Month: January 2022

Enlarge (credit: Getty Images)

Dozens of legitimate WordPress add-ons downloaded from their original sources have been found backdoored through a supply chain attack, researchers said. The backdoor has been found on “quite a few” sites running the open source content management system.

The backdoor gave the attackers full administrative control of websites that used at least 93 WordPress plugins and themes downloaded from AccessPress Themes. The backdoor was discovered by security researchers from JetPack, the maker of security software owned by Automatic, provider of the WordPress.com hosting service and a major contributor to the development of WordPress. In all, Jetpack found that 40 AccessPress themes and 53 plugins were affected.

Unknowingly providing access to the attacker

In a post published Thursday, Jetpack researcher Harald Eilertsen said timestamps and other evidence suggested the backdoors were introduced intentionally in a coordinated action after the themes and plugins were released. The affected software was available by download directly from the AccessPress Themes site. The same themes and plugins mirrored on WordPress.org, the official developer site for the WordPress project, remained clean.

Enlarge (credit: Sean Gallup | Getty Images)

Here’s a fun new report from Bloomberg: Google is forming a blockchain division. The news comes hot on the heels of a Bloomberg report from yesterday that quoted Google’s president of commerce as saying, “Crypto is something we pay a lot of attention to.” Web3 is apparently becoming a thing at Google.

Shivakumar Venkataraman, a longtime Googler from the advertising division, is running the blockchain group, which lives under the nascent “Google Labs” division that was started about three months ago. Labs is home to “high-potential, long-term projects,” basically making it the new Google X division (X was turned into a less-Google-focused Alphabet division in 2016). Bavor used to be vice president of virtual reality, and Labs contains all of those VR and augmented reality projects, like the “Project Starline” 3D video booth and Google’s AR goggles.

Just like “algorithms,” “AI,” and “5G,” “blockchain” is often used as the go-to buzzword for rudderless tech executives hoping to hype up investors or consumers. A blockchain is really just a distributed, P2P database, sort of like if BitTorrent hosted a database instead of pirated movies and Linux ISOs. The database is chopped up into blocks, and each new block contains a cryptographic hash of the previous block, forming a chain of records that protect each other against alterations. On a traditional database, transactions are verified by the database owner, but on a blockchain, nobody owns the database, so each transaction needs to be verified by many computers. This is the big downside of blockchains: everyone’s constant transaction verifications use a massive amount of electricity and computing power.

Enlarge / If all goes well, this is how Lunar Resources’ extractor could appear on the lunar surface in a few years. (credit: Lunar Resources)

In recent years, much has been said about mining water ice in shadowed craters at the Moon’s South Pole for use as rocket propellant. Enthusiasm for this idea has led NASA to begin planning the first human missions of its Artemis Program to land near the South Pole instead of the mid-latitudes.

However, a Houston-based company says there is value in the gray, dusty regolith spread across the entire lunar surface. The firm, Lunar Resources, is developing technology to extract iron, aluminum, magnesium, and silicon from the Moon’s regolith. These materials, in turn, would be used to manufacture goods on the Moon.

“There are all of these valuable metals on the Moon, just there for the taking,” said Elliot Carol, chief executive officer of Lunar Resources.

Enlarge / Striking employees demand the reinstatement of Raven Software QA contractors who were let go in December. (credit: A Better ABK)

The members of Activision Blizzard subsidiary Raven Software’s quality assurance department are seeking voluntary recognition of their union, a first for workers at a major American video game publisher.

The newly formed Game Workers Alliance union is asking Activision to recognize its right to represent the 34 QA testers at the studio, which works primarily on the Call of Duty series. The union has formed with the help of the Communication Workers of America—which has for years been publicly working to organize the game industry through its Campaign to Organize Digital Employees (CODE)—and A Better ABK Workers Alliance, which is working to organize the much broader group of over 9,500 Activision employees.

(Ars Technica writers are members of the NewsGuild of New York, a subsidiary of the CWA.)

Enlarge / Intel’s rendering of its two new leading-edge processor factories planned to be built outside Columbus, Ohio. (credit: Intel)

Intel announced the location of its megafab today, a 1,000-acre parcel on the outskirts of the Columbus, Ohio, metro area. The semiconductor manufacturer plans to break ground on two leading-edge fabs by the end of the year and enter production in 2025.

“This is all part of the strategy that our CEO Pat Gelsinger announced back in March,” Intel Senior Vice President Keyvan Esfarjani told Ars.

“We are starting with two fabs, and that’s all in line with the growing demand for what the industry needs,” he said. “It’s also critically important for the balance of the supply chain around the world.”

Enlarge / The Sapphire AMD Radeon RX 6500 XT, yet another GPU that you probably won’t be able to buy. (credit: Sapphire)

When AMD announced its budget-friendly RX 6500 XT graphics card at CES early this month, the company suggested that the product had been designed with limitations that would make it unappealing to the cryptocurrency miners who have been exacerbating the ongoing GPU shortage for over a year now. But now that reviews of the card have started to hit, it’s clear that its gaming performance is the collateral damage of those limitations.

Reviews from Tom’s Hardware, PCGamer, TechSpot, Gamers Nexus, and a litany of other PC gaming YouTube channels are unanimous: the RX 6500 XT is frequently outperformed by previous-generation graphics cards, and it comes with other caveats beyond performance that limit its appeal even further. (Ars hasn’t been provided with a review unit.)

The core of the problem is a 64-bit memory interface that limits the amount of memory bandwidth the card has to work with. Plus, the card has only 4GB of RAM, which is beginning to be a limiting factor in modern games, especially at resolutions above 1080p. Many tests saw the RX 6500 XT outperformed by the 8GB variant of the RX 5500 XT, which launched at the tail end of 2019 for the same $199 (and you could actually find and buy it for that price).