This week's Linux and FOSS news:

LINUX NEWS

KDE Plasma 6.7 Desktop Environment Is Now Available for Public Beta Testing:
https://9to5linux.com/kde-plasma-6-7-desktop-environment-is-now-available-for-public-beta-testing

KDE gets €1.2m funding from the Sovereign Tech Fund:
https://www.omgubuntu.co.uk/2026/05/kde-sovereign-tech-fund-grant

Hyprland 0.55 adds Lua configs, user-defined layouts, improved scrolling, and ICC profiles:
https://alternativeto.net/news/2026/5/hyprland-0-55-adds-lua-configs-user-defined-layouts-improved-scrolling-and-icc-profiles/

Debian 14 "Forky" to Ship with Reproducible Packages, LoongArch64 Support:
https://9to5linux.com/debian-14-forky-to-ship-with-reproducible-packages-loongarch64-support

Debian 13.5 “Trixie” Released with 144 Bug Fixes and 103 Security Updates:
https://9to5linux.com/debian-13-5-trixie-released-with-144-bug-fixes-and-103-security-updates

Debian 12.14 Update Fixes Critical CVEs in Glibc and Openssh:
https://www.linuxcompatible.org/story/debian-gnu-linux-1214-released/

Ubuntu 26.04 LTS upgrade now open for Ubuntu 25.10 users:
https://www.omgubuntu.co.uk/2026/05/ubuntu-2604-lts-upgrade-now-available

Bazzite Linux 44.20260511 Brings Open Gaming Collective Kernel and Better Controller Support to Gaming PCs:
https://www.linuxcompatible.org/story/bazzite-linux-4420260511-released/

Bazzite Linux Update Fixes Kernel Schedulers and Adds Firmware Tools:
https://www.linuxcompatible.org/story/bazzite-linux-4420260515-released/

SparkyLinux 8.3 Released with Support for Linux Kernel 7.0, Debian 13.4 Base:
https://9to5linux.com/sparkylinux-8-3-released-with-support-for-linux-kernel-7-0-debian-13-4-base

MX Linux 25.2 Enters Public Beta Testing with New Text Mode Installer:
https://9to5linux.com/mx-linux-25-2-enters-public-beta-testing-with-new-text-mode-installer

Rocky Linux security repository offers faster urgent vulnerability fixes:
https://alternativeto.net/news/2026/5/rocky-linux-security-repository-offers-faster-urgent-vulnerability-fixes/

IPFire 2.29 Core Update 202 Brings Kernel Hardening and Faster VPNs:
https://www.linuxcompatible.org/story/ipfire-229-core-update-202-is-available-for-testing/

Rescuezilla 2.6.2 System Recovery Live ISO Adds Ubuntu 26.04 LTS Support:
https://9to5linux.com/rescuezilla-2-6-2-system-recovery-live-iso-adds-ubuntu-26-04-lts-support

Tails 7.7.3 Drops Emergency Kernel Fix to Stop Privilege Escalation Attacks:
https://www.linuxcompatible.org/story/tails-773-released/

(more Linux and FOSS news in comments)

#WeeklyNews #News #Linux #LinuxNews #KDE #KDEPlasma #HyprLand #Debian #Ubuntu #Bazzite #SparkyLinux #MXLinux #RockyLinux #IPFire #Rescuezilla #Tails #OS #LinuxDistro #DistroRelease #LinuxDistribution #DistributionRelease #DesktopLinux #LinuxDesktop #Firewall #SystemRescue #FosseryTech

Oh hello, I remember what Linus said about Microsoft back in the days.

Just a while ago we received a copyright strike cause we used .ttf instead of their installer, good news, we will re-upload with a fresh push all the repository, removing the .ttf and do it the "right" way.

The issue will be solved, by including the "installer" in package-list for our anti-fingerprinting setup!

Thank you.

#ph4ntxm #linux #debian #os #live #privacy #security #opsec #infosec #research #tech #technology

We intercepted Brave to obey on our own "fonts" depending on the mode.

Example?

Windows: will show only fonts that are assigned in windows environments.

Linux: will show native fonts, and shuffling some extra to increase entropy and reduce correlation.

We're looking forward to make fingerprinting even harder!

Soon the update will hit the repo.

Thank you.

#ph4ntxm #linux #debian #os #live #privacy #security #opsec #infosec #research #tech #technology

Just pushed version v1.1.0.

We added CPU /sys/* binding, and changed the service for Packet Transformation Engine with "Nice=-20" to boost performance.

We continue to fight fingerprinting looking forward to find new browser-level solutions as we adjust our practices.

Although current efforts for kernel-level syscall spoofing have failed, we will always adapt and look for another door to knock on to get the results we need.

Thank you.

#ph4ntxm #linux #debian #os #live #privacy #security #opsec #infosec #research #tech #technology

Some old news, but always relevant, so we don't forget our OpSec:

I hope y'all have seen the Urban VPN "scandal" by now.

If you haven't caught up, it wasn't just a VPN, it was effectively a wiretap.

Their browser extension was found intercepting AI chats (ChatGPT, Claude, etc.) by overriding the fetch() function.

They weren't just logging IPs, they were stealing the actual content of your prompts to sell to data brokers. But the real lesson here isn't just "don't use Urban VPN."

It’s about OpSec 101: Never trust a centralized entity.
If you care about security, the rule is simple: Don't trust, verify.

The moment you hand your traffic to a centralized company, especially a "free" one, you’ve created a single point of failure.

A VPN is just someone else's computer. If you don't own the infrastructure, you don't own your privacy.

Stop looking for "trustworthy" companies and start building a "zero trust" mindset.

The only way to ensure you aren't the product is to use a system where no one has the power to sell you out. Don't trust. Verify. Decentralize.

#ph4ntxm #linux #debian #os #live #privacy #security #opsec #infosec #research #tech #technology

YouTube expande proteção contra deepfakes para todos os utilizadores
🔗 https://tugatech.com.pt/t83698-youtube-expande-protecao-contra-deepfakes-para-todos-os-utilizadores

#os #youtube 

We have successfully intercepted and configured the browser to obey.

Now, TLS/QUIC, shuffled cipher suites, and User-Agent are spoofed with the custom values we injected via flags, after a hard trial and error with strict security policies.

This implementation effectively manipulates JA3/JA4 fingerprints.

You can build yourself the latest image, to keep your security updated with the most recent security patches.

Thank you.

#ph4ntxm #linux #debian #os #live #privacy #security #opsec #infosec #research #tech #technology

We are currently experimenting with a new fingerprinting layer by testing TLS/QUIC behavior under spoofing.

If everything works as expected, we might be able to clear another layer and move forward. We’ll update you with the results soon!

Thank you!

#ph4ntxm #linux #debian #os #live #privacy #security #opsec #infosec #research #tech #technology

DIGI alcança 905 mil serviços ativos em Portugal com crescimento de 20%
🔗 https://tugatech.com.pt/t83686-digi-alcanca-905-mil-servicos-ativos-em-portugal-com-crescimento-de-20

#digi #os #portugal