Today’s headlines include the FBI’s indictment of suspects operating a $46 million proxy botnet exploiting outdated routers worldwide, the UK shifting defense spending from US to European firms, and Pope Leo XIV’s call for Vatican II renewal amid AI challenges. Major cybersecurity, geopolitical, and religious developments shape the global landscape.
▶️ Internet Infrastructure
FBI Indicts Suspects Over $46M Proxy Botnet Exploiting Outdated Routers
FBI and DOJ indicted four suspects for operating a proxy botnet exploiting outdated routers like Linksys, Ericsson, and Cisco, generating $46M since 2004, using TheMoon malware to infect over 7,000 proxies across 80+ countries.
- FBI unsealed indictments against four foreign nationals for operating a proxy-for-hire botnet exploiting outdated routers, including Linksys, Ericsson Cradlepoint E100, and Cisco Valet M10
- The botnet marketed via 5socks and Anyproxy domains, claimed over 7,000 proxies, and generated more than $46 million since 2004; domain seized in Operation Moonlander
- The malware, TheMoon, infects routers via open ports and vulnerable scripts without passwords, contacting C2 servers to expand the network; over 6,000 Asus routers compromised in 2024
▶️ Open Source
Sofie: Open-Source TV Automation Platform Used by NRK
Sofie is an open-source TV automation platform used in live TV production by NRK, with detailed documentation on functionality, development, and releases, supported by a community Slack.
- Sofie is an open-source, web-based TV automation system used by NRK since September 2018
- Provides functionality for studios and live shows, with documentation covering installation, operation, and development
- Maintains release versions including 1.50.0, 1.49.0, 1.47.0, among others, with ongoing updates and community support via Slack
▶️ Software Development
Practicing Clever Coding in Python and JavaScript for Skill Improvement
Writing clever code as practice enhances skills, with examples in Python and JavaScript, emphasizing non-production use, thorough documentation, and balancing simplicity with technical mastery.
- “Write the cleverest code you possibly can” is presented as a practice method, not for production use
- Examples include concise, domain-specific code snippets in Python and JavaScript
- Advocates solving problems with both simple and clever solutions, then only deploying the simple version; encourages documenting clever code thoroughly
▶️ Management and Leadership
Motorcycle Safety Boosted by Harry Gill’s BrakeBright Smart Brake-Light System
Harry Gill developed BrakeBright, an affordable, easy-to-install motorcycle brake-light system using accelerometers and microcontrollers, improving safety by alerting drivers during deceleration.
- Developer Harry Gill created BrakeBright, a motorcycle smart brake-light system, to enhance rear visibility during deceleration.
- The system detects engine braking using a sensitive accelerometer, activates brake lights before manual application, and flashes proportionally during hard braking.
- Development involved iterative prototyping, PCB design, vibration and water resistance testing, and integration of a USB firmware update port; production units are now available for purchase.
HMRC pauses Uber VAT demands after Bolt legal win
HMRC paused enforcement of VAT assessments on Uber’s UK rides, following legal rulings favoring Bolt’s scheme coverage, impacting over £1.4bn in disputed tax payments.
- HMRC halted demands for Uber to pay VAT on full ride fares after legal setbacks related to Bolt, including an upper tribunal ruling confirming Bolt’s coverage under the Tour Operators’ Margin Scheme.
- HMRC previously required Uber to pay VAT on entire fares since 2022 following a UK Supreme Court ruling that classified drivers as employees; assessments totaled over £1.4bn, though Uber disputes acceptance.
- HMRC indicated a softened stance, stating it will not enforce assessments pending the outcome of an appeal involving a related matter; the dispute adds legal ambiguity to UK ridesharing tax obligations.
Microsoft’s MSTIC Detects Chinese-Backed Cyberattacks on US Telecoms
Microsoft’s MSTIC, staffed by ex-intelligence personnel, uses vast data and collaboration with US agencies to detect and counter Chinese state-backed cyberattacks targeting telecoms and critical infrastructure.
- Microsoft’s Threat Intelligence Center (MSTIC), staffed mainly by former government, military, and intelligence personnel, identified Chinese-backed Salt Typhoon hackers infiltrating US telecoms in 2024.
