Toggle light / dark theme

Get the latest international news and world events from around the world.

Log in for authorized contributors

The Sun’s Poles Hold the Key to Its Three Greatest Mysteries

The Sun’s poles may hold answers to long-standing mysteries about magnetic cycles, solar wind, and space weather. The polar regions of the Sun remain one of the least explored areas in solar science. Although satellites and ground-based observatories have captured remarkable details of the Sun’s su

Earth’s Ancient Shield: Scientists Crack the Billion-Year-Old Mystery of the Magnetic Field

A new model uncovers how Earth’s liquid core has sustained its magnetic field since the planet’s beginnings, offering new insights into its future. Earth benefits from the presence of a magnetic field, which acts as a shield against harmful cosmic radiation and makes life possible. In contrast, p

Scientists Discover “Virtual Charges” That Exist Only When Light Hits

A study led by Politecnico di Milano, recently published in Nature Photonics, highlights the crucial role of virtual charges in insulating materials. One of the biggest challenges in modern physics and photonics is understanding how materials behave when struck by extremely brief flashes of light

New Optics Tech Could Revolutionize Gravitational-Wave Astronomy

UC Riverside has developed a technology that enables scientists to peer deeper into the universe. Gravitational-wave science is on the verge of a major step forward, thanks to a new instrumentation breakthrough led by physicist Jonathan Richardson at the University of California, Riverside. In a st

CISA Sounds Alarm on Critical Sudo Flaw Actively Exploited in Linux and Unix Systems

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a critical security flaw impacting the Sudo command-line utility for Linux and Unix-like operating systems to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.

The vulnerability in question is CVE-2025–32463 (CVSS score: 9.3), which affects Sudo versions prior to 1.9.17p1. It was disclosed by Stratascale researcher Rich Mirch back in July 2025.

“Sudo contains an inclusion of functionality from an untrusted control sphere vulnerability,” CISA said. “This vulnerability could allow a local attacker to leverage sudo’s-R (—chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file.”

New EDR-Freeze tool uses Windows WER to suspend security software

A new method and proof-of-concept tool called EDR-Freeze demonstrates that evading security solutions is possible from user mode with Microsoft’s Windows Error Reporting (WER) system.

The technique eliminates the need of a vulnerable driver and puts security agents like endpoint detection and response (EDR) tools into a state of hibernation.

By using the WER framework together with the MiniDumpWriteDump API, security researcher TwoSevenOneThree (Zero Salarium) found a way to suspend indefinitely the activity of EDR and antivirus processes indefinitely.

GitHub notifications abused to impersonate Y Combinator for crypto theft

A massive phishing campaign targeted GitHub users with cryptocurrency drainers, delivered via fake invitations to the Y Combinator (YC) W2026 program.

Y Combinator is a startup accelerator that funds and mentors projects in their early stages, and connects founders with a network of alumni and venture capital firms.

The attacker abused GitHub’s notification system to deliver the fraudulent messages, by creating issues across multiple repositories and tagging targeted users.

/* */