link1s.site

Russian military launches massive missile attack, Kiev children's hospital hit; President Biden issues statement condemning Russia's "brutalism"

A children's hospital in the Ukrainian capital was hit by a Russian missile on Monday as part of a wave of airstrikes across Ukraine that has killed at least 31 people and injured 154 others.

"Russian terrorists have once again launched a massive missile attack on Ukrainian cities - Kiev, Dnipro, Kryvyi Rih, Slaviansk, Kramatorsk," said Ukrainian President Volodymyr Zelenskyy.

Zelensky said Russia fired more than 40 missiles of different types at the five cities in daytime attacks, hitting residential buildings and public infrastructure. The Ukrainian air force said it intercepted 30 missiles.

Authorities said the attack on Kiev killed seven people, while the attack on Kryvyi Rih, Zelensky's birthplace in central Ukraine, killed 10 and injured 47.

United Nations Secretary-General António Guterres condemned the attacks, calling the assault on the Kiev hospital and another medical facility in the capital's Dniprovsky district "particularly egregious," said his spokesman, Stephane Dujarric.

"Direct attacks on civilians and civilian objects are prohibited under international humanitarian law. Any such attacks are unacceptable and must cease immediately," Dujarric said.

The U.N. Security Council will meet Tuesday to discuss the Russian strikes, diplomats said.

The Russian Defense Ministry said the strikes targeted Ukrainian defense factories and a military aviation base and were successful. It denied striking any civilian facilities and claimed, without evidence, that photos from Kiev showed the damage was caused by a Ukrainian anti-aircraft missile.

Ukrainian Air Force Colonel Yurii Ignat said Russia has been improving the effectiveness of its air strikes by equipping its missiles with enhanced features, including so-called heat decoys that can throw air defense systems off target.

In comments sent to The Associated Press, he said the cruise missiles flew low in Monday's attack -- just 50 meters off the ground -- making them harder to hit.

Western countries, led by the United States, have provided Ukraine with billions of dollars in arms support. They will hold a three-day NATO summit in Washington starting Tuesday to work out how to reassure Kiev of NATO's strong support and give Ukrainians hope that their country can survive the largest conflict in Europe since World War II.

"Today's Russian missile strike that killed dozens of Ukrainian civilians and caused damage and loss of life to Kyiv's largest children's hospital is a horrifying reminder of Russia's brutality," U.S. President Joe Biden said in a statement Monday. "It is critical that the world continues to stand with Ukraine at this important moment and that we do not ignore Russian aggression." Biden said in the statement that he will meet with President Zelensky during the NATO summit in Washington this week "to make clear our unwavering support for Ukraine." Biden continued: "We will join our allies in announcing new measures to strengthen Ukraine's air defenses and help protect their cities and civilians from Russian attacks. The United States stands with the Ukrainian people." Czech President Petr Pavel said the hospital attack was "inexcusable" and he hoped the NATO summit would reach a consensus that Russia is "the greatest threat and we must be fully prepared to deal with it." Zelensky said during a visit to Poland that he hoped the NATO summit would provide Ukraine with more air defense systems. The Ukrainian leader said rescuers were digging through the rubble of the Ohmatdit Children's Hospital in Kyiv and that the number of casualties was not yet known. Kyiv Mayor Vitali Klitschko said at least 16 people were injured, including seven children, and the attack caused a two-story wing of the hospital to partially collapse.

Doors and windows were blown off the hospital's 10-story main building, and the walls were charred. The floor of one room was splattered with blood. Hospital officials said the intensive care unit, operating room and oncology department were damaged.

Hamas chief says latest Israeli attack on Gaza could jeopardise ceasefire talks

AIRO, July 8 (Reuters) - A new Israeli assault on Gaza on Monday threatened ceasefire talks at a crucial moment, the head of Hamas said, as Israeli tanks pressed into the heart of Gaza City and ordered residents out after a night of massive bombardment. Residents said the airstrikes and artillery barrages were among the heaviest in nine months of conflict between Israeli forces and Hamas militants in the enclave. Thousands fled. The assault unfolded as senior U.S. officials were in the region pushing for a ceasefire after Hamas made major concessions last week. The militant group said the new offensive appeared intended to derail the talks and called for mediators to rein in Israel's Prime Minister Benjamin Netanyahu. The assault "could bring the negotiation process back to square one. Netanyahu and his army will bear full responsibility for the collapse of this path," Hamas quoted leader Ismail Haniyeh as saying. Gaza City, in the north of the Palestinian enclave, was one of Israel's first targets at the start of the war in October. But clashes with militants there have persisted and civilians have sought shelter elsewhere, adding to waves of displacement. Much of the city lies in ruins. Residents said Gaza City neighbourhoods were bombed through the night into the early morning hours of Monday. Several multi-storey buildings were destroyed, they said. The Gaza Civil Emergency Service said it believed dozens of people were killed but emergency teams were unable to reach them because of ongoing offensives. Gaza residents said tanks advanced from at least three directions on Monday and reached the heart of Gaza City, backed by heavy Israeli fire from the air and ground. That forced thousands of people out of their homes to look for safer shelter, which for many was impossible to find, and some slept on the roadside.

