An anonymous reader shared this report from the Associated Press: An investigation into a ransomware attack earlier this month on London hospitals by the Russian group Qilin could take weeks to complete, the country's state-run National Health Service said Friday, as concerns grow over a reported data dump of patient records. Hundreds of operations and appointments are still being canceled more than two weeks after the June 3 attack on NHS provider Synnovis, which provides pathology services primarily in southeast London...

NHS England said Friday that it has been "made aware" that data connected to the attack have been published online. According to the BBC, Qilin shared almost 400GB of data, including patient names, dates of birth and descriptions of blood tests, on their darknet site and Telegram channel... According to Saturday's edition of the Guardian newspaper, records covering 300 million patient interactions, including the results of blood tests for HIV and cancer, were stolen during the attack.

A website and helpline has been set up for patients affected.

In 2022, Red Hat announced plans to extend RHEL to the automotive industry through Red Hat In-Vehicle Operating System (providing automakers with an open and functionally-safe platform). And this week Red Hat announced it achieved ISO 26262 ASIL-B certification from exida for the Linux math library (libm.so glibc) — a fundamental component of that Red Hat In-Vehicle Operating System.

From Red Hat's announcement: This milestone underscores Red Hat's pioneering role in obtaining continuous and comprehensive Safety Element out of Context certification for Linux in automotive... This certification demonstrates that the engineering of the math library components individually and as a whole meet or exceed stringent functional safety standards, ensuring substantial reliability and performance for the automotive industry. The certification of the math library is a significant milestone that strengthens the confidence in Linux as a viable platform of choice for safety related automotive applications of the future...

By working with the broader open source community, Red Hat can make use of the rigorous testing and analysis performed by Linux maintainers, collaborating across upstream communities to deliver open standards-based solutions. This approach enhances long-term maintainability and limits vendor lock-in, providing greater transparency and performance. Red Hat In-Vehicle Operating System is poised to offer a safety certified Linux-based operating system capable of concurrently supporting multiple safety and non-safety related applications in a single instance. These applications include advanced driver-assistance systems (ADAS), digital cockpit, infotainment, body control, telematics, artificial intelligence (AI) models and more. Red Hat is also working with key industry leaders to deliver pre-tested, pre-integrated software solutions, accelerating the route to market for SDV concepts.
"Red Hat is fully committed to attaining continuous and comprehensive safety certification of Linux natively for automotive applications," according to the announcement, "and has the industry's largest pool of Linux maintainers and contributors committed to this initiative..."

Or, as Network World puts it, "The phrase 'open source for the open road' is now being used to describe the inevitable fit between the character of Linux and the need for highly customizable code in all sorts of automotive equipment."

The Linux Foundation's "Open Source Security Foundation" (or OpenSSF) is a cross-industry forum to "secure the development, maintenance, and consumption of the open source software". And now the OpenSSF has launched a new mailing list "which aims to monitor the threat landscape of open-source project vulnerabilities," reports I Programmer, "in order to provide real time alerts to anyone subscribed."

The Record explains its origins: OpenSSF General Manager Omkhar Arasaratnam said that at a recent open source event, members of the community ran a tabletop exercise where they simulated a security incident involving the discovery of a zero-day vulnerability. They worked their way through the open source ecosystem — from cloud providers to maintainers to end users — clearly defining how the discovery of a vulnerability would be dealt with from top to bottom. But one of the places where they found a gap is in the dissemination of information widely.

"What we lack within the open source community is a place in which we can convene to distribute indicators of compromise (IOCs) and threats, tactics and procedures (TTPs) in a way that will allow the community to identify threats when our packages are under attack," Arasaratnam said... "[W]e're going to be standing up a mailing list for which we can share this information throughout the community and there can be discussion of things that are being seen. And that's one of the ways that we're responding to this gap that we saw...." The Siren mailing list will encourage public discussions on security flaws, concepts, and practices in the open source community with individuals who are not typically engaged in traditional upstream communication channels...

