Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog – Page 5

Get the latest international news and world events from around the world.

Log in for authorized contributors

Ultra-Faint Dwarf Galaxies Could Unlock Secrets of the Early Universe

Ultra-faint dwarf galaxies are among the smallest known galaxies orbiting the Milky Way. Astronomers have long viewed them as ancient remnants from the early cosmos. Now, researchers at the Oskar Klein Centre and the LYRA collaboration have used a powerful new set of simulations to show that these dim galaxies may reveal how conditions in the young Universe shaped which galaxies were able to grow and which never formed stars at all.

The study, published in Monthly Notices of the Royal Astronomical Society (MNRAS), was led by Azadeh Fattahi, Associate Professor at the Oskar Klein Centre (OKC), along with collaborators from Durham University and the University of Hawaii.

She explains the scale of the project: “In this work we presented a brand-new suite of cosmological simulations focused on the faintest galaxies in the Universe, with an unprecedented resolution. These are by far the largest sample of such galaxies ever simulated at these resolutions.”

Apple blocked over $11 billion in App Store fraud in 6 years

Apple revealed that it blocked over $11 billion in fraudulent App Store transactions over the last six years, more than $2.2 billion in potentially fraudulent App Store transactions in 2025 alone.

In a Wednesday press release, the tech giant said it rejected over 2 million problematic app submissions last year and blocked more than 1.1 billion fraudulent account creations.

Apple also terminated 193,000 developer accounts due to fraud concerns, rejected more than 138,000 developer enrollments, and deactivated an additional 40.4 million customer accounts suspected of fraud and abuse.

Google accidentally exposed details of unfixed Chromium flaw

Google has accidentally leaked details about an unfixed issue in Chromium that keeps JavaScript running in the background even when the browser is closed, allowing remote code execution on the device.

The flaw was reported by security researcher Lyra Rebane and acknowledged as valid in December 2022, as per the thread on Chromium Issue Tracker.

An attacker could exploit the problem to create a malicious webpage with a Service Worker, such as a download task, that never terminates. Rebane says that this could allow an attacker to execute JavaScript code on the visitors’ devices.

9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros

Cybersecurity researchers have disclosed details of a vulnerability in the Linux kernel that remained undetected for nine years.

The vulnerability, tracked as CVE-2026–46333 (CVSS score: 5.5), is a case of improper privilege management that could permit an unprivileged local user to disclose sensitive files and execute arbitrary commands as root on default installations of several major distributions like Debian, Fedora, and Ubuntu. It’s also codenamed ssh-keysign-pwn.

According to Qualys, which discovered the flaw, the problem is rooted in the kernel’s __ptrace_may_access function and was introduced in November 2016.

Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks

Drupal has released security updates for a “highly critical” security vulnerability in Drupal Core that could be exploited by attackers to achieve remote code execution, privilege escalation, or information disclosure.

The vulnerability, now tracked as CVE-2026–9082, carries a CVSS score of 6.5 out of 10.0, per CVE.org. Drupal said the vulnerability resides in a database abstraction API that is used in Drupal Core to validate queries and ensure they are sanitized against SQL injection attacks.

“A vulnerability in this API allows an attacker to send specially crafted requests, resulting in arbitrary SQL injection for sites using PostgreSQL databases,” it said. “This can lead to information disclosure, and in some cases privilege escalation, remote code execution, or other attacks.”

/* */