Google may bring Google Wallet for Indian users

Google Wallet can help you store your IDs, driving license, loyalty cards, concert tickets and more. You can also store your payment cards and use tap to pay to pay anywhere Google Pay is accepted. Google wallet is available in various countries but Google never launched it in India. Google let indian users stick with the Gpay which facilitates UPI payments. Tap to pay is not part of it. Also we can not store things such as IDs and Passes in indian version of Gpay. This might change and Google may launch Google Wallet in India. With the recent version of Google Wallet and Google Play Services, Google has added some flags and code which indicate that Google is working on something for Indian users regarding wallet. The first change I noticed recently when going through the Google Play Services apk was addition of two new flags Both flags are part of com.google.android.gms.pay package in the Google Play Services. This package contains all the flags for features of Gpay/Wallet. Google does server side flipping of flags to enable/disable features for users. So both these flags doesn't really provide any info about what features enabling these flags is going to bring. But the point here is that Google Wallet is not launched in India so why Google added these flags inside Play Services ? The answer could be that Google may be working on bringing Google Wallet to India. It can enable tap to pay, store payments and various other features for Indian users which we don't have in the current Gpay for India. I found similar flags in the analysis Google Wallet APK - These flags are also disabled by default. But this is again a clear indication of Google working towards something for Indian users. In both cases, enabling the flags doesn't bring anything noticeable UI or feature because there is nothing much added besides flags. Google has dogfood/testing versions internally, so the code will show up slowly in upcoming versions. The last piece of code I found is also from Google Play Services. In case you don't know, Google was working on Digilocker integration in the Google Files app which was supposed to bring your digital document inside the app such as driving license, COVID certificates, aadhar card. But Google has ditched the effort of bringing these features and they removed the "Important" tab (where digilocker was supposed to be integrated) from the Google Files app completely. So things are going to change and here is how. This is the code which I found in the Google Play Services - So the word "PASS" along with PAN, DRIVERS LICENCE, VACC CERTIFICATE & AADHAR CARD, is clear indication of the possibility of Google adding support for these directly through Google Wallet using Digilocker, just like Samsung Pass does it. This code is not old as I have checked older beta versions of Play Services where this code is not present. Here is a string which was added in a previous beta version a few weeks ago but I completely ignored it because it didn't make any sense without flags and the other code - This addition was surprising because there was nothing regarding digilocker before in the Play Services. In the words "pay_valuable", the "pay" to Wallet/Gpay and "valuable" refers to the things like Passes, loyalty cards and transit cards. Since we are talking about digilocker, these "valuable" are driving license, vaccination certificate, PAN card and Aadhar card which can be store in Google Wallet after digilocker integration. That's all about it. We will know more about it in upcoming app updates or maybe Google can itself annouce something about this.

MOFCOM refutes EU comments on anti-subsidy investigation into Chinese EVs

A spokesperson for the Ministry of Commerce (MOFCOM) on Monday rejected remarks from the EU Ambassador to China on the anti-subsidy investigation into Chinese electric vehicles (EVs). MOFCOM said China had expressed strong opposition through various channels since October 2023 and has always advocated for handling economic and trade frictions through dialogue and consultation in order to maintain the overall strategic partnership between China and Europe. EU Ambassador to China Jorge Toledo claimed on Sunday that the EU has been trying to engage with China for months regarding the imposition of tariffs on Chinese EVs but that China had only recently sought to initiate discussions. This is false, the spokesperson said. MOFCOM said that after the European Commission (EC) officially filed a case, Chinese Commerce Minister Wang Wentao sent a letter to European Commission Executive Vice-President Valdis Dombrovskis on October 24, 2023, expressing hope to resolve the case through dialogue and negotiation. On November 13, 2023, Wang sent another letter to the European side proposing negotiation suggestions. In February 2024, Wang met with Dombrovskis during the WTO's 13th Ministerial Conference face to face and proposed dialogue and negotiation with the European side. On May 19, 2024, Wang reiterated the hope for dialogue and negotiation to resolve the case in a letter to the European side. Additionally, Chinese technical experts have been sending signals to the European side regarding on-site inspections, hearings, and other channels since the case was filed, expressing willingness to resolve trade frictions through dialogue and negotiation. On the day the preliminary ruling was announced on June 12, Dombrovskis replied to Wang in a letter, expressing the desire for both sides to strengthen dialogue to resolve the case. On June 22, Wang held a video conference with Dombrovskis, and they agreed to start negotiations on the EU's anti-subsidy investigation into Chinese EVs. Subsequently, China sent a working group to Europe for negotiations on June 23, and multiple rounds of technical consultations were held simultaneously via video. MOFCOM said that China has shown the utmost sincerity and hopes that the European side will meet China halfway, show sincerity, and push forward the negotiation process to reach a mutually acceptable solution as soon as possible. China has always believed that trade protectionist measures are not conducive to the development of global green industries and automotive industry cooperation. Efforts should be made to adhere to dialogue and cooperation to promote economic green transformation, rather than creating divisions and disrupting global industrial and supply chains, MOFCOM said. China firmly opposes any unilateralism and protectionism that politicizes and weaponizes economic and trade issues, and will take all necessary measures to defend its own interests against any abuse of rules and suppression of China, MOFCOM added.