Members of the Siren email list will get real-time updates about emerging threats that may be relevant to their projects... OpenSSF has created a signup page for those interested and urged others to share the email list to other open source community members...
OpenSSF ecyosystem strategist Christopher Robinson (also security communications director for Intel) told the site he expects government agencies and security researchers to be involved in the effort. And he issued this joint statement with OpenSSF ecosystem strategist Bennett Pursell: By leveraging the collective knowledge and expertise of the open source community and other security experts, the OpenSSF Siren empowers projects of all sizes to bolster their cybersecurity defenses and increase their overall awareness of malicious activities. Whether you're a developer, maintainer, or security enthusiast, your participation is vital in safeguarding the integrity of open source software.
In less than a month, the mailing list has already grown to over 800 members...

An anonymous reader shared this report from Computer Weekly: Microsoft has admitted to Scottish policing bodies that it cannot guarantee the sovereignty of UK policing data hosted on its hyperscale public cloud infrastructure, despite its systems being deployed throughout the criminal justice sector.

According to correspondence released by the Scottish Police Authority (SPA) under freedom of information (FOI) rules, Microsoft is unable to guarantee that data uploaded to a key Police Scotland IT system — the Digital Evidence Sharing Capability (DESC) — will remain in the UK as required by law. While the correspondence has not been released in full, the disclosure reveals that data hosted in Microsoft's hyperscale public cloud infrastructure is regularly transferred and processed overseas; that the data processing agreement in place for the DESC did not cover UK-specific data protection requirements; and that while the company has the ability to make technical changes to ensure data protection compliance, it is only making these changes for DESC partners and not other policing bodies because "no one else had asked".

The correspondence also contains acknowledgements from Microsoft that international data transfers are inherent to its public cloud architecture. As a result, the issues identified with the Scottish Police will equally apply to all UK government users, many of whom face similar regulatory limitations on the offshoring of data. The recipient of the FOI disclosures, Owen Sayers — an independent security consultant and enterprise architect with over 20 years' experience in delivering national policing systems — concluded it is now clear that UK policing data has been travelling overseas and "the statements from Microsoft make clear that they 100% cannot comply with UK data protection law".

Slashdot reader DevNull127 writes: A free and open source ChatGPT clone — named LibreChat — lets its users choose which AI model to use, "to harness the capabilities of cutting-edge language models from multiple providers in a unified interface". This means LibreChat includes OpenAI's models, but also others — both open-source and closed-source — and its website promises "seamless integration" with AI services from OpenAI, Azure, Anthropic, and Google — as well as GPT-4, Gemini Vision, and many others. ("Every AI in one place," explains LibreChat's home page.) Plugins even let you make requests to DALL-E or Stable Diffusion for image generations. (LibreChat also offers a database that tracks "conversation state" — making it possible to switch to a different AI model in mid-conversation...)

Released under the MIT License, LibreChat has become "an open source success story," according to this article, representing "the passionate community that's actively creating an ecosystem of open source AI tools." And its creator, Danny Avila, says in some cases it finally lets users own their own data, "which is a dying human right, a luxury in the internet age and even more so with the age of LLM's." Avila says he was inspired by the day ChatGPT leaked the chat history of some of its users back in March of 2023 — and LibreChat is "inherently completely private". From the article:

With locally-hosted LLMs, Avila sees users finally getting "an opportunity to withhold training data from Big Tech, which many trade at the cost of convenience." In this world, LibreChat "is naturally attractive as it can run exclusively on open-source technologies, database and all, completely 'air-gapped.'" Even with remote AI services insisting they won't use transient data for training, "local models are already quite capable" Avila notes, "and will become more capable in general over time."

And they're also compatible with LibreChat...

