The state-sponsored Chinese hacking campaign known as Volt Typhoon is exploiting a bug in a California-based startup to hack American and Indian internet companies, according to security researchers. From a report: Volt Typhoon has breached four US firms, including internet service providers, and another in India through a vulnerability in a Versa Networks server product, according to Lumen's unit Black Lotus Labs. Their assessment, much of which was published in a blog post on Tuesday, found with "moderate confidence" that Volt Typhoon was behind the breaches of unpatched Versa systems and said exploitation was likely ongoing.

Versa, which makes software that manages network configurations and has attracted investment from Blackrock and Sequoia Capital, announced the bug last week and offered a patch and other mitigations. The revelation will add to concerns over the susceptibility of US critical infrastructure to cyberattacks. The US this year accused Volt Typhoon of infiltrating networks that operate critical US services, including some of the country's water facilities, power grid and communications sectors, in order to cause disruptions during a future crisis, such as an invasion of Taiwan.

An anonymous reader quotes a report from CBC.ca: Prime Minister Justin Trudeau announced Monday Canada will impose punitive tariffs on Chinese-made electric vehicles -- copying a similar initiative that the U.S. is already pursuing to stop a flood of what's been described as unfairly state-subsidized cars. Trudeau made the announcement at the federal cabinet retreat in Halifax where ministers are meeting to craft a strategy for the year ahead -- the last year before an expected federal election in October 2025. Amid industry pressure to copy the U.S. program, Trudeau said a 100 percent surtax will be levied on all Chinese-made EVs, effective Oct. 1. The tariff would effectively double the price of imported vehicles, as it is expected most of the tax would be passed on to consumers.

Ottawa is following through now, Trudeau said, to "level the playing field for Canadian workers" and allow Canada's nascent EV industry to compete at home, in North America and globally. The tariff will apply to electric and certain hybrid passenger automobiles, trucks, buses and delivery vans. Chinese brands like BYD are not a major player in Canada's EV market right now but imports from China have exploded in recent years as Tesla switched from U.S. factories for its Canadian sales to its manufacturing plant in Shanghai. The new tariff will apply to those Shanghai-made Teslas that are sold in Canada -- a development that is expected to force the U.S. automaker to supply the Canadian market with vehicles made at one if its other plants in the U.S. or Europe instead. "Unfortunately, Canada made a decision today that will result in fewer affordable electric vehicles for Canadians, less competition and more climate pollution," said Joanna Kyriazis, director of public affairs at Clean Energy Canada. "Not only could today's announcement have a chilling effect on future EV sales, it could drive up EV prices and slow adoption in the near-term as well," Kyriazis said.

Flavio Volpe, the president of the Automotive Parts Manufacturers' Association who lobbied Ottawa to follow through with matching the U.S. tariffs, responded: "Sure, what the Chinese are doing is selling us green products that help fulfill some of our EV mandates, but they do it in a regulatory environment where they forgo any stewardship of the environment," he said.

Deputy Prime Minister Chrystia Freeland added that the Chinese industry is "built on abysmal labour standards and it is built on abysmal environmental standards."

An anonymous reader quotes a report from the Financial Times: Ikea is taking on the likes of eBay, Craigslist, and Gumtree with a peer-to-peer marketplace for customers to sell secondhand furniture to each other. Ikea Preowned will be tested in Madrid and Oslo until the end of the year with the aim of rolling out the buying and selling platform globally, according to Jesper Brodin, chief executive of Ingka, the main operator of Ikea stores. [...] Ikea has had a small offering under which it buys used furniture from customers and resells it in store. But the new platform is more ambitious, aiming to tackle the secondhand market for customers selling directly to each other -- an area where Brodin estimates Ikea has a higher market share than in new furniture sales. Customers enter their product, their own pictures, and a selling price, while Ikea's own artificial intelligence-enabled database brings in its own promotional images and measurements. The buyer collects the furniture directly from the seller, who has the option of receiving money or a voucher from Ikea with a 15 percent bonus.

