Tootfinder

Just discovered a new RAT at #hacklu and it seems the name can confuse a lot of french-speaking persons.
RATatouille
Not sure it''s a good idea for the SEO of the RAT author. ;-)
🔗 http…

RATatouille: A Malicious Recipe Hidden in rand-user-agent (Supply Chain Compromise)
RATatouille: A Malicious Recipe Hidden in rand-user-agent (Supply Chain Compromise)

France charges a crew member of an Italian passenger ferry for allegedly infecting the ship with a remote access tool on behalf of a foreign power (Sergiu Gatlan/BleepingComputer)
https://www.bleepingcomputer.com/news/security/fr…

There's been some sort of an incident during which a Latvian crew member tried to install a remote access trojan onto an Italian ferry on behalf of a foreign power.
Crewmember Arrested for Planting "Foreign" Malware on Italian Ferry
https://mariti…

Crewmember Arrested for Planting "Foreign" Malware on Italian Ferry
 French authorities are investigating a serious cyber threat aboard a Mediterranean ferry: an onboard malware installation carried out at the directio...

A Verified High-Performance Composable Object Library for Remote Direct Memory Access (Extended Version)
Guillaume Ambal, George Hodgkins, Mark Madler, Gregory Chockler, Brijesh Dongol, Joseph Izraelevitz, Azalea Raad, Viktor Vafeiadis
https://arxiv.org/abs/2510.10531

A Verified High-Performance Composable Object Library for Remote Direct Memory Access (Extended Version)
Remote Direct Memory Access (RDMA) is a memory technology that allows remote devices to directly write to and read from each other's memory, bypassing components such as the CPU and operating system. This enables low-latency high-throughput networking, as required for many modern data centres, HPC applications and AI/ML workloads. However, baseline RDMA comprises a highly permissive weak memory model that is difficult to use in practice and has only recently been formalised. In this paper, we i…

Plex starts to enforce a rule requiring users to pay for a Plex Pass or Remote Watch Pass to stream from a remote server on Roku; other platforms follow in 2026 (Scharon Harding/Ars Technica)
https://arstechnica.com/gadgets/2025/11/pl…

Plex’s crackdown on free remote streaming access starts this week
Roku users will be hit first.

It was Operation Endgame that took down Rhadamanthys.
End of the game for cybercrime infrastructure: 1025 servers taken down
https://www.europol.europa.eu/media-press/newsroom/news/end-of-game-for-cybercrime-infra…

End of the game for cybercrime infrastructure: 1025 servers taken down – Operation Endgame’s latest phase targeted the infostealer Rhadamanthys, Remote Access Trojan VenomRAT, and the botnet Elysium | Europol
Between 10 and 14 November 2025, the latest phase of Operation Endgame was coordinated from Europol’s headquarters in The Hague. The actions targeted one of the biggest infostealers (Rhadamanthys), the Remote Access Trojan VenomRAT, and the botnet Elysium, all of which played a key role in international cybercrime. Authorities took down these three large cybercrime enablers. The main suspect for VenomRAT was also arrested in Greece on 3 November 2025.

Noisy Neighbor: Exploiting RDMA for Resource Exhaustion Attacks in Containerized Clouds
Gunwoo Kim, Taejune Park, Jinwoo Kim
https://arxiv.org/abs/2510.12629 https://

Noisy Neighbor: Exploiting RDMA for Resource Exhaustion Attacks in Containerized Clouds
In modern containerized cloud environments, the adoption of RDMA (Remote Direct Memory Access) has expanded to reduce CPU overhead and enable high-performance data exchange. Achieving this requires strong performance isolation to ensure that one container's RDMA workload does not degrade the performance of others, thereby maintaining critical security assurances. However, existing isolation techniques are difficult to apply effectively due to the complexity of microarchitectural resource manage…

Article doesn't say if the capacity for remotely-disabling machines is something the government ordinarily wants?
Basically any device that can receive remote firmware/software updates from a manufacturer can be remotely disabled - intentionally or otherwise.
https://www.theregister.com/2025/11/…

UK asks cyberspies to probe whether Chinese buses can be switched off remotely
: Norwegian testers claim maker has remote access, while UK importer says supplier complies with the law

GeoPipe: a Geo-distributed LLM Training Framework with enhanced Pipeline Parallelism in a Lossless RDMA-enabled Datacenter Optical Transport Network
Jun Dai, Xiaorun Wang, Kexiong Fang, Zheng Yang, Yuefeng Ji, Jiawei Zhang
https://arxiv.org/abs/2510.12064

GeoPipe: a Geo-distributed LLM Training Framework with enhanced Pipeline Parallelism in a Lossless RDMA-enabled Datacenter Optical Transport Network
The proliferation of Large Language Models (LLMs) with exponentially growing parameters is making cross-data center (DC) training an inevitable trend. However, viable strategies for extending single-DC training frameworks to multi-DC environments remain underdeveloped. We experimentally demonstrate, for the first time, a high-performance geo-distributed LLMs training framework across multiple DCs interconnected by a lossless, remote direct memory access (RDMA) enabled Datacenter Optical Transpo…

Well - here's a little toy to make your pentests that much more entertaining.
https://www.gl-inet.com/campaign/gl-rm10/

Comet Pro (GL-RM10)
Comet Pro is a high-performance remote KVM over Internet, offering HD passthrough, low-latency access to your computer or server from anywhere.