An anonymous reader quotes a report from Cord Cutters News: Earlier this week, Chicken Soup For The Soul, the parent company behind Redbox, Crackel, and the streaming service by the same name, announced that the entire board of directors and board of managers of each subsidiary of the Company other than William J. Rouhana, Jr., have been fired. This comes as a holder of more than 75% of the voting power of the company used his stock holdings to lay off the Company's board of directors. Now, it has come out that the company missed a $4 million payment to NBCUniversal as a part of its settlement over unpaid royalties. Now it faces a possible order to pay all of $16.7 million it owes NBCUniversal as questions about the future of the company grows. This comes after NBCUniversal sued saying Redbox had not been paying royalties. It agreed to a payment plan but now has missed the first payment of the plan.

Recently the company has been hit hard by the decline in ad revenue on its free streaming services and the drop in DVD rentals at its Redbox locations. This has led to the company seeing its revenues drop 75% in the 1st quarter of 2024 compared to the same period of 2023, according to a SEC filing first spotted by NextTV. Chicken Soup For The Soul is in a tough situation after acquiring Redbox in 2022 for $50 million in stock and an assumption of $325 million in debt. Add on top of that a shaky media environment with cratering ad revenue and quarterly losses, and the company's future is very much in the air. In August, CEO William J. Rouhana said that the company was holding a strategic review to evaluate its opportunities, which is business speak for putting itself up for sale. Chicken Soup for The Soul last year announced that it was in active discussions for a potential sale back in October of this year but so far nothing has come from these talks.

Justine Calma writes via The Verge: A group of young plaintiffs reached a historic climate settlement with the state of Hawaii and Hawaii Department of Transportation in a deal that will push the state to clean up tailpipe pollution. The 13 youth plaintiffs filed suit in 2022 when they were all between the ages of 9 and 18. In the suit, Navahine F. v. Hawaii Department of Transportation (HDOT), they alleged that the state and HDOT had violated their right to "a clean and healthful environment," which is enshrined in Hawaii's constitution.

The settlement (PDF), reached on Thursday, affirms that right and commits the DOT to creating a plan to reach zero greenhouse gas emissions from transportation by 2045. To hit that goal, the state will have to dedicate at least $40 million to building out its EV charging network by the end of the decade and complete new pedestrian, bicycle, and transit networks over the next five years. The settlement also creates a new unit within HDOT tasked with coordinating CO2 emission reductions and a volunteer youth council to advise HDOT.

This is the first settlement agreement in which "government defendants have decided to resolve a constitutional climate case in partnership with youth plaintiffs," according to nonprofit legal groups Our Children's Trust and Earthjustice, which represent the plaintiffs. Back in 2018, Hawaii committed to reaching net-zero carbon dioxide emissions by 2045 -- in line with what climate research determined was necessary to meet the Paris climate accord goal of stopping global warming. But the state wasn't doing enough to reach that goal, the plaintiffs alleged. Transportation makes up the biggest chunk of the state's greenhouse gas pollution. Justine Calma is a senior science reporter covering energy and the environment with more than a decade of experience. She is also the host of Hell or High Water: When Disaster Hits Home, a podcast from Vox Media and Audible Originals.

An anonymous reader quotes a report from Fortune: Ellen Bagley was delighted when she made her first sale on a popular second-hand clothing app, but just a few minutes later, the thrill turned to shock as the 20-year-old from Linkoping in Sweden discovered she'd been robbed. Everything seemed normal when Bagley received a direct message on the platform, which asked her to verify personal details to complete the deal. She clicked the link, which fired up BankID -- the ubiquitous digital authorization system used by nearly all Swedish adults.After receiving a couple of error messages, she started thinking something was wrong, but it was already too late. Over 10,000 Swedish kronor ($1,000) had been siphoned from her account and the thieves disappeared into the digital shadows. "The fraudsters are so skilled at making things look legitimate," said Bagley, who was born after BankID was created. "It's not easy" to identify scams. Although financial crime has garnered fewer headlines than a surge in gang-related gun violence, it's become a growing risk for the country. Beyond its borders, Sweden is an important test case on fighting cashless crime because it's gone further on ditching paper money than almost any other country in Europe.

