R-Sync 同期🦀🗿

Google is making big changes to its search engine. Instead of mostly showing links to websites, it’s now going to put AI-generated answers and interactive features front and center. Starting next Tuesday, search results will include bigger conversation-style boxes, AI information assistants, and personalized mini-apps powered by Gemini. The old “ten blue links” era is basically over. This shift will send even less traffic to independent websites and news publishers on top of the drops many have already seen from Google’s AI overviews. Publishers who rely on Google to get readers will need to adapt fast, because fewer people will click through to the original content.

🇯🇵 1 in 3 Japanese companies are already using or thinking about deploying AI-powered robots, with automakers leading the charge. The driver is simple: Japan is running out of workers and robots are the plan. Japan just needs to hold off China and the U.S. first. They are giving Japan serious competition in the next generation of autonomous robots, and its old industrial giants don't have the edge they once did. Source: Reuters

npm's 𝚝𝚎𝚛𝚖𝚒𝚗𝚊𝚕-𝚕𝚘𝚐𝚐𝚎𝚛-𝚞𝚝𝚒𝚕𝚜@𝟷.𝟷.0 is Cross-platform infostealer dropper. RC4-obfuscated postinstall (𝚞𝚝𝚒𝚕𝚜.𝚌𝚓𝚜) downloads MicrosoftSystem64 binary from HuggingFace (Lordplay/system-releases). Installs persistence (LaunchAgent/schtasks/systemd). Targets browser credential stores. IOCs: https://t.co/UZCVclv9pR

GitHub has reportedly been hacked. A group called TeamPCP claims it gained unauthorized access to GitHub’s internal systems and stole data from around 4,000 private and internal repositories, including source code and company files. They are now trying to sell this stolen data for more than $50,000 on underground forums and have said they will release it for free if no one buys it. GitHub is investigating the unauthorized access and says it has found no evidence so far that customer data, organizations, or customer repositories were affected.

1/ We are sharing additional details regarding our investigation into unauthorized access to GitHub's internal repositories. Yesterday we detected and contained a compromise of an employee device involving a poisoned VS Code extension. We removed the malicious extension version, isolated the endpoint, and began incident response immediately.

We are investigating unauthorized access to GitHub’s internal repositories. While we currently have no evidence of impact to customer information stored outside of GitHub’s internal repositories (such as our customers’ enterprises, organizations, and repositories), we are closely monitoring our infrastructure for follow-on activity.

🚨 Major supply chain attack targeting npm is in progress. Multiple packages compromised and injected with Shai-Hulud style malware. [email protected] (4.2M dl/mo) [email protected] (3.8M dl/mo) @antv/[email protected] (2.2M dl/mo) [email protected] (1.15M) @antv/[email protected] (1M) @antv/[email protected] (1.1M) @antv/[email protected] (975K) @antv/[email protected] (883K) @antv/[email protected] (751K) @antv/[email protected] [email protected] (4.2M) [email protected] (1.15M) @antv/[email protected] (1M) @antv/[email protected] (975K) @antv/[email protected] (751K) @antv/[email protected] (1.25M) @antv/[email protected] (547K)

Mustafa Suleyman says 18 months until AI automates all white-collar work. Microsoft AI CEO Mustafa Suleyman predicts "human-level performance on most professional tasks" within 18 months. Accounting, legal, marketing, project management, all fully automated. "Suleyman predicted “human-level performance on most, if not all professional tasks” being done by AI. Most tasks that involve “sitting down at a computer” will be fully automated by AI within the next year or 18 months, he said, naming accounting, legal, marketing, and even project management as vulnerable." (Fortune) Suleyman says his mission is building "superintelligence" and that creating a new AI model will soon be "like creating a podcast or writing a blog." Via Fortune

OpenAI is introducing a feature that allows ChatGPT to connect with users’ bank accounts through Plaid, a platform already used by many financial apps. The feature gives ChatGPT access to balances, transaction history, subscriptions, debts, and investment summaries to help users understand and manage their finances. OpenAI says the AI cannot move money, make transactions, or access full banking credentials. Financial data will not be used for AI training unless users opt in. AI assistants are evolving into full digital companions connected to email, calendars, shopping, health tools, and now banking information.

We’re introducing a new GitHub Certified: Agentic AI Developer (GH-600). As AI agents become part of modern development workflows, this role-based certification focuses on how developers and teams operate, supervise, and integrate agents across the SDLC. If you’re already working with tools like GitHub Copilot or exploring agent-driven workflows, we’d love your input. Learn more and get involved. https://t.co/ruiYtlsYnj