Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog – Page 66

Get the latest international news and world events from around the world.

Log in for authorized contributors

NASA’s New Technology Lets Spacecraft Switch Between Networks

NASA just demonstrated a technology that lets spacecraft communicate across multiple networks, paving the way for a more flexible and reliable space internet. NASA’s experimental Polylingual Experimental Terminal (PExT) has successfully completed its primary technology demonstration, marking an i

Magnetic Fields May Solve a Longstanding Binary Star Mystery

Magnetic fields may be the hidden force bringing both newborn stars and giant black holes together. New computer simulations suggest that magnetic fields play a crucial role in helping pairs of young stars form. The findings could explain why binary star systems are so common throughout the Milky

One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public

FuzzingLabs reproduced the bug on RHEL 10 ahead of Pwn2Own Berlin 2026, building its own root exploit by a different route. The timeline is tight: the fix shipped February 5, FuzzingLabs published April 16, and Exodus’s detailed write-up landed June 8.

The technique is now documented across Debian, Ubuntu, and Red Hat. Because the bug is in the mainline, any distribution that shipped a vulnerable kernel with both features enabled is exposed, unless a distribution’s hardening or namespace restrictions block the path.

CVE-2026–23111 lands in the middle of a heavy run of Linux local-root disclosures. Recent weeks have brought Copy Fail, the Dirty Frag chain, its Fragnesia variant, DirtyDecrypt, and a nine-year-old ptrace flaw that reads /etc/shadow and runs commands as root.

NFCShare Android malware spreads via fake banking app updates on GitHub

New variants of the NFCShare Android malware are being distributed as fake updates for legitimate banking apps hosted on GitHub.

The malware has evolved and is now targeting customers of multiple banks and financial institutions across Europe in a phishing campaign aimed at stealing payment card data.

After tricking victims with a fake verification screen to place the cards near the mobile device’s near-field communication (NFC) chip, NFCShare reads the information using Android’s IsoDep interface and EMV commands.

Gogs patches critical zero-day enabling remote code execution

Gogs has patched a critical security zero-day flaw that can allow attackers to compromise Internet-facing instances and access any repositories (including private ones).

This argument injection vulnerability has yet to be assigned a CVE ID, can only be exploited by authenticated attackers without admin privileges, and affects all Gogs releases up to and including 0.14.2 and 0.15.0+dev.

They can exploit this vulnerability to compromise the targeted server, read any repository (including private repos), steal credentials, move laterally to other systems on the network, and alter any hosted source code.

/* */