"Very often there is a monopoly or oligopoly on platforms that operate," said Brodin, talking about eBay or digital classified ad services such as Gumtree in the UK and Finn in Norway. Finn has 8,700 items from Ikea listed in Oslo alone. Early offerings on Ikea Preowned include large items such as sofas for up to $670 (600 euros) and wardrobes for $500 (450 euros) as well as smaller items such as a toilet roll holder for $4.50 (4 euros). Listings are free, but Brodin said Ikea could eventually charge "a symbolic fee, a humble fee." He added: "We're going to verify the full scope including the economics. If a lot of people use the offer to get a discount with Ikea -- it's a good way to reconnect with customers. I am very curious. I think it makes business sense." Ikea has previously tested selling its new furniture on third-party platforms such as Alibaba's Tmall in China, but the Preowned platform marks its first foray into secondhand marketplaces. It also dovetails with the retailer's wish to become "circular and climate positive" by 2030.

IBM is the latest American company to downsize its presence in China amid heightened tensions between Washington and Beijing. From a report: China's efforts to decrease its dependence on the West have ratcheted up local market competition -- and U.S. tech giants including Microsoft are looking elsewhere to house their operations. IBM will shut down its research and development department in China, impacting about 1,000 jobs, multiple outlets reported Monday.

The Chinese government has encouraged domestic companies to overtake and push out U.S. tech dominance out of the country in a bid for self-sufficiency in the sector, the Wall Street Journal reported earlier this year. IBM has faced mounting competition in China in recent years, IBM executive Jack Hergenrother told employees virtually Monday, per the Journal. IBM reportedly plans to move its R&D operations to other overseas facilities. According to the company's 2023 annual report released earlier this year, the company saw its revenue in China drop 19.6% last year.

SecurityWeek reports: A significant backdoor in millions of contactless cards made by China-based Shanghai Fudan Microelectronics Group allows instantaneous cloning of RFID smart cards used to open office doors and hotel rooms around the world.

French security services firm Quarkslab has made an eye-popping discovery... Although the backdoor requires just a few minutes of physical proximity to an affected card to conduct an attack, an attacker in a position to carry out a supply chain attack could execute such attacks instantaneously at scale, researcher Philippe Teuwen explained in a paper.
Thanks to Slashdot reader wiredmikey for sharing the article.

"At The Linux Foundation's Open Source Summit China conference, Linus Torvalds and his buddy Dirk Hohndel, Verizon's Head of the Open Source Program Office, once more chatted about Linux development and related issues," reports ZDNet: Torvalds: "Later this year, we will have the 20th anniversary of the real-time Linux project. This is a project that literally started 20 years ago, and the people involved are finally at that point where they feel like it is done... well, almost done. They're still tweaking the last things, but they hope it will soon be ready to be completely merged in the upstream kernel this year... You'd think that all the basics would have been fixed long ago, but they're not. We're still dealing with basic issues such as memory management...."

Switching to a more modern topic, the introduction of the Rust language into Linux, Torvalds is disappointed that its adoption isn't going faster. "I was expecting updates to be faster, but part of the problem is that old-time kernel developers are used to C and don't know Rust. They're not exactly excited about having to learn a new language that is, in some respects, very different. So there's been some pushback on Rust." On top of that, Torvalds commented, "Another reason has been the Rust infrastructure itself has not been super stable...."

The pair then moved on to the hottest of modern tech topics: AI. While Torvalds is skeptical about the current AI hype, he is hopeful that AI tools could eventually aid in code review and bug detection. In the meantime, though, Torvalds is happy about AI's side effects. For example, he said, "When AI came in, it was wonderful, because Nvidia got much more involved in the kernel. Nvidia went from being on my list of companies who are not good to my list of companies who are doing really good work."

