Regulation
19 posts
DirtyClone (CVE-2026-43503): Linux local root with no log trail, by overwriting /usr/bin/su
Linux kernel DirtyClone (CVE-2026-43503) lets any local user root the box via XFRM/IPsec packet cloning. No log trail. Patched in 7.1-rc5 — update now.
curl 8.21.0 patches a record 18 CVEs — one hidden 25 years, most found by AI
curl 8.21.0 fixes 18 CVEs at once — a single-release record. One had been hiding since 2001, and at least 11 were found by AI models, including 6 from AISLE alone.
Light aircraft hits Beijing's 528-metre CITIC Tower; videos pulled from Chinese platforms
On June 26, a light sport aircraft (registration B-12PP) struck Beijing's tallest building, CITIC Tower (528m). Videos vanished from Weibo, Douyin, WeChat within hours.
GPT-5.6 needs White House sign-off, customer by customer — first time a US administration vets a frontier model rollout
OpenAI's GPT-5.6 enters limited preview — but the first ~20 enterprise customers each need White House approval. OpenAI says publicly: «this shouldn't be the long-term default.»
Trump announces Apple–Intel US foundry deal — ends Apple's decade of TSMC exclusivity
Trump confirms an Apple–Intel US foundry deal on Truth Social. Intel stock jumped 9% pre-market. Apple's decade-long TSMC exclusivity gets its first crack.
Meituan reportedly paid for rival's dirt — ¥2,000 per case, Taobao Shangou «shocked and furious»
Shanghai Securities News reports Meituan paid restaurants ¥2,000 per case for negative material on rival Taobao Shangou. Taobao Shangou says it's «shocked and furious».
Sam's Club China CPO out within a week of SAMR talks — four food incidents in six months
China's SAMR called Walmart China in for food safety on June 13. Sam's Club Chief Procurement Officer resigned within a week. Four food incidents in six months.
Xiaohongshu to file confidential Hong Kong IPO at $70B — 4× valuation in 18 months
Xiaohongshu plans a confidential Hong Kong IPO filing by end of June at a $70B target. The valuation has 4×'d in 18 months. Underwriters: Goldman, CICC.
Anthropic overtakes OpenAI in enterprise share — May 41% vs 39.5%
Per Ramp's expense data, Anthropic's share of enterprise AI subscriptions hit 41% in May, edging past OpenAI's 39.5% — first reversal. Export controls became a tailwind.
Redis patches 5 RCE bugs at once — one hidden two years, PoC public
Redis patched five critical RCE bugs at once on May 5, affecting 7.2.0–8.6.2. CVE-2026-23479 had been hiding for two years. PoC chains are public. Upgrade immediately.
Linux CIFSwitch — 18-year-old kernel LPE, PoC public, found by AI semantic graph analysis
Linux kernel CIFSwitch — an 18-year-old local privilege escalation, found via AI-assisted semantic graph analysis. PoC public. Major distros vulnerable, patch and isolate now.
NYT: one job still growing in the AI era — cybersecurity
NYT: in the AI era, cybersecurity is one of the few jobs still growing.
Musk and Zuckerberg killed Trump's AI EO — even «voluntary review» was too much
Hours before signing, Trump shelved a voluntary 90-day federal AI safety review EO. Musk, Zuckerberg, and David Sacks called Trump directly — the accelerationist faction won even against voluntary review.
Tesla FSD finally launches in China — but rivals are years ahead
Tesla launches FSD in China after years of waiting — but as Level 2, hands-on-wheel. Xpeng Mpilot already holds 60.1% of China NOA share; Baidu Apollo Go runs commercial robotaxis.
Anthropic pushes into Europe — Milan office, international staff to triple
Anthropic opens a Milan office, following Paris and Munich. EMEA revenue is growing 9× annualized — fastest-growing region. International headcount target: triple again, including new data center hires across Europe.
Tencent Music finalizes Ximalaya buyout — SAMR forces end to exclusive rights
Tencent Music's acquisition of Ximalaya closed on May 18 — total ~¥18.6B. China's SAMR attached five conditions, the core one being giving up all exclusive audio rights and existing exclusive deals.
NVIDIA Q1 — $81.6B revenue, +85% YoY, $80B buyback announced
NVIDIA's FY27 Q1: $81.6B revenue (+85% YoY), data center $75.2B (+92%), $58.3B net income. Board authorizes $80B buyback. Quarterly dividend up 25× to $0.25.
GitHub internal repo breach — 3,800 repos accessed, supply chain risk unresolved
GitHub confirms ~3,800 internal repos were accessed by attackers. Hacker group TeamPCP listed source code for $50K+. Entry path: a poisoned VS Code extension (likely Nx Console v18.95.0) on an employee machine.
OpenAI prepares for IPO — largest AI listing ever, target $850B
OpenAI plans a confidential SEC IPO filing this Friday, targeting September listing at $850B+ valuation. Goldman and Morgan Stanley underwriting. Musk's lawsuit dismissed as too late.