did not respond to ProPublica’s questions regarding the digital escorts’ qualifications.
It’s unclear whether other cloud providers to the federal government use digital escorts as part of their tech support. Amazon Web Services and Google Cloud declined to comment on the record for this article. Oracle did not respond to requests for comment.
A spokesperson for the inspector general — whose office is supposed to operate independently in order to investigate potential waste, fraud and abuse — told ProPublica they were not authorized to speak about the issue and directed questions to DISA public affairs.
Comment Re:good self awareness (Score 1) 61
They sold off their Lenovo brand in 2014.
Lenovo was never an "IBM brand." IBM sold them their client computing assets in 2005, and their x86 server assets in 2014, but Lenovo has never been a part of IBM.
Comment Zorin or Mint? (Score 2) 103
I keep hearing things like "my grandmother got so confused, I set her up on Zorin/Mint and she couldn't tell the difference."
The more people just use their PC's to get on websites the less they seem to notice if they use Windows or Linux.
Comment Re:Let's see (Score 0) 76
I'm sure the shareholders will be lining up in droves to accept your offer of 1/25000 of a cent per share.
Comment Oh, fuck off (Score 1) 83
Cloudflare has launched Precursor, a new behavioral bot detection system that monitors mouse movement, typing cadence, scrolling, clipboard activity, page visibility, and other signals across an entire browsing session.
Nothing nefarious here, no potential for abuse, move along, move along.
Comment the juice isn't worth the squeeze (Score 1) 107
1) there's no feedback of any value, at least not worth the effort. Any post can be immediately swarmed by bots or by humans that are little more than such. It happens here; you might be posting about the functionality of light switches and you'll get 5 anon posts about being a MAGA cuck and how it's Trump's fault; likewise you might post asking legit questions about data centers and have 5 anon posts calling you a communist woke traitor. Why bother connecting your brain to social media if all you're getting back is digital feces?
2) I've just spent much less time online anyway; I've decided to practice what I preach and - unless I'm actually doing something like ordering food, etc - I simply put my phone away when there are other humans present that I might interact with. At all. On a tram, in a waiting room. I am ready to engage other people, and if they don't choose to I've welcomed being alone with my thoughts again instead of being constantly bemused by some bit of celebrity news I couldn't give a shite about.
Comment Framing (Score 3, Insightful) 86
It doesn't matter if it's bad - if China and Russia agree it's bad you have to be for it.
You can never agree with China because they have a totalitarian AI Surveillance Police State there so you must support a totalitarian AI Surveillance Police State here.
If you are against techo-feudalism you must be one of them Putin Lovers.
- The New York Times / Langley, apparently.
Comment Re:No relation (Score 1) 103
I'm amazed to find your comment is an isolated example of reading comprehension and critical thinking.
Many others are 'accepting the premise' and 'entering the frame' of the LA Times weirdos.
Didn't expect that today.
Comment Re:There are probably cooler old IBM sites to visi (Score 3, Interesting) 60
Just be careful; a few old IBM sites had toxic waste problems. It sounds like they were just turning off the lights and water and walking away from these.
One woild hope everything was remediated but I wouldn't bet my own safety on it.