- MSTIC leverages Microsoft’s extensive data, including Windows OS on over a billion devices and cloud services serving 95% of Fortune 500 companies, to detect cyber threats.
- The US government, including FBI and CISA, relied on MSTIC’s detection of breaches to trace Chinese cyber activity, notably in telecoms and Guam, with efforts to disrupt and attribute state-backed hacking campaigns.
AI21 Labs Raises $300M to Develop Reliable Large Language Models
AI21 Labs is raising $300 million to build its own LLMs, focusing on reducing hallucinations and increasing reliability, with existing investors like Google and Nvidia supporting its AI orchestration system.
- AI21 Labs is raising a $300 million Series D funding round to develop proprietary large language models (LLMs).
- The funding aims to improve AI reliability by reducing hallucinations, with AI21’s Maestro system claiming a 50% reduction and over 95% reasoning accuracy.
- Investors include Google, Nvidia, Intel Capital, Walden Catalyst, Pitango, Samsung Next, Comcast Ventures, and Ahren Innovation Capital; customers include Wix, Capgemini, and Fnac.
FTC delays enforcement of click-to-cancel rule to July 2025
The FTC postponed the enforcement of its ‘click-to-cancel’ rule to July 14, 2025, requiring companies to clarify subscription terms and ease cancellations, after assessing compliance burdens.
- The FTC delayed enforcement of the ‘click-to-cancel’ rule from May 14 to July 14, 2025
- The rule mandates transparency about subscription terms and prohibits making cancellations more difficult than sign-up
- Parts of the Negative Option Rule went into effect on January 19, 2025, with enforcement deferred to May 14, prior to the delay
UK MOD Shifts Defense Spending from US to European Firms Amid Geopolitical Changes
UK MOD is shifting defense spending from US to European firms, driven by geopolitical and policy factors, with increased investment in European suppliers and infrastructure projects, totaling £52.5 billion ($70 billion) from 2019-2024.
- UK MOD’s defense spending with private contractors increased 31% from 2019 to 2024, totaling £52.5 billion ($70 billion) over this period
- Approximately 50% of MOD spending was with UK-based firms; US firms like Boeing and Lockheed Martin accounted for a significant share
- Since 2022, MOD’s expenditure shifted away from US-based firms toward European suppliers, notably increasing French firms’ share from 5% to 12%
- Procurement spending grew only 5% in real terms, with a notable rise in Facilities Management and Construction due to the £1.6 billion ($2.12 billion) Future Defence Infrastructure Services program
- Digital and consultancy services accounted for 14% of MOD spending in 2024
- US Department of Defense invoiced MOD about £700 million ($930 million) for projects including the F-35 Lightning program, which has experienced software delays and operational issues
- Portugal dropped its F-35 procurement plans in March 2025 due to US political uncertainties
- The MOD is reconsidering its supply chain dependencies amid US political and policy shifts, with a trend toward increased European involvement
W3C Publishes Draft for WebAssembly 2.0 Standard
W3C published the Candidate Recommendation Draft for WebAssembly 2.0, detailing a low-level, portable binary and text standard for high-performance, memory-safe applications across environments.
- W3C Candidate Recommendation Draft for WebAssembly Core Specification published on 18 December 2024.
- Describes version 2.0, a safe, portable, low-level code format for efficient execution and compact representation.
- Defines instruction set, binary encoding, validation, execution semantics, and textual representation, with links to related documents and implementation reports.
▶️ Technology
First US-born Pope Leo XIV Calls for Vatican II Renewal and Addresses AI Challenges
Pope Leo XIV, elected May 8, 2025, signals continuation of Pope Francis’ legacy, highlights AI as a key challenge for human dignity, and urges renewal of Vatican II reforms.
- Pope Leo XIV, born Robert Prevost in Chicago, was elected on May 8, 2025, becoming the first US-born pope.
- He emphasized following Pope Francis’ legacy, addressing artificial intelligence as a major challenge to human dignity, justice, and labor.
- In his first meeting with cardinals, he called for renewal of Second Vatican Council reforms, promoting missionary focus, collegiality, synodality, and humility.