Online fraud and digital crime in Sweden have surged, with criminals taking 1.2 billion kronor in 2023 through scams like the one Bagley fell for, doubling from 2021. Law-enforcement agencies estimate that the size of Sweden's criminal economy could amount to as high as 2.5% of the country's gross domestic product. To counter the digital crime spree, Swedish authorities have put pressure on banks to tighten security measures and make it harder on tech-savvy criminals, but it's a delicate balancing act. Going too far could slow down the economy, while doing too little erodes trust and damages legitimate businesses in the process.Using complex webs of fake companies and forging documents to gain access to Sweden's welfare system, sophisticated fraudsters have made Sweden a "Silicon Valley for criminal entrepreneurship," said Daniel Larson, a senior economic crime prosecutor. While the shock of armed violence has grabbed public attention -- the nation's gun-homicide rate tripled between 2012 and 2022 -- economic crime underlies gang activity and needs to be tackled as aggressively, he added. "That has been a strategic mistake," Larson said. "This profit-generating crime is what's fueling organized crime and, in some cases, leads to these conflicts."

Sweden's switch to electronic cash started after a surge of armed robberies in the 1990s, and by 2022, only 8% of Swedes said they had used cash for their latest purchase, according to a central bank survey. Along with neighboring Norway, Sweden has Europe's lowest number of ATMs per capita, according to the IMF. The prevalence of BankID play a role in Sweden's vulnerability. The system works like an online signature. If used, it's considered a done deal and the transaction gets executed immediately. It was designed by Sweden's banks to make electronic payments even quicker and easier than handing over a stack of bills. Since it's original rollout in 2001, it's become part of the everyday Swedish life. On average, the service -- which requires a six-digit code, a fingerprint or a face scan for authentication -- is used more than twice a day by every adult Swede and is involved in everything from filing tax returns to paying for bus tickets.Originally intended as a product by banks for their customers, its use exploded in 2005 after Sweden's tax agency adopted the technology as an identification for tax returns, giving it the government's official seal of approval. The launch of BankID on mobile phones in 2010 increased usage even further, along with public perception that associated cash with criminality.The country's central bank has acknowledged that some of those connotations may have gone too far. "We have to be very clear that there are still honest people using cash," Riksbank Governor Erik Thedeen told Bloomberg.

The Ontario Science Center, a world-class science and cultural institution in Toronto, is shutting down immediately due to the risk that the building's roof could collapse, the province announced Friday. CBC News: The abrupt closure, which the province says could last years, comes after the government's controversial announcement in 2023 that the popular landmark and attraction would be moved to the Ontario Place site -- a move it says will save costs. "The actions taken today will protect the health and safety of visitors and staff," said Infrastructure Minister Kinga Surma in a news release. "We are making every effort to avoid disruption to the public and help the Ontario Science Centre continue delivering on its mandate."

An engineering report this week by Rimkus Consulting Group showed each of the centre's three buildings contain roof panels in a "distressed, high-risk" condition, the Ministry of Infrastructure said in a news release. The panels require fixing by Oct. 31, 2024 to "avoid further stress due to potential snow load which could lead to roof panel failure," the release said. Fixing the roof will cost between $22 million and $40 million, the ministry said, requiring the centre be closed for up to two years. "These estimates are incomplete and subject to change," said the ministry, noting the costs make up only a "small portion" of the funding needed to keep the science centre open. The government says the centre needs $478 million to tackle its "failing infrastructure" and sustain programming.

TikTok revealed it offered the U.S. government a "kill switch" in 2022 to address data protection and national security concerns, allowing the government to shut down the platform if it violated certain rules. The disclosure was made as it began its legal fight against legislation that will require ByteDance to divest TikTok's U.S. assets or face a ban. The BBC reports: "This law is a radical departure from this country's tradition of championing an open Internet, and sets a dangerous precedent allowing the political branches to target a disfavored speech platform and force it to sell or be shut down," they argued in their legal submission. They also claimed the US government refused to engage in any serious settlement talks after 2022, and pointed to the "kill switch" offer as evidence of the lengths they had been prepared to go.

