The largest collection of stolen passwords ever has been leaked to a notorious crime marketplace, according to cybersecurity researchers at Cybernews. This leak, dubbed RockYou2024 by its original poster “ObamaCare,” holds a file containing nearly 10 billion unique plaintext passwords. Allegedly gathered from a series of data breaches and hacks accumulated over several years, the passwords were posted on July 4th and hailed as the most extensive collection of stolen and leaked credentials ever seen on the forum. “In its essence, the RockYou2024 leak is a compilation of real-world passwords used by individuals all over the world,” the researchers told Cybernews. “Revealing that many passwords for threat actors substantially heightens the risk of credential stuffing attacks.” Credential stuffing attacks are among the most common methods criminals, ransomware affiliates, and state-sponsored hackers use to access services and systems. Threat actors could exploit the RockYou2024 password collection to conduct brute-force attacks against any unprotected system and “gain unauthorized access to various online accounts used by individuals whose passwords are included in the dataset,” the research team said. This could affect online services, cameras and hardware This could affect various targets, from online services to internet-facing cameras and industrial hardware. “Moreover, combined with other leaked databases on hacker forums and marketplaces, which, for example, contain user email addresses and other credentials, RockYou2024 can contribute to a cascade of data breaches, financial frauds, and identity thefts,” the team concluded. However, despite the seriousness of the data leak, it is important to note that RockYou2024 is primarily a compilation of previous password leaks, estimated to contain entries from a total of 4,000 massive databases of stolen credentials, covering at least two decades. This new file notably includes an earlier credentials database known as RockYou2021, which featured 8.4 billion passwords. RockYou2024 added approximately 1.5 billion passwords to the collection, spanning from 2021 through 2024, which, though a massive figure, is only a fraction of the reported 9,948,575,739 passwords in the leak. Thus, users who have changed their passwords since 2021 may not have to panic about a potential breach of their information. That said, the research team at Cybernews stressed the importance of maintaining data security. In response to the leak, they recommend immediately changing the passwords for any accounts associated with the leaked credentials, ensuring each password is strong and unique and not reused across different platforms. Additionally, they advised enabling multi-factor authentication (MFA), which requires an extra form of verification beyond the password, wherever possible, to strengthen cyber security. Lastly, tech users should utilize password manager software, which securely generates and stores complex passwords, mitigating the risk of password reuse across multiple accounts.

McDonald's China, together with its four major suppliers announced the launch of an industrial park in Xiaogan city, Central China's Hubei Province on Wednesday, highlighting the importance of Chinese market in terms of supply chain for food business. With a combined investment of 1.5 billion yuan ($206 million), the park, named Hubei Smart Food Industrial Park, is a joint project with Bimbo QSR, XH Supply Chain, Tyson Foods Inc, and Zidan, according to information provided to the Global Times. The park is expected to produce 34,000 tons of meat products, 270 million buns, 30 million pastries, and 2 billion packaged products annually. It also features a 25,000-square-meter high-standard automated warehouse for frozen, refrigerated, and dry goods, reducing logistics time by 90 percent from manufacturing to arriving at the destination. Leveraging local geographical advantages, the park will become a supply hub for McDonald's in central and western China, enhancing supply efficiency and stability for its outlets there, the company said. "McDonald's has been deeply rooted in China for over 30 years, and the park is an echo of our long-term development in China," said Phyllis Cheung, CEO of McDonald's China. "Without any long-term strategy, we don't have any structural advantage in China," Cheung noted. The US food giant continues to expand its business map in China. As of the end of June in 2024, there were over 6,000 restaurants and over 200,000 employees in the market. China has become the second largest and fastest-growing market of McDonald's. In 2023, McDonald's China unveiled the ambition of operating 10,000 restaurants by 2028. To support this, McDonald's and its suppliers have invested over 12 billion yuan from between 2018 to 2023 to develop new production capacities and enhance supply chain sustainability. Observers said that the industrial park reflect foreign companies' confidence in operating in China as the country takes concrete measures in furthering reform and opening-up. China's foreign direct investment from January to May 2024 reached 412.51 billion yuan, with the number of newly-established foreign-backed companies reaching 21,764, rising by 17.4 percent year-on-year, data from China's Ministry of Commerce revealed. According to a recent survey by the American Chamber of Commerce in China, the majority of US companies saw improved profitability in China in 2023, and half of the survey participants put China as their first choice or within their top three investment destinations globally. Olaf Korzinovski, EVP of Volkswagen China, who is responsible for production and components, also shared his understanding of supply chains in China with the Global Times. Volkswagen has been operating in China for about 40 years. "In order to seize greater value for our customers," Volkswagen Group is stepping up pace of innovation in China, and systematically purshing forward the digitalization process, Korzinovski noted, adding the company is strengthening local capabilities with accelerated decision-making efficiency. Global Times

