As businesses around the world have shifted their digital infrastructure over the last decade from self-hosted servers to the cloud , they’ve benefitted from the standardized, built-in security features of major cloud providers like Microsoft . But with so much riding on these systems, there can be potentially disastrous consequences at a massive scale if something goes wrong. Case in point: Security researcher Dirk-jan Mollema recently stumbled upon a pair of vulnerabilities in Microsoft Azure’s identity and access management platform that could have been exploited for a potentially cataclysmic takeover of all Azure customer accounts.

Known as Entra ID, the system stores each Azure cloud customer’s user identities, sign-in access controls, applications, and subscription management tools. Mollema has studied Entra ID security in depth and published multiple studies about weaknesses in the system, which was formerly known as Azure Active Directory. But while preparing to present at the Black Hat security conference in Las Vegas in July, Mollema discovered two vulnerabilities that he realized could be used to gain global administrator privileges—essentially god mode—and compromise every Entra ID directory, or what is known as a “tenant.” Mollema says that this would have exposed nearly every Entra ID tenant in the world other than, perhaps, government cloud infrastructure.

“I was just staring at my screen. I was like, ‘No, this shouldn’t really happen,’” says Mollema, who runs the Dutch cybersecurity company Outsider Security and specializes in cloud security. “It was quite bad. As bad as it gets, I would say.”

Read full article

Comments

Two things about the Specialized Turbo Vado SL 2 6.0 Carbon are hard to fathom: One is how light and lithe it feels as an e-bike, even with the battery off; the other is how hard it is to recite its full name when other riders ask you about the bike at stop lights and pit stops.

I’ve tested about a half-dozen e-bikes for Ars Technica. Each test period has included a ride with my regular group for about 30 miles. Nobody else in my group rides electric, so I try riding with no assist, at least part of the way. Usually I give up after a mile or two, realizing that most e-bikes are not designed for unpowered rides.

On the Carbon (as I’ll call it for the rest of this review), you can ride without power. At 35 pounds, it’s no gram-conscious road bike, but it feels lighter than that number implies. My daily ride is an aluminum-framed model with an internal geared hub that weighs about the same, so I might be a soft target. But it’s a remarkable thing to ride an e-bike that starts with a good unpowered ride and lets you build on that with power.

Read full article

Comments

Some time soon, perhaps next year, SpaceX will attempt to fly one of its enormous Starship rockets from low-Earth orbit back to its launch pad in South Texas. A successful return and catch at the launch tower would demonstrate a key capability underpinning Elon Musk's hopes for a fully reusable rocket.

In order for this to happen, SpaceX must overcome the tyranny of geography. Unlike launches over the open ocean from Cape Canaveral, Florida, rockets departing from South Texas must follow a narrow corridor to steer clear of downrange land masses.

All 10 of the rocket's test flights so far have launched from Texas toward splashdowns in the Indian or Pacific Oceans. On these trajectories, the rocket never completes a full orbit around the Earth, but instead flies an arcing path through space before gravity pulls it back into the atmosphere.

Read full article

Comments

The situation with the fiscal year 2026 budget for the United States is, to put it politely, kind of a mess.

The White House proposed a budget earlier this year with significant cuts for a number of agencies, including NASA. In the months since then, through the appropriations process, both the House and Senate have proposed their own budget templates. However, Congress has not passed a final budget, and the new fiscal year begins on October 1.

As a result of political wrangling over whether to pass a "continuing resolution" to fund the government before a final budget is passed, a government shutdown appears to be increasingly likely.

Read full article

Comments

No one could accuse the European Space Agency and its various contractors of moving swiftly when it comes to the development of reusable rockets. However, it appears that Europe is finally making some credible progress.

This week, the France-based ArianeGroup aerospace company announced that it had completed the integration of the Themis vehicle, a prototype rocket that will test various landing technologies, on a launch pad in Sweden. Low-altitude hop tests, a precursor for developing a rocket's first stage that can vertically land after an orbital launch, could start late this year or early next.

"This milestone marks the beginning of the 'combined tests,' during which the interface between Themis and the launch pad's mechanical, electrical, and fluid systems will be thoroughly trialed, with the aim of completing a test under cryogenic conditions," the company said.

Read full article

Comments

A two-day federal vaccine advisory meeting crammed with chaos, confusion, inept debate, bizarre comments, and a hot mic catching someone saying "you're an idiot," ended with an unexpected twist: The advisors unanimously voted—possibly unintentionally—to maintain broad access to COVID-19 vaccines.