Chinese scientists have developed a new method to produce significant quantities of water from lunar soil brought back by the Chang'e-5 mission in 2020, state broadcaster CCTV reported. The "brand-new method" involves heating moon minerals containing hydrogen to generate water vapor, which could be crucial for future lunar research stations and space exploration. Reuters reports: "After three years of in-depth research and repeated verification, a brand-new method of using lunar soil to produce large amounts of water was discovered, which is expected to provide important design basis for the construction of future lunar scientific research stations and space stations," said CCTV. The discovery could have important implications for China's decades-long project of building a permanent lunar outpost amid a U.S.-China race to find and mine the moon's resources.

Using the new method, one tonne of lunar soil will be able to produce about 51-76 kg of water, equivalent to more than a hundred 500ml bottles of water, or the daily drinking water consumption of 50 people, the state broadcaster said. China hopes that recent and future lunar expeditions will set the foundations to build the International Lunar Research Station (ILRS), an initiative it is co-leading with Russia.

China's world-leading clean energy boom has passed another benchmark, with its wind and solar capacity surpassing a target set by President Xi Jinping almost six years earlier than planned. From a report: The nation added 25 gigawatts of turbines and panels in July, expanding total capacity to 1,206 gigawatts, according to a statement from the National Energy Administration on Friday. Xi set a goal in December 2020 for at least 1,200 gigawatts from the clean energy sources by 2030. China by far outspends the rest of the world when it comes to clean energy, and has repeatedly broken wind and solar installation records in recent years. The rapid growth has helped lead to declines in coal power generation this summer and may mean the world's biggest polluter has already reached peak emissions well before its 2030 target.

Linux creator Linus Torvalds expressed disappointment with the slow adoption of Rust in the Linux kernel at the Linux Foundation's Open Source Summit China. In a conversation with Verizon executive Dirk Hohndel, Torvalds said, "I was expecting updates to be faster, but part of the problem is that old-time kernel developers are used to C and don't know Rust. They're not exactly excited about having to learn a new language that is, in some respects, very different." This resistance has led to "some pushback on Rust," he said. "Another reason has been the Rust infrastructure itself has not been super stable," he added.

An anonymous reader quotes a report from the Associated Press: A U.S. government report expected to stir debate concluded that fluoride in drinking water at twice the recommended limit is linked with lower IQ in children. The report, based on an analysis of previously published research, marks the first time a federal agency has determined -- "with moderate confidence" -- that there is a link between higher levels of fluoride exposure and lower IQ in kids. While the report was not designed to evaluate the health effects of fluoride in drinking water alone, it is a striking acknowledgment of a potential neurological risk from high levels of fluoride. Fluoride strengthens teeth and reduces cavities by replacing minerals lost during normal wear and tear, according to the U.S. Centers for Disease Control and Prevention. The addition of low levels of fluoride to drinking water has long been considered one of the greatest public health achievements of the last century.

The long-awaited report released Wednesday comes from the National Toxicology Program, part of the Department of Health and Human Services. It summarizes a review of studies, conducted in Canada, China, India, Iran, Pakistan, and Mexico, that concludes that drinking water containing more than 1.5 milligrams of fluoride per liter is consistently associated with lower IQs in kids. The report did not try to quantify exactly how many IQ points might be lost at different levels of fluoride exposure. But some of the studies reviewed in the report suggested IQ was 2 to 5 points lower in children who'd had higher exposures.

Since 2015, federal health officials have recommended a fluoridation level of 0.7 milligrams per liter of water, and for five decades before the recommended upper range was 1.2. The World Health Organization has set a safe limit for fluoride in drinking water of 1.5. The report said that about 0.6% of the U.S. population -- about 1.9 million people -- are on water systems with naturally occurring fluoride levels of 1.5 milligrams or higher. The 324-page report did not reach a conclusion about the risks of lower levels of fluoride, saying more study is needed. It also did not answer what high levels of fluoride might do to adults.

Approvals for new coal-fired power plants in China dropped by 80% in the first half of this year compared to last, according to an analysis from Greenpeace and the Shanghai Institutes for International Studies. The Associated Press reports: A review of project documents by Greenpeace East Asia found that 14 new coal plants were approved from January to June with a total capacity of 10.3 gigawatts, down 80% from 50.4 gigawatts in the first half of last year. Authorities approved 90.7 gigawatts in 2022 and 106.4 gigawatts in 2023, a surge that raised alarm among climate experts. China leads the world in solar and wind power installations but the government has said that coal plants are still needed for periods of peak demand because wind and solar power are less reliable. While China's grid gives priority to greener sources of energy, experts worry that it won't be easy for China to wean itself off coal once the new capacity is built.