TikTok says the mechanism would have allowed the government the "explicit authority to suspend the platform in the United States at the US government's sole discretion" if it did not follow certain rules. A draft "National Security Agreement", proposed by TikTok in August 2022, would have seen the company having to follow rules such as properly funding its data protection units and making sure that ByteDance did not have access to US users' data. The "kill switch" could have been triggered by the government if it broke this agreement, it claimed.

In a letter - first reported by the Washington Post - addressed to the US Department of Justice, TikTok's lawyer alleges that the government "ceased any substantive negotiations" after the proposal of the new rules. The letter, dated 1 April 2024, says the US government ignored requests to meet for further negotiations. It also alleges the government did not respond to TikTok's invitation to "visit and inspect its Dedicated Transparency Center in Maryland." Further reading: TikTok Says US Ban Inevitable Without a Court Order Blocking Law

Millions of mosquitoes are being released from helicopters in Hawaii in a last-ditch attempt to save rare birds slipping into extinction. From a report: The archipelago's endemic, brightly coloured honeycreeper birds are dying of malaria carried by mosquitoes first introduced by European and American ships in the 1800s. Having evolved with no immunity to the disease, the birds can die after just a single bite. Thirty-three species of honeycreeper have become extinct and many of the 17 that remain are highly endangered, with concerns some could be extinct within a year if no action is taken. Now conservationists are urgently trying to save them with an unusual strategy: releasing more mosquitoes.

Every week a helicopter drops 250,000 male mosquitoes with a naturally occurring bacterium that acts as birth control on to the islands of the remote archipelago. Already, 10 million have been released. "The only thing that's more tragic is if [the birds] went extinct and we didn't try. You can't not try," said Chris Warren, the forest bird programme coordinator for Haleakala national park on the island of Maui. The population of one honeycreeper, the Kaua'i creeper, or 'akikiki, has dropped from 450 in 2018 to five in 2023, with just one single bird known to be left in the wild on Kaua'i island, according to the national park service.

The Kremlin said on Friday that a U.S. decision to ban sales of Kaspersky's software was a typical move by Washington to stifle foreign competition with American products. From a report: The Biden administration on Thursday said it would ban the sale of antivirus software made by Russia's Kaspersky Lab in the United States, citing what it said was the Kremlin's influence over the company which poses a significant security risk. [...] Kremlin spokesman Dmitry Peskov said that Kaspersky was a "very competitive" company on international markets and that Washington's decision to restrict its sales was a "favourite technique of unfair competition from the United States."

An anonymous reader quotes a report from CBC News: A device federal public servants call "the little robot" began appearing in Gatineau office buildings in March. It travels through the workplace to collect data using about 20 sensors and a 360-degree camera, according to Yahya Saad, co-founder of GlobalDWS, which created the robot. "Using AI on the robot, the camera takes the picture, analyzes and counts the number of people and then discards the image," he said. Part of a platform known as VirBrix, the robot also gathers information on air quality, light levels, noise, humidity, temperature and even measures CO2, methane and radon gas. The aim is to create a better work environment for humans -- one that isn't too hot, humid or dim. Saad said that means more comfortable and productive employees. The technology can also help reduce heating, cooling and hydro costs, he said. "All these measures are done to save on energy and reduce the carbon footprint," Saad explained. After the pilot program in March, VirBrix is set to return in July and October, and the government hasn't ruled out extending its use. It's paying $39,663 to lease the robot for two years.

Bruce Roy, national president of the Government Services Union, called the robot's presence in federal workplaces "intrusive" and "insulting." "People feel observed all the time," he said in French. "It's a spy. The robot is a spy for management." Roy, whose union represents more than 12,000 federal workers across several departments, said the robot is unnecessary because the employer already has ways of monitoring employee attendance and performance. "We believe that one of the robot's tasks is to monitor who is there and who is not," he said. "Folks say, why is there a robot here? Doesn't my employer trust that I'm here and doing my work properly?" [...] Jean-Yves Duclos, the minister of public services and procurement, said the government is instead using the technology as it looks to cut its office space footprint in half over the coming years. "These robots, as we call them, these sensors observe the utilization of office space and will be able to give us information over the next few years to better provide the kind of workplace employees need to do their job," Duclos said in French. "These are totally anonymous methods that allow us to evaluate which spaces are the most used and which spaces are not used, so we can better arrange them." "In those cases we keep the images, but the whole body, not just the face, the whole body of the person is blurred," said Saad. "These are exceptional cases where we need to keep images and then the images would be handed over to the client."