Iran's President-elect Masoud Pezeshkian reiterated Iran's anti-Israel stance on Monday, saying resistance movements across the region will not allow Israel's "criminal policies" against Palestinians to continue. Pezeshkian told Hassan Nasrallah, the leader of Iran-backed Lebanese Hezbollah, that "the Islamic Republic will always support the people of the region in their resistance against the illegal Zionist regime." This suggests that the incoming government will not change its regional policy under the relatively moderate Pezeshkian, who defeated his hard-line opponent in a runoff election last week. Pezeshkian was quoted as saying by Iranian media, "I am sure that the regional resistance movement will not allow this regime to continue its militant and criminal policies against the oppressed people of Palestine and other countries in the region." The Shiite Muslim Hezbollah and the Palestinian Sunni Muslim Hamas are both part of the local "resistance axis" faction organization supported by Iran. Israel did not immediately comment on Pezeshkian's speech. Hamas led an attack on southern Israel on October 7. According to Israeli statistics, Hamas killed 1,200 people and kidnapped about 250 hostages, triggering the Israeli-Palestinian war. The Gaza Health Ministry said that the Israeli military attack killed more than 38,000 Palestinians and injured nearly 88,000 people.

Incredible space photos like those from NASA don't look as stunning straight out of the telescope. They need significant processing, and a crucial part of that is sharpening. Coming to you from Unmesh Dinda with PiXimperfect, this fascinating video explores the APF-R plugin, developed by award-winning astrophotographer Christoph Kaltseis. APF-R stands for Absolute Point of Focus, and it's designed to enhance photo details without creating halos or artifacts. This technology has been used by space agencies with telescopes like the James Webb, and now, you can use it in Photoshop. The plugin allows for non-destructive editing, meaning you can adjust the radius and detail level without permanently altering your image. This feature is crucial for astrophotography, where preserving original details is vital. The video shows how APF-R compares to Photoshop's built-in sharpening tools. The plugin offers multiple rendering methods, each suited for different types of images. For instance, the "Center Weighted" method provides a balanced sharpening effect without making the image look overprocessed. Dinda explains how to fine-tune these settings to achieve the best results, making it clear why this plugin is a game-changer for photographers looking to enhance their images with precision. One notable feature of APF-R is its ability to work with different image types. The video demonstrates how the plugin enhances not just space photos but also landscapes and portraits. For portraits, APF-R can bring out skin textures and eye details without creating the unwanted halos that traditional sharpening methods often produce. Dinda also shows how to combine APF-R with other Photoshop tools, like Smart Sharpen, for even better results. This versatility makes APF-R a valuable addition to any photographer's toolkit. The plugin's cost is $50, which Dinda considers a bargain given its advanced capabilities. There's also a Creative Bundle subscription that includes APF-R and 20 other tools, offering great value for those looking to expand their editing options. Dinda provides discount codes in the video description, making this sophisticated tool more accessible. Check out the video above for the full rundown from Dinda.

An artificial intelligence (AI) team at Stanford University apologized for plagiarizing a large language model (LLM) from a Chinese AI company, which became a trending topic on the Chinese social media platforms, where it sparked concern among netizens on Tuesday. We apologize to the authors of MiniCPM [the AI model developed by a Chinese company] for any inconvenience that we caused for not doing the full diligence to verify and peer review the novelty of this work, the multimodal AI model Llama3-V's developers wrote in a post on social platform X. The apology came after the team from Stanford University announced Llama3-V on May 29, claiming it had comparable performance to GPT4-V and other models with the capability to train for less than $500. According to media reports, the announcement published by one of the team members quickly received more than 300,000 views. However, some netizens from X found and listed evidence of how the Llama3-V project code was reformatted and similar to MiniCPM-Llama3-V 2.5, an LLM developed by a Chinese technology company, ModelBest, and Tsinghua University. Two team members, Aksh Garg and Siddharth Sharma, reposted a netizen's query and apologized on Monday, while claiming that their role was to promote the model on Medium and X (formerly Twitter), and that they had been unable to contact the member who wrote the code for the project. They looked at recent papers to validate the novelty of the work but had not been informed of or were aware of any of the work by Open Lab for Big Model Base, which was founded by the Natural Language Processing Lab at Tsinghua University and ModelBest, according to their responses. They noted that they have taken all references to Llama3-V down in respect to the original work. In response, Liu Zhiyuan, chief scientist at ModelBest, spoke out on the Chinese social media platform Zhihu, saying that the Llama3-V team failed to comply with open-source protocols for respecting and honoring the achievements of previous researchers, thus seriously undermining the cornerstone of open-source sharing. According to a screenshot leaked online, Li Dahai, CEO of ModelBest, also made a post on his WeChat moment, saying that the two models were verified to have highly similarity in terms of providing answers and even the same errors, and that some relevant data had not yet been released to the public. He said the team hopes that their work will receive more attention and recognition, but not in this way. He also called for an open, cooperative and trusting community environment. Director of the Stanford Artificial Intelligence Laboratory Christopher Manning also responded to Garg's explanation on Sunday, commenting "How not to own your mistakes!" on X. As the incident became a trending topic on Sina Weibo, Chinese netizens commented that academic research should be factual, but the incident also proves that the technology development in China is progressing. Global Times