Feed aggregator

COLUMBUS, Ohio (WCMH) — Patrons of a south Columbus coffee shop were medically treated after being subjected to bear spray from an alleged disgruntled customer. According to Columbus police, officers were called to the German Village Coffee shop, on Thurman Avenue, at 1:13 p.m. Thursday. Police spoke with multiple victims, who reported that a woman [...]

COLUMBUS, Ohio (WCMH) -- President Donald Trump took credit Wednesday for making the U.S. money from Intel's financial turnaround after his administration took a 10% share in the company last August. "Intel Stock continues to rise. I’m very proud of that Company in that I am responsible for making the United States of America over [...]

COLUMBUS, Ohio (WCMH) – More witnesses were called to the stand on Friday in the second murder trial for Jason Meade, a former Franklin County sheriff’s deputy who fatally shot Casey Goodson Jr. in 2020.  Meade, 47, is charged with murder and reckless homicide in connection with the death of Goodson, 23. He is being [...]

COLUMBUS, Ohio (WCMH) -- Ohioans have more chances to watch movies for free in May as part of the statewide Ohio Goes to the Movies celebration tied to the nation's 250th anniversary. The program features 31 screenings across the state this month, highlighting films connected to Ohio through actors, directors, writers or filming locations. The [...]

COLUMBUS, Ohio (WCMH) -- Former Republican candidate for governor Heather Hill is suing Secretary of State Frank LaRose in an attempt to get back on the ballot. As required by Ohio law, Hill was removed from the ballot after her former running mate withdrew from the race. This week, she asked the Ohio Supreme Court [...]

In this episode, Ray Cochrane leads with GitHub’s worst reliability month on record and the AI infrastructure pressure behind it. He also covers Warp going open source, Apple’s Mac supply crunch, OpenAI’s goblin tic, the first 1X humanoid factory in the US, Tesla’s Semi finally hitting mass production, Chinese EVs with movie-projecting headlights, the final GPS III satellite, and a quantum researcher who won 1 Bitcoin.

– Want to start a podcast? Its easy to get started! Sign-up at Blubrry
– Thinking of buying a Starlink? Use my link to support the show.

Subscribe to the Newsletter.
Email Ray if you want to get in touch!
Like and Follow Geek News Central’s Facebook Page.

Support my Show Sponsor: Best Godaddy Promo Codes Get 1Password

Full Summary

Cochrane opens the show with one of the biggest infrastructure stories of the year. GitHub is buckling under unprecedented agentic load, and the world’s largest code host just had its worst reliability month on record. Furthermore, the broader episode threads a clear pattern: AI demand is reshaping infrastructure, hardware supply, and developer tooling in ways the industry did not see coming.

GitHub’s Worst Reliability Month on Record

GitHub CTO Vlad Fedorov posted an apology on the company blog this week. He acknowledged the platform’s recent failures and committed to a new priority order: availability first, then capacity, then features. Meanwhile, an April 23 merge queue regression silently produced wrong squash commits across 658 repositories and over 2,000 pull requests. Additionally, an Elasticsearch cluster crashed on April 27 after a botnet attack, and GitHub Actions went down on April 28.

Outside reconstructions put April uptime under 85 percent. However, GitHub’s own status page stays in the 99 percent range because it does not count degraded performance as downtime. Cochrane notes that GitHub originally planned a 10x capacity increase and has now revised that to 30x in eight months. Mitchell Hashimoto, GitHub user 1299 since 2008, also announced he is pulling his Ghostty terminal off the platform entirely.

Warp Terminal Goes Open Source Under AGPL

Warp open-sourced its AI-first terminal client this week under the AGPL license. Their contribution model leans heavily on agents handling code, planning, and testing while humans focus on direction and verification. However, Cochrane pushes back on that framing. He argues the recent GitHub problems show that human approval alone is not enough oversight for agent-driven workflows. Additionally, he notes that the more hands-off developers get, the less they can mentally model their own systems.

Apple Caught Flat-Footed by Local AI Demand

Tim Cook told Wall Street on the Q2 FY2026 earnings call that Mac mini and Mac Studio supply will be constrained for several months. Both machines turned out to be popular local AI workstations, which Apple did not predict. Consequently, Apple discontinued the 512GB Mac Studio upgrade in early March and raised the 256GB upgrade by $400. Some upgraded configurations now show 4 to 5 month delivery estimates.

Cochrane connects the demand spike to the OpenClaw wave and his own recent OpenClaw scare, where his install started making suspicious outbound requests. Furthermore, he is in no rush to lean into local agentic tooling given the constant prompt injection and security issues in the space.

OpenAI Explains the Goblin Obsession

After GPT-5.1 launched, ChatGPT users noticed the model could not stop saying “goblin.” OpenAI traced the bias to the optional Nerdy personality, which was 2.5 percent of all responses but produced 66.7 percent of all goblin mentions. The reward signal during personality training quietly favored creature metaphors. Then the bias leaked into the rest of the model through later supervised fine-tuning.

