Tag: security practices
-
Alerts: CISA Releases New Public Version of CDM Data Model Document
Source URL: https://www.cisa.gov/news-events/alerts/2024/12/04/cisa-releases-new-public-version-cdm-data-model-document Source: Alerts Title: CISA Releases New Public Version of CDM Data Model Document Feedly Summary: Today, the Cybersecurity and Infrastructure Security Agency (CISA) released an updated public version of the Continuous Diagnostics and Mitigation (CDM) Data Model Document. Version 5.0.1 aligns with fiscal year 2023 Federal Information Security Modernization Act (FISMA) metrics.…
-
Wired: Senators Warn the Pentagon: Get a Handle on China’s Telecom Hacking
Source URL: https://www.wired.com/story/senators-warn-pentagon-salt-typhoon-china-hacking/ Source: Wired Title: Senators Warn the Pentagon: Get a Handle on China’s Telecom Hacking Feedly Summary: In a letter to the Department of Defense, senators Ron Wyden and Eric Schmitt are calling for an investigation into fallout from the Salt Typhoon espionage campaign. AI Summary and Description: Yes Summary: The text outlines…
-
News: International operation takes down another encrypted messaging service used by criminals
Source URL: https://www.europol.europa.eu/media-press/newsroom/news/international-operation-takes-down-another-encrypted-messaging-service-used-criminals Source: News Title: International operation takes down another encrypted messaging service used by criminals Feedly Summary: MATRIX, a messaging service made by criminals for criminals, was first discovered by Dutch authorities on the phone of a criminal convicted for the murder of a Dutch journalist in 2021. A large-scale investigation into the…
-
Hacker News: Static IPs for Serverless Containers
Source URL: https://modal.com/blog/vprox Source: Hacker News Title: Static IPs for Serverless Containers Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text details the architecture and implementation of vprox, a Go-based VPN proxy designed by Modal that utilizes WireGuard for high-availability and static IP management in serverless cloud environments. Its unique features, particularly around…
-
Simon Willison’s Weblog: GitHub OAuth for a static site using Cloudflare Workers
Source URL: https://simonwillison.net/2024/Nov/29/github-oauth-cloudflare/ Source: Simon Willison’s Weblog Title: GitHub OAuth for a static site using Cloudflare Workers Feedly Summary: GitHub OAuth for a static site using Cloudflare Workers Here’s a TIL covering a Thanksgiving AI-assisted programming project. I wanted to add OAuth against GitHub to some of the projects on my tools.simonwillison.net site in order…
-
The Register: Zabbix urges upgrades after critical SQL injection bug disclosure
Source URL: https://www.theregister.com/2024/11/29/zabbix_urges_upgrades_after_critical/ Source: The Register Title: Zabbix urges upgrades after critical SQL injection bug disclosure Feedly Summary: US agencies blasted ‘unforgivable’ SQLi flaws earlier this year Open-source enterprise network and application monitoring provider Zabbix is warning customers of a new critical vulnerability that could lead to full system compromise.… AI Summary and Description: Yes…
-
Data and computer security | The Guardian: Alder Hey children’s hospital explores ‘data breach’ after ransomware claims
Source URL: https://www.theguardian.com/technology/2024/nov/29/alder-hey-childrens-hospital-explores-data-breach-after-ransomware-claims Source: Data and computer security | The Guardian Title: Alder Hey children’s hospital explores ‘data breach’ after ransomware claims Feedly Summary: Screenshots purporting to be from systems of Liverpool NHS health facility have been posted onlineA ransomware gang claims to have stolen data from the Alder Hey children’s hospital in Liverpool, allegedly