The data is then stored on a server on Canadian soil, according to GlobalDWS.

The Internet Archive's Open Library, which operates similarly to traditional libraries by lending out digital copies of purchased or donated physical books, has been forced to remove 500,000 books due to a lawsuit by big publishers. Mike Masnick reports via Techdirt: As we've discussed at great length, the Internet Archive's Open Library system is indistinguishable from the economics of how a regular library works. The Archive either purchases physical books or has them donated (just like a physical library). It then lends them out on a one-to-one basis (leaving aside a brief moment where it took down that barrier when basically all libraries were shut down due to pandemic lockdowns), such that when someone "borrows" a digital copy of a book, no one else can borrow that same copy. And yet, for all of the benefits of such a system in enabling more people to be able to access information, without changing the basic economics of how libraries have always worked, the big publishers all sued the Internet Archive. The publishers won the first round of that lawsuit. And while the court (somewhat surprisingly!) did not order the immediate closure of the Open Library, it did require the Internet Archive to remove any books upon request from publishers (though only if the publishers made those books available as eBooks elsewhere).

As the case has moved into the appeals stage (where we have filed an amicus brief), the Archive has revealed that around 500,000 books have been removed from the open library. The Archive has put together an open letter to publishers, requesting that they restore access to this knowledge and information -- a request that will almost certainly fall on extremely deaf ears: "We purchase and acquire books -- yes, physical, paper books -- and make them available for one person at a time to check out and read online. This work is important for readers and authors alike, as many younger and low-income readers can only read if books are free to borrow, and many authors' books will only be discovered or preserved through the work of librarians. We use industry-standard technology to prevent our books from being downloaded and redistributed -- the same technology used by corporate publishers. But the publishers suing our library say we shouldn't be allowed to lend the books we own. They have forced us to remove more than half a million books from our library, and that's why we are appealing."

Amazon aims to completely remove plastic air pillows from its packaging in North America by year-end. Going forward, they will be replaced with paper fillers made from 100% recycled content. CNBC reports: It marks Amazon's largest plastic-packaging reduction effort and will help it remove nearly 15 billion plastic pillows annually. "We are working towards full removal in North America by end of year and will continue to innovate, test, and scale in order to prioritize curbside recyclable materials," VP of Mechatronics and Sustainable Packaging Pat Lindner said in the announcement.

New York Governor Kathy Hochul (D) signed two bills into law on Thursday that aim to protect kids and teens from social media harms, making it the latest state to take action as federal proposals still await votes. From a report: One of the bills, the Stop Addictive Feeds Exploitation (SAFE) for Kids Act, will require parental consent for social media companies to use "addictive feeds" powered by recommendation algorithms on kids and teens under 18. The other, the New York Child Data Protection Act, would limit data collection on minors without consent and restrict the sale of such information but does not require age verification. That law will take effect in a year.

States across the country have taken the lead on enacting legislation to protect kids on the internet -- and it's one area where both Republicans and Democrats seem to agree. While the approaches differ somewhat by party, policymakers on both sides have signaled urgent interest in similar regulations to protect kids on the internet. Florida Governor Ron DeSantis (R), for example, signed into law in March a bill requiring parents' consent for kids under 16 to hold social media accounts. And in May, Maryland Governor Wes Moore (D) signed a broad privacy bill into law, as well as the Maryland Kids Code banning the use of features meant to keep minors on social media for extended periods, like autoplay or spammy notifications.