The largest password leak in history exposes nearly 10 billion credentials

The largest collection of stolen passwords ever has been leaked to a notorious crime marketplace, according to cybersecurity researchers at Cybernews. This leak, dubbed RockYou2024 by its original poster “ObamaCare,” holds a file containing nearly 10 billion unique plaintext passwords. Allegedly gathered from a series of data breaches and hacks accumulated over several years, the passwords were posted on July 4th and hailed as the most extensive collection of stolen and leaked credentials ever seen on the forum. “In its essence, the RockYou2024 leak is a compilation of real-world passwords used by individuals all over the world,” the researchers told Cybernews. “Revealing that many passwords for threat actors substantially heightens the risk of credential stuffing attacks.” Credential stuffing attacks are among the most common methods criminals, ransomware affiliates, and state-sponsored hackers use to access services and systems. Threat actors could exploit the RockYou2024 password collection to conduct brute-force attacks against any unprotected system and “gain unauthorized access to various online accounts used by individuals whose passwords are included in the dataset,” the research team said. This could affect online services, cameras and hardware This could affect various targets, from online services to internet-facing cameras and industrial hardware. “Moreover, combined with other leaked databases on hacker forums and marketplaces, which, for example, contain user email addresses and other credentials, RockYou2024 can contribute to a cascade of data breaches, financial frauds, and identity thefts,” the team concluded. However, despite the seriousness of the data leak, it is important to note that RockYou2024 is primarily a compilation of previous password leaks, estimated to contain entries from a total of 4,000 massive databases of stolen credentials, covering at least two decades. This new file notably includes an earlier credentials database known as RockYou2021, which featured 8.4 billion passwords. RockYou2024 added approximately 1.5 billion passwords to the collection, spanning from 2021 through 2024, which, though a massive figure, is only a fraction of the reported 9,948,575,739 passwords in the leak. Thus, users who have changed their passwords since 2021 may not have to panic about a potential breach of their information. That said, the research team at Cybernews stressed the importance of maintaining data security. In response to the leak, they recommend immediately changing the passwords for any accounts associated with the leaked credentials, ensuring each password is strong and unique and not reused across different platforms. Additionally, they advised enabling multi-factor authentication (MFA), which requires an extra form of verification beyond the password, wherever possible, to strengthen cyber security. Lastly, tech users should utilize password manager software, which securely generates and stores complex passwords, mitigating the risk of password reuse across multiple accounts.

Google extends Linux kernel support to 4 years

According to AndroidAuthority, the Linux kernel used by Android devices is mostly derived from Google's Android Universal Kernel (ACK) branch, which is created from the Android mainline kernel branch when new LTS versions are released upstream. For example, when kernel version 6.6 is announced as the latest LTS release, an ACK branch for Android15-6.6 appears shortly after, with the "android15" in the name referring to the Android version of the kernel (in this case, Android 15). Google maintains its own set of LTS kernel branches for three main reasons. First, Google can integrate upstream features that have not yet been released into the ACK branch by backporting or picking, so as to meet the specific needs of Android. Second, Google can include some features that are being developed upstream in the ACK branch ahead of time, making it available for Android devices as early as possible. Finally, Google can add some vendor or original equipment manufacturer (OEM) features for other Android partners to use. Once created, Google continues to update the ACK branch to include not only bug fixes for Android specific code, but also to integrate the LTS merge content of the upstream kernel branch. For example, the Linux kernel vulnerability disclosed in the July 2024 Android security bulletin will be fixed through these updates. However, it is not easy to distinguish a bug fix from other bug fixes, as a patch that fixes a bug may also accidentally plug a security vulnerability that the submitter did not know about or chose not to disclose. Google does its best to recognize this, but it inevitably misses the mark, resulting in bug fixes for the upstream Linux kernel being released months before Android devices. As a result, Google has been urging Android vendors to regularly update the LTS kernel to avoid being caught off guard by unexpectedly disclosed security vulnerabilities. Clearly, the LTS version of the Linux kernel is critical to the security of Android devices, helping Google and vendors deal with known and unknown security vulnerabilities. The longer the support period, the more timely security updates Google and vendors can provide to devices.