"We may now be seeing a turning point," Gao Yuhe, the project lead for Greenpeace East Asia, said in a statement. "One question remains here. Are Chinese provinces slowing down coal approvals because they've already approved so many coal projects ...? Or are these the last gasps of coal power in an energy transition that has seen coal become increasingly impractical? Only time can tell." [...] Gao said that China should focus its resources on better connecting wind and solar power to the grid rather than building more coal power plants. Coal provides more than 60% of the country's electricity. "Coal plays a foundation role in China's energy security," Li Fulong, an official of National Energy Administration, said at a news conference in June. The report notes that China is also looking to nuclear power to help reach its carbon reduction targets. The country approved five nuclear power projects on Monday with 11 units and a total cost of $28 billion.

Waymo has unveiled its sixth-generation robotaxi, an electric minivan made by Chinese automaker Zeekr. While the company claims it's more advanced than previous generations, it features fewer sensors to help reduce costs. The Verge reports: [W]ithin its high-powered computer, it contains all the learnings of the previous five generations of Waymo's autonomous vehicles, meaning it won't have to do as much real-world testing as past models before it can be rolled out to the public. But looming over Waymo's assertion that its new robotaxi will be cheaper to produce is the possibility that it could also be subject to costly new tariffs against Chinese-made electric vehicles. Earlier this year, the Biden administration said it would quadruple tariffs on EVs from China to 100 percent, from the current 25 percent, as a way to "protect American workers and American companies from China's unfair trade practices." [...]

Waymo says the sixth-gen robotaxi will feature a streamlined sensor suite of "16 cameras, 5 lidar, 6 radar, and an array of external audio receivers (EARs)." These sensors will help provide "overlapping fields of view, all around the vehicle, up to 500 meters away, day and night, and in a range of weather conditions." That's the equivalent of over five football fields of visible range. Waymo's use of multiple sensors is important for redundancy, in which multiple sensors and cameras can ensure the vehicle can continue to detect and respond to its surroundings if something fails. It's unclear where and when the new sixth-gen robotaxis will first appear. "Waymo currently operates in Phoenix, San Francisco, and Los Angeles, with plans to launch commercial service in Austin, Texas," notes the report. "The company has been manually testing the Zeekr-made minivans on public roads, with the goal of adding them to its commercial fleet sometime soon."

In 1999 Los Angeles Times reporter Michael Hiltzik co-authored a Pulitzer Prize-winning story. Now a business columnist for the Times, this week he covers new pushback on the COVID lab leak claim: Here's an indisputable fact about the theory that COVID originated in a laboratory: Most Americans believe it to be true. That's important for several reasons. One is that evidence to support the theory is nonexistent.

Another is that the claim itself has fomented a surge of attacks on science and scientists that threatens to drive promising researchers out of the crucial field of pandemic epidemiology. That concern was aired in a commentary by 41 biologists, immunologists, virologists and physicians published Aug. 1 in the Journal of Virology. The journal probably isn't in the libraries of ordinary readers, but the article's prose is commendably clear and its conclusions eye-opening. "The lab leak narrative fuels mistrust in science and public health infrastructures," the authors observe. "Scientists and public health professionals stand between us and pandemic pathogens; these individuals are essential for anticipating, discovering, and mitigating future pandemic threats. Yet, scientists and public health professionals have been harmed and their institutions have been damaged by the skewed public and political opinions stirred by continued promotion of the lab leak hypothesis in the absence of evidence...."