OpenAI retired Nerdy in March, filtered creature words from training data, and added an explicit Codex system prompt rule: never talk about goblins, gremlins, raccoons, trolls, ogres, or pigeons. Cochrane frames this as the beauty and disaster of pattern matching. Additionally, he notes that LLM behavior is not editable like static code; it can only be patched, and the patches stack up over time.

Sponsor: GoDaddy

GoDaddy has been sponsoring this show for over twenty years. Economy hosting starts at $6.99/month, WordPress hosting at $12.99/month, and domains at $11.99. Use codes at geeknewscentral.com/godaddy for exclusive deals and to directly support the show.

1X Opens America’s First Vertically Integrated Humanoid Factory

Bloomberg reports that 1X Technologies opened a 58,000 square foot humanoid robot factory in Hayward, California. The Norway-founded, OpenAI-backed company is calling it America’s first vertically integrated humanoid factory. Their goal: 10,000 NEO home humanoids in year one, with a 100,000 unit target by end of 2027. Furthermore, the first 10,000 unit allocation reportedly sold out in five days when pre-orders opened in October. NEO sells for $20,000 outright or $499 per month.

Cochrane is skeptical that humanoids solve a real problem for the average household. However, he sees genuine potential for elderly and disabled users. Additionally, he flags privacy and data collection concerns about robots that have to perceive everything in your home.

Tesla Semi Rolls Off the High-Volume Line

Tesla rolled the first Semi off its 1.7 million square foot factory adjacent to Gigafactory Nevada on April 29. The Long Range version delivers 500 miles at $290,000, while the Standard Range hits 325 miles at $260,000. Additionally, the Long Range supports the 1.2 megawatt Megacharger that restores 60 percent of range in about 30 minutes. The factory targets 50,000 trucks per year, though analysts project 5,000 to 15,000 deliveries in 2026.

Cochrane opens with a recent personal experience. He saw a semi truck on the freeway with the entire cabin removed from the engine, an unusual failure mode he had never seen before. Furthermore, he questions the actual environmental benefit of electric trucking given grid sourcing and battery mineral concerns. The reveal was 2017, and high-volume production is now nine years after that announcement.

Chinese EVs With Headlights That Project Movies

Huawei’s XPixel headlight system can now project full-color movies up to 100 inches in front of the car. The technology debuted in full color on the Aito M9 and is rolling out across Stelato S9, Qijing GT7, and Luxeed V9 MPV. Additionally, the same hardware powers real safety features: adaptive driving beam, lane-change path projection, and pedestrian crossing direction signaling.

Meanwhile, US regulations only approved adaptive driving beam in February 2022. Pixel-addressable projection systems are not covered by current FMVSS rules at all. Consequently, even if these cars sold in the US, the headlights would have to be downgraded to be street legal.

The Final GPS III Satellite Reaches Orbit

SpaceX launched GPS III SV-10, the tenth and final GPS III satellite, on a Falcon 9 from Cape Canaveral on April 21. GPS III delivers signals 3 times more accurate and 8 times more resistant to jamming than the previous constellation. It also adds the L1C signal, which interoperates with Galileo, BeiDou, IRNSS, and QZSS, plus M-code military encryption.

Up next, GPS IIIF launches start in 2027 with up to 22 satellites deploying through about 2037. IIIF adds laser inter-satellite links and optical reflectors for centimeter-level satellite tracking. Cochrane loves this kind of quiet infrastructure win that powers global economics without anyone noticing it.

Researcher Wins 1 Bitcoin for a Quantum Attack on Crypto

Independent Italian researcher Giancarlo Lelli won Project Eleven’s 1 Bitcoin Q-Day Prize on April 24. He derived a 15-bit elliptic curve private key from its public key using a variant of Shor’s algorithm on rented cloud quantum hardware. Furthermore, the previous record was 6 bits, set in September 2025 on an IBM 133-qubit machine, so this extends the record by a factor of 512.

However, Bitcoin uses 256-bit elliptic curve cryptography, so real wallets are not at risk yet. Additionally, other researchers have pushed back on the result. Their criticism: a 15-bit search space is only 32,767 possibilities, which a laptop can brute-force in milliseconds. Project Eleven defends the milestone as a stepping stone for demonstrating Shor’s algorithm running end-to-end on real quantum hardware.

Gemini Now Generates Real Files

Google rolled out file generation for the Gemini app. Users can now generate PDFs, Word docs, Excel spreadsheets, Google Workspace files, CSV, LaTeX, plain text, RTF, and Markdown directly from a chat prompt. Additionally, files can be downloaded to device or exported straight to Google Drive. The feature is globally available to all Gemini app users.