"From chalkboards to e-learning, solar boosts schooling in an Indian floodplain"
#India #SolarPower #Energy

From chalkboards to e-learning, solar boosts schooling in an Indian floodplain
On remote river islands in eastern India’s Assam state, solar power is helping children access education more reliably, reports Mongabay India’s Shailesh Shrivastava. Schools in Assam’s Brahmaputra River Valley recently introduced digital classroom infrastructure, bringing audio-visual learning to children. For some students, this shift from chalkboard-only teaching has been a game changer. “Until last year, […]

After more than 5 years I've finally written a post on my old blog because this post is longer. It's about my recent success of repurposing old hardware at the office to build a PC with two graphics cards. It hosts two virtual machines and each one has access to a dedicated Nvidia GPU.
With two monitors, mice and keyboards two people could even work on site at the same machine 😎 But this is primarily meant to provide remote desktops for I/O and editorial.

FRIEREN: Federated Learning with Vision-Language Regularization for Segmentation
Ding-Ruei Shen
https://arxiv.org/abs/2510.02114 https://arxiv.org/pdf/2510…

FRIEREN: Federated Learning with Vision-Language Regularization for Segmentation
Federeated Learning (FL) offers a privacy-preserving solution for Semantic Segmentation (SS) tasks to adapt to new domains, but faces significant challenges from these domain shifts, particularly when client data is unlabeled. However, most existing FL methods unrealistically assume access to labeled data on remote clients or fail to leverage the power of modern Vision Foundation Models (VFMs). Here, we propose a novel and challenging task, FFREEDG, in which a model is pretrained on a server's …

TPM-Based Continuous Remote Attestation and Integrity Verification for 5G VNFs on Kubernetes
Al Nahian Bin Emran, Rajendra Upadhyay, Rajendra Paudyal, Lisa Donnan, Duminda Wijesekera
https://arxiv.org/abs/2510.03219

TPM-Based Continuous Remote Attestation and Integrity Verification for 5G VNFs on Kubernetes
In the rapidly evolving landscape of 5G technology, the adoption of cloud-based infrastructure for the deployment of 5G services has become increasingly common. Using a service-based architecture, critical 5G components, such as the Access and Mobility Management Function (AMF), Session Management Function (SMF), and User Plane Function (UPF), now run as containerized pods on Kubernetes clusters. Although this approach improves scalability, flexibility, and resilience, it also introduces new se…

Bridging continents through connectivity 🌍
Through the GÉANT Twinning Programme, a collaboration between Jisc and KENET brought #eduroam to one of Kenya’s most remote research sites—proving how global NREN partnerships can transform access to connectivity.
🔗 Read the full story, detailed results, and reflections from Peter Kent (Jisc):

Asteria: Semantic-Aware Cross-Region Caching for Agentic LLM Tool Access
Chaoyi Ruan, Chao Bi, Kaiwen Zheng, Ziji Shi, Xinyi Wan, Jialin Li
https://arxiv.org/abs/2509.17360 http…

Asteria: Semantic-Aware Cross-Region Caching for Agentic LLM Tool Access
Large Language Model (LLM) agents tackle data-intensive tasks such as deep research and code generation. However, their effectiveness depends on frequent interactions with knowledge sources across remote clouds or regions. Such interactions can create non-trivial latency and cost bottlenecks. Existing caching solutions focus on exact-match queries, limiting their effectiveness for semantic knowledge reuse. To address this challenge, we introduce Asteria, a novel cross-region knowledge caching…

Wireless Laser Power Transfer for Low-altitude Uncrewed Aerial Vehicle-assisted Internet of Things: Paradigms, Challenges, and Solutions
Chengzhen Li, Likun Zhang, Chuang Zhang, Jiahui Li, Changyuan Zhao, Ruichen Zhang, Geng Sun
https://arxiv.org/abs/2510.00477

Wireless Laser Power Transfer for Low-altitude Uncrewed Aerial Vehicle-assisted Internet of Things: Paradigms, Challenges, and Solutions
Low-altitude uncrewed aerial vehicles (UAVs) have become integral enablers for the Internet of Things (IoT) by offering enhanced coverage, improved connectivity and access to remote areas. A critical challenge limiting their operational capacity lies in the energy constraints of both aerial platforms and ground-based sensors. This paper explores WLPT as a transformative solution for sustainable energy provisioning in UAV-assisted IoT networks. We first systematically investigate the fundamental…