[O]ne can't advance the lab leak theory without positing a vast conspiracy encompassing scientists in China and the U.S., and Chinese and U.S. government officials. How else could all the evidence of a laboratory event that resulted in more than 7 million deaths worldwide be kept entirely suppressed for nearly five years... "Validating the lab leak hypothesis requires intelligence evidence that the WIV possessed or carried out work on a SARS-CoV-2 precursor virus prior to the pandemic," the Virology paper asserts. "Neither the scientific community nor multiple western intelligence agencies have found such evidence." Despite that, "the lab leak hypothesis receives persistent attention in the media, often without acknowledgment of the more solid evidence supporting zoonotic emergence," the paper says...

I've written before about the smears, physical harassment and baseless accusations of fraud and other wrongdoing that lab leak propagandists have visited upon scientists whose work has challenged their claims; similar attacks have targeted experts who have worked to debunk other anti-science narratives, including those about global warming and vaccines... What's notable about the Virology paper is that it represents a comprehensive and long-overdue pushback by the scientific community against such behavior. More to the point, it focuses on the consequences for public health and the scientific mission from the rise of anti-science propaganda... "Scientists have withdrawn from social media platforms, rejected opportunities to speak in public, and taken increased safety measures to protect themselves and their families," the authors report. "Some have even diverted their work to less controversial and less timely topics. We now see a long-term risk of having fewer experts engaged in work that may help thwart future pandemics...."

Thanks in part to social media, anti-science has become more virulent and widespread, the Virology authors write.

According to Kaspersky, hackers linked to Chinese threat actors have targeted Russian state agencies and tech companies in a campaign named EastWind. The Record reports: [T]he attackers used the GrewApacha remote access trojan (RAT), an unknown PlugY backdoor and an updated version of CloudSorcerer malware, which was previously used to spy on Russian organizations. The GrewApacha RAT has been used by the Beijing-linked hacking group APT31 since at least 2021, the researchers said, while PlugY shares many similarities with tools used by the suspected Chinese threat actor known as APT27.

According to Kaspersky, the hackers sent phishing emails containing malicious archives. In the first stage of the attack, they exploited a dynamic link library (DLL), commonly found in Windows computers, to collect information about the infected devices and load the additional malicious tools. While Kaspersky didn't explicitly attribute the recent attacks to APT31 or APT27, they highlighted links between the tools that were used. Although PlugY malware is still being analyzed, it is highly likely that it was developed using the DRBControl backdoor code, the researchers said. This backdoor was previously linked to APT27 and bears similarities to PlugX malware, another tool typically used by hackers based in China.

An anonymous reader shares a report: A record 15 national heat records have been broken since the start of this year, an influential climate historian has told the Guardian, as weather extremes grow more frequent and climate breakdown intensifies. An additional 130 monthly national temperature records have also been broken, along with tens of thousands of local highs registered at monitoring stations from the Arctic to the South Pacific, according to Maximiliano Herrera, who keeps an archive of extreme events.

He said the unprecedented number of records in the first six months was astonishing. "This amount of extreme heat events is beyond anything ever seen or even thought possible before," he said. "The months from February 2024 to July 2024 have been the most record-breaking for every statistic." This is alarming because last year's extreme heat could be largely attributed to a combination of man-made global heating -- caused by burning gas, oil, coal and trees -- and a natural El Nino phenomenon, a warming of the tropical Pacific Ocean surface that is associated with higher temperatures in many parts of the world. The El Nino has been fading since February of this year, but this has brought little relief.

"Far from dwindling with the end of El Nino, records are falling at even much faster pace now compared to late 2023," said Herrera. New ground is broken every day at a local level. On some days, thousands of monitoring stations set new records of monthly maximums or minimums. The latter is particularly punishing as high night-time temperatures mean people and ecosystems have no time to recover from the relentless heat. In late July, for example, China's Yueyang region sweltered though an unprecedentedly elevated low of 32C during its dark hours, with dangerously high humidity.

Apple will begin letting third parties use the iPhone's payment chip to handle transactions, a move that allows banks and other services to compete with the Apple Pay platform. From a report: The move, announced Wednesday, follows years of pressure from regulators, including those in the European Union. Apple said it will allow developers to use the component starting in iOS 18.1, an upcoming software update for the iPhone. The payment chip relies on a technology called NFC, or near-field communication, to share information when the phone is near another device.