In the 12–0 vote, the committee of advisors selected by anti-vaccine activist Robert F. Kennedy Jr. adopted a recommendation for adults 65 and older and people aged 6 months to 64 years to get a COVID-19 vaccine based on shared clinical decision-making. If the Centers for Disease Control and Prevention adopts the recommendation, it will maintain requirements that federal and private health insurance plans cover COVID-19 vaccines at no cost.

Earlier this year, the FDA limited the approvals of this year's shots, which have previously been available to anyone 6 months of age or older. The FDA's new restriction limits them to adults aged 65 and up and for people between the ages of 6 months and 64 years who have an underlying medical condition that puts them at high risk of severe COVID-19.

Read full article

Comments

Since July, the state of Oklahoma has been consumed by important investigative questions, including:

• Why did naked women appear on a state-owned TV set during an official Board of Education meeting? Was someone in the room inadvertently streaming pornography from a personal device to the TV? Will anyone be prosecuted for what happened?
• Were the board members who complained about the video directed by the governor to "lie about me," as the state's pugnacious, hard-right Superintendent of Education asked?
• Why was a "chiropractic table" involved in the scene? And why did the video feature, as one board member noted, a retro vibe and "a guy with a white hat, kind of a Gilligan-type hat"?

We now have answers to all of those questions.

After a lengthy investigation by the Oklahoma County Sheriff's Office and the State Bureau of Investigation, and then a lengthy consideration of their reports, the Oklahoma County District Attorney this week announced that "there is insufficient evidence to file criminal charges."

Read full article

Comments

Less than a month ago, we looked at how current game console prices were historically high due to price increases from all three major console makers. Today, that analysis is already a bit out of date, as Microsoft has announced its second set of Xbox price increases this year in the US.

The new Xbox price hikes, which will go into effect on October 3, or roughly five months after the last set of Xbox price hikes , are as follows:

• Xbox Series S 512GB: $400 (up from $380 in May / launched at $300 in 2020)
• Xbox Series S 1TB: $450 (up from $430 in May / launched at $350 in 2023)
• Xbox Series X Digital: $600 (from $550 in May / launched at $450 in 2024)
• Xbox Series X: $650 (up from $600 in May / launched at $500 in 2020)
• Xbox Series X 2TB Galaxy Special Edition: $800 (up from $730 in May / launched at $600 in 2024)

In an Xbox Support post , Microsoft cited the now-standard "changes in the macroeconomic environment" for the decision to move pricing yet again. "We understand that these changes are challenging, and they were made with careful consideration," the company wrote. "Looking ahead, we continue to focus on offering more ways to play more games across any screen and providing value for Xbox players.

Read full article

Comments

In 2014, University of California, Berkeley biologist Robert Dudley wrote a book called The Drunken Monkey: Why We Drink and Abuse Alcohol . His controversial " drunken monkey hypothesis " proposed that the human attraction to alcohol goes back about 18 million years, to the origin of the great apes, and that social communication and sharing food evolved to better identify the presence of fruit from a distance. At the time, skeptical scientists insisted that this was unlikely because chimpanzees and other primates just don't eat fermented fruit or nectar.

But reports of primates doing just that have grown over the ensuing two decades. Dudley co-authored a new paper published in the journal Science Advances reporting the first measurements of the ethanol content of fruits favored by chimps in Ivory Coast and Uganda, finding that the chimps are consuming 14 grams of alcohol every day, the equivalent of a standard alcoholic drink in the US. After adjusting for the chimps' lower body mass, the authors concluded the chimps are consuming nearly two drinks per day.

Earlier this year, we reported that researchers had caught wild chimpanzees on camera engaging in what appears to be sharing fermented African breadfruit with measurable alcoholic content. That observational data was the first evidence of the sharing of alcoholic foods among nonhuman great apes in the wild. They recorded 10 instances of selective fruit sharing among 17 chimps, with the animals exhibiting a marked preference for riper fruit. Between April and July 2022, the authors measured the alcohol content of the fruit with a handy portable breathalyzer and found almost all of the fallen fruit (90 percent) contained some ethanol, with the ripest containing the highest levels—the equivalent of 0.61 percent ABV (alcohol by volume).

Read full article

Comments