TikTok and Chinese parent ByteDance on Thursday urged a U.S. court to strike down a law they say will ban the popular short app in the United States on Jan. 19, saying the U.S. government refused to engage in any serious settlement talks after 2022. From a report: Legislation signed in April by President Joe Biden gives ByteDance until Jan. 19 of next year to divest TikTok's U.S. assets or face a ban on the app used by 170 million Americans. ByteDance says a divestiture is "not possible technologically, commercially, or legally."

The U.S. Court of Appeals for the District of Columbia will hold oral arguments on lawsuits filed by TikTok and ByteDance along with TikTok users on Sept. 16. TikTok's future in the United States may rest on the outcome of the case which could impact how the U.S. government uses its new authority to clamp down on foreign-owned apps. "This law is a radical departure from this country's tradition of championing an open Internet, and sets a dangerous precedent allowing the political branches to target a disfavored speech platform and force it to sell or be shut down," ByteDance and TikTok argue in asking the court to strike down the law.

An anonymous reader shares a report: YouTube Premium subscribers who use VPNs are reporting that their plans are being automatically canceled by the Google-owned company, according to multiple subscribers who have posted screenshots and descriptions of the issue on Reddit.

A Google support representative confirmed to PCMag that YouTube has started a crackdown. "YouTube has initiated the cancellation of premium memberships for accounts identified as having falsified signup country information," the Google support agent said via chat message. "Due to violating YouTube's Paid Terms of Service, these users will receive an email and an in-app notification informing them of the cancellation."

The Biden administration on Thursday will announce plans to bar the sale of Kaspersky Lab's antivirus software in the United States, citing the firm's large U.S. customers including critical infrastructure providers and state and local governments, according to Reuters. From the report: The company's close ties to the Russian government were found to pose a critical risk, the person said, adding that the software's privileged access to a computer's systems could allow it to steal sensitive information from American computers, install malware or withhold critical updates. The sweeping new rule, using broad powers created by the Trump administration, will be coupled with another move to add the company to a trade restriction list, according to two other people familiar with the matter, dealing a blow to the firm's reputation that could hammer its overseas sales.

The plan to add the cybersecurity company to the entity list, which effectively bars a company's U.S. suppliers from selling to it, and the timing and details of the software sales curb, have not been previously reported. Previously, Kaspersky has said that it is a privately managed company with no ties to the Russian government. The moves show the administration is trying to stamp out any risks of Russian cyberattacks stemming from Kaspersky software and keep squeezing Moscow as its war effort in Ukraine has regained momentum and as the United States has run low on fresh sanctions it can impose on Russia.

An anonymous reader shares a report: Punishing heat waves gripped three continents on Tuesday, breaking records in cities around the Northern Hemisphere less than two weeks after the Earth recorded what scientists said were likely its hottest days in modern history. Firefighters in Greece scrambled to put out wildfires, as parched conditions raised the risk of more blazes throughout Europe. Beijing logged another day of 95-degree heat, and people in Hangzhou, another Chinese city, compared the choking conditions to a sauna. From the Middle East to the American Southwest, delivery drivers, airport workers and construction crews labored under blistering skies. Those who could stay indoors did.

The temperatures, afflicting so much of the world all at once, were a withering reminder that climate change is a global crisis, driven by human-made forces: the emissions of heat-trapping gases, mainly caused by the burning of fossil fuels. John Kerry, the U.S. special envoy for climate change, sought to coordinate some of the global response with the Chinese premier in Beijing, as a heat wave clutched a huge swath of China. "The world really is looking to us for that leadership, particularly on the climate issue," Mr. Kerry told Chinese officials. "Climate, as you know, is a global issue, not a bilateral issue. It's a threat to all of humankind."

The planet has warmed about 2 degrees Fahrenheit since the 19th century and will continue to grow hotter until humans essentially stop burning coal, oil and gas, scientists say. The warmer temperatures contribute to extreme weather events and help make periods of extreme heat more frequent, longer and more intense. Also affecting this year's conditions is the return of El Nino, a cyclical weather pattern that, depending on the sea surface temperature and the pressure of the air above it, can originate in the Pacific and have wide-ranging effects on weather around the world.