Google Illuminate Turns Papers Into Podcasts

Google Illuminate is the experimental Labs tool that converts academic papers into roughly five-minute two-voice podcast-style audio. Generation takes about 30 seconds, with a 20-per-day cap and a 30-day library. Additionally, transcripts are interactive and clickable for jumping to specific moments. Cochrane likes it as an index for triaging papers but pushes back on using it to replace deep reading. He argues that real technical material like clustering logic needs a real read, not a summary by AI podcasters.

Cochrane closes with show housekeeping and a callout to Pocket Casts and True Fans as solid modern podcast apps. Have a great night, and happy June.

The post GitHub, Goblins, Ghostty, and GPS III #1863 appeared first on Geek News Central.

COLUMBUS, Ohio (WCMH) -- Columbus is one step closer to becoming more pedestrian-friendly as construction on the Capital Line project has begun. The project is a two-mile pathway through the heart of Downtown Columbus, with the first phase being built on Gay Street. “Gay Street has been a longtime retail anchor for Downtown, but we [...]

COLUMBUS, Ohio (WCMH) -- Nurses are facing a crisis with staffing shortages disrupting healthcare nationwide, but the union representing nurses in Ohio prefers to describe this problem not as a nursing shortage, but as a crisis of chronic understaffing. Kelli Hykes of the Ohio Nurses Association said understaffing is a conscious decision by healthcare facilities. [...]

COLUMBUS, Ohio (WCMH) — As gas prices remain high across central Ohio, some might consider changing driving habits, but for a local non-profit, that's not an option. "We have to get the meals out and all the healthcare services every day," Lifecare Alliance President and CEO Chuck Gehring said. While drivers deal with higher prices, [...]

COLUMBUS, Ohio (WCMH) -- The Run for the Roses stands as one of America's greatest sporting traditions. The Kentucky Derby will mark its 152nd anniversary Saturday in Louisville, and has attracted fans from around the world. One Columbus man might be the most dedicated fan in Derby history, and he has an incredible attendance streak to [...]

COLUMBUS, Ohio (WCMH) -- A key player in Ohio State's investigation of former university President Ted Carter is speaking out, saying investigators did not accurately portray his experience or technology. "What this report has done is put a false sense that this app is not viable or this app is not good. It can help [...]

A Columbus police officer is recovering after he was shot Wednesday evening by a suspect who was killed when police returned fire.

COLUMBUS, Ohio (WCMH) - Meet Vinny! He is up for adoption at the Franklin County Dog Shelter and Adoption Center. Vinny is 2 years old and is described as a friendly, playful and energetic dog who is looking for the perfect family. Shelter staff say Vinny knows all of the basic commands including sit, shake, [...]

A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible for an extended campaign of massive DDoS attacks against other network operators in Brazil, KrebsOnSecurity has learned. The firm’s chief executive says the malicious activity resulted from a security breach and was likely the work of a competitor trying to tarnish his company’s public image.

An Archer AX21 router from TP-Link. Image: tp-link.com.

For the past several years, security experts have tracked a series of massive DDoS attacks originating from Brazil and solely targeting Brazilian ISPs. Until recently, it was less than clear who or what was behind these digital sieges. That changed earlier this month when a trusted source who asked to remain anonymous shared a curious file archive that was exposed in an open directory online.

The exposed archive contained several Portuguese-language malicious programs written in Python. It also included the private SSH authentication keys belonging to the CEO of Huge Networks, a Brazilian ISP that primarily offers DDoS protection to other Brazilian network operators.

Founded in Miami, Fla. in 2014, Huge Networks’s operations are centered in Brazil. The company originated from protecting game servers against DDoS attacks and evolved into an ISP-focused DDoS mitigation provider. It does not appear in any public abuse complaints and is not associated with any known DDoS-for-hire services.

Nevertheless, the exposed archive shows that a Brazil-based threat actor maintained root access to Huge Networks infrastructure and built a powerful DDoS botnet by routinely mass-scanning the Internet for insecure Internet routers and unmanaged domain name system (DNS) servers on the Web that could be enlisted in attacks.

DNS is what allows Internet users to reach websites by typing familiar domain names instead of the associated IP addresses. Ideally, DNS servers only provide answers to machines within a trusted domain. But so-called “DNS reflection” attacks rely on DNS servers that are (mis)configured to accept queries from anywhere on the Web. Attackers can send spoofed DNS queries to these servers so that the request appears to come from the target’s network. That way, when the DNS servers respond, they reply to the spoofed (targeted) address.

By taking advantage of an extension to the DNS protocol that enables large DNS messages, botmasters can dramatically boost the size and impact of a reflection attack — crafting DNS queries so that the responses are much bigger than the requests. For example, an attacker could compose a DNS request of less than 100 bytes, prompting a response that is 60-70 times as large. This amplification effect is especially pronounced when the perpetrators can query many DNS servers with these spoofed requests from tens of thousands of compromised devices simultaneously.