The change will allow outside providers to use the NFC chip for in-store payments, transit system fares, work badges, home and hotel keys, and reward cards. Support for government identification cards will come later, the company said. Users will also be able to set a third-party payment app as their default system, replacing Apple Pay. Apple had been reluctant to open up the chip to developers, citing security concerns. The change also threatens the revenue it generates from Apple Pay transactions. The company takes a cut of all payments made via the iPhone.

An anonymous reader shares a report: Pentagon officials say the U.S. stands at the precipice of a new golden age of defense innovation driven by upstart contractors, advances in technology and a world brimming with threats. The Defense Department's inability to make unorthodox bets, feed a vibrant industrial base and embrace readily available technologies has rendered it under-supplied, the target of dual-use evangelists and vulnerable to more nimble adversaries.

Deputy Defense Secretary Kathleen Hicks said in a speech last week the department "cannot tolerate the same old mindsets" as it butts heads with Russia and China, while also invoking America's mass production overhaul during World War II. Heidi Shyu, the Pentagon's chief tech officer, separately called the clip of "nontraditional, venture-backed companies" entering the defense industry "unprecedented," adding: "They're nipping at the heels, I tell you. I have traditional defense contractors say, 'Hey, this isn't fair.'"

Defense Innovation Unit director Doug Beck said the department is at a "positive tipping point." "We've been given the tools, and now it's about execution and delivery," Beck said. "I think we're well on our way out of the dark age." Hicks' declaration comes one year after she stuck her neck out for Replicator, meant to arm troops with thousands of drones and prove the Pentagon can be agile. That $1 billion gambit is on track, with more than 1,000 AeroVironment-made Switchblade 600 drones already in the pipeline, according to officials.

For the first time, two new all-electric passenger trains are operating in the US, which is woefully behind the rest of the world in electrifying its rolling stock. The Verge: The two new trains are operated by Caltrain. California Governor Gavin Newson and House Speaker Emerita Nancy Pelosi were on hand to take the inaugural ride, which took place on Saturday. The trains were put into regular service the following day, running along the route between San Jose and San Francisco.

It's taken almost 20 years since the idea of electric trains was first proposed in California. But officials insisted the new trains will be quieter and faster than the diesel-powered trains in current operation while also providing a better experience for passengers. The two trains will be joined by 17 others that should be in service by mid-September.

[...] It shouldn't come as any shock that the US is lagging behind the rest of the world in introducing electric trains. India is on the cusp of electrifying 100 percent of its rail lines, while China is nearing three-quarters of its network. Over 57 percent of the rail system in the European Union is electric.

"Not many Americans have August 6 circled on their calendars," writes the New York Times, "but it's a day that the Japanese can't forget."

79 years after an atomic bomb attack on Hiroshima, the Times visits a hospital that "continues to treat, on average, 180 survivors — known as hibakusha — of the blasts each day." The bombs killed an estimated 200,000 men, women and children and maimed countless more. In Hiroshima 50,000 of the city's 76,000 buildings were completely destroyed. In Nagasaki nearly all homes within a mile and a half of the blast were wiped out. In both cities the bombs wrecked hospitals and schools. Urban infrastructure collapsed...

[T]he hibakusha and their offspring have formed the backbone of atomic memory. Many see their life's work as informing the wider world about what it's like to carry the trauma, stigma and survivor's guilt caused by the bombs, so that nuclear weapons may never be used again. Their urgency to do so has only increased in recent years. With an average age of 85, the hibakusha are dying by the hundreds each month — just as the world is entering a new nuclear age. Countries like the United States, China and Russia are spending trillions of dollars to modernize their stockpiles. Many of the safeguards that once lowered nuclear risk are unraveling, and the diplomacy needed to restore them is not happening. The threat of another blast can't be relegated to history...

Kunihiko Sakuma [who was 9 months old the day of the attack]: "People died or got sick not just right after the bombing. The reality is, their symptoms are emerging even today, 79 years later. I thought all this was in the past. But as I started talking to survivors, I realized their suffering was ongoing. The atomic bomb is such an inhumane weapon, and the effects of radiation stay with survivors for a very long time. That's why they need our continued support."
The article includes this quote from Keiko Ogura, who was 8 years old at the time of the attack — and still worries she hasn't done enough to abolish the use of nuclear weapons: "As survivors, we cannot do anything but tell our story. 'For we shall not repeat the evil' — this is the pledge of survivors. Until we die, we want to tell our story, because it's difficult to imagine."

Many of the stories are horrifying. But I'll note this one by Seiichiro Mise — who on the day of the atomic bomb attack was 10 years old: "I got married in 1964. At the time, people would say that if you married an atomic bomb survivor, any kids you had would be deformed.

"Two years later, I got a call from the hospital saying my baby had been born. But on my way, my heart was troubled. I'm an atomic bomb victim. I experienced that black rain. So I felt anguished. Usually new parents simply ask the doctor, 'Is it a boy or girl?' I didn't even ask that. Instead, I asked, 'Does my baby have 10 fingers and 10 toes?'

"The doctor looked unsettled. But then he smiled and said it was a healthy boy. I was relieved."
The first U.S. president to visit Hiroshima was Barack Obama in 2016. The article notes he did not issue the official apology many Japanese had hoped for. But he did say "we have a shared responsibility to look directly into the eye of history and ask what we must do differently to curb such suffering again...

"Someday the voices of the hibakusha will no longer be with us to bear witness. But the memory of the morning of Aug. 6, 1945, must never fade."

Fortune reports that Crowdstrike "is enjoying a moment of strange cultural cachet at the annual Black Hat security conference, as throngs of visitors flock to its booth to snap selfies and load up on branded company shirts and other swag." (Some attendees "collectively shrugged at the idea that Crowdstrike could be blamed for a problem with a routine update that could happen to any of the security companies deeply intertwined with Microsoft Windows.") Others pointed out that Microsoft should take their fair share of the blame for the outage, which many say was caused by the design of Windows in its core architecture that leads to malware, spyware and driver instability. "Microsoft should not be giving any third party that level of access," said Eric O'Neill, a cybersecurity expert, attorney and former FBI operative. "Microsoft will complain, well, it's just the way that the technology works, or licensing works, but that's bullshit, because this same problem didn't affect Linux or Mac. And Crowdstrike caught it super-early."
Their article notes that Crowdstrike is one of this year's top sponsors of the conference. Despite its recent missteps, Crowdstrike had one of the biggest booths, notes TechCrunch, and "As soon as the doors opened, dozens of attendees started lining up." They were not all there to ask tough questions, but to pick up T-shirts and action figures made by the company to represent some of the nation-state and cybercriminal grups it tracks, such as Scattered Spider, an extortion racket allegedly behind last year's MGM Resorts and Okta cyberattacks; and Aquatic Panda, a China-linked espionage group.

"We're here to give you free stuff," a CrowdStrike employee told people gathered around a big screen where employees would later give demos. A conference attendee looked visibly surprised. "I just thought it would be dead, honestly. I thought it would be slower over there. But obviously, people are still fans, right?"

For CrowdStrike at Black Hat, there was an element of business as usual, despite its global IT outage that caused widespread disruption and delays for days — and even weeks for some customers. The conference came at the same time as CrowdStrike released its root cause analysis that explained what happened the day of the outage. In short, CrowdStrike conceded that it messed up but said it's taken steps to prevent the same incident happening again. And some cybersecurity professionals attending Black Hat appeared ready to give the company a second chance....

TechCrunch spoke to more than a dozen conference attendees who visited the CrowdStrike booth. More than half of attendees we spoke with expressed a positive view of the company following the outage. "Does it lower my opinion of their ability to be a leading-edge security company? I don't think so," said a U.S. government employee, who said he uses CrowdStrike every day.
Although TechCrunch does note that one engineer told his parent company they might consider Crowdstrike competitor Sophos...