A DNS amplification and reflection attack, illustrated. Image: veracara.digicert.com.

The exposed file archive includes a command-line history showing exactly how this attacker built and maintained a powerful botnet by scouring the Internet for TP-Link Archer AX21 routers. Specifically, the botnet seeks out TP-Link devices that remain vulnerable to CVE-2023-1389, an unauthenticated command injection vulnerability that was patched back in April 2023.

Malicious domains in the exposed Python attack scripts included DNS lookups for hikylover[.]st, and c.loyaltyservices[.]lol, both domains that have been flagged in the past year as control servers for an Internet of Things (IoT) botnet powered by a Mirai malware variant.

The leaked archive shows the botmaster coordinated their scanning from a Digital Ocean server that has been flagged for abusive activity hundreds of times in the past year. The Python scripts invoke multiple Internet addresses assigned to Huge Networks that were used to identify targets and execute DDoS campaigns. The attacks were strictly limited to Brazilian IP address ranges, and the scripts show that each selected IP address prefix was attacked for 10-60 seconds with four parallel processes per host before the botnet moved on to the next target.

The archive also shows these malicious Python scripts relied on private SSH keys belonging to Huge Networks’s CEO, Erick Nascimento. Reached for comment about the files, Mr. Nascimento said he did not write the attack programs and that he didn’t realize the extent of the DDoS campaigns until contacted by KrebsOnSecurity.

“We received and notified many Tier 1 upstreams regarding very very large DDoS attacks against small ISPs,” Nascimento said. “We didn’t dig deep enough at the time, and what you sent makes that clear.”

Nascimento said the unauthorized activity is likely related to a digital intrusion first detected in January 2026 that compromised two of the company’s development servers, as well as his personal SSH keys. But he said there’s no evidence those keys were used after January.

“We notified the team in writing the same day, wiped the boxes, and rotated keys,” Nascimento said, sharing a screenshot of a January 11 notification from Digital Ocean. “All documented internally.”

Mr. Nascimento said Huge Networks has since engaged a third-party network forensics firm to investigate further.

“Our working assessment so far is that this all started with a single internal compromise — one pivot point that gave the attacker downstream access to some resources, including a legacy personal droplet of mine,” he wrote.

“The compromise happened through a bastion/jump server that several people had access to,” Nascimento continued. “Digital Ocean flagged the droplet on January 11 — compromised due to a leaked SSH key, in their wording — I was traveling at the time and addressed it on return. That droplet was deprecated and destroyed, and it was never part of Huge Networks infrastructure.”

The malicious software that powers the botnet of TP-Link devices used in the DDoS attacks on Brazilian ISPs is based on Mirai, a malware strain that made its public debut in September 2016 by launching a then record-smashing DDoS attack that kept this website offline for four days. In January 2017, KrebsOnSecurity identified the Mirai authors as the co-owners of a DDoS mitigation firm that was using the botnet to attack gaming servers and scare up new clients.

In May 2025, KrebsOnSecurity was hit by another Mirai-based DDoS that Google called the largest attack it had ever mitigated. That report implicated a 20-something Brazilian man who was running a DDoS mitigation company as well as several DDoS-for-hire services that have since been seized by the FBI.

Nascimento flatly denied being involved in DDoS attacks against Brazilian operators to generate business for his company’s services.

“We don’t run DDoS attacks against Brazilian operators to sell protection,” Nascimento wrote in response to questions. “Our sales model is mostly inbound and through channel integrator, distributors, partners — not active prospecting based on market incidents. The targets in the scripts you received are small regional providers, the vast majority of which are neither in our customer base nor in our commercial pipeline — a fact verifiable through public sources like QRator.”

Nascimento maintains he has “strong evidence stored on the blockchain” that this was all done by a competitor. As for who that competitor might be, the CEO wouldn’t say.

“I would love to share this with you, but it could not be published as it would lose the surprise factor against my dishonest competitor,” he explained. “Coincidentally or not, your contact happened a week before an important event – ​​one that this competitor has NEVER participated in (and it’s a traditional event in the sector). And this year, they will be participating. Strange, isn’t it?”

Strange indeed.

COLUMBUS, Ohio (WCMH) -- Olivia Rodrigo is returning to central Ohio this fall with two arena performances as part of her newly announced global tour. The three-time Grammy Award winner is scheduled to perform on Oct. 29 and 30 at the Schottenstein Center, according to a Thursday announcement from Live Nation. The shows are part [...]

Columbus, Ohio is packed with events to kick off the first weekend of May, including the Jack Pine Glass Garden Art Festival, COSI's Big Science Celebration, Columbus Clippers vs. Toledo Mud Hens, Columbus Symphony's season finale, and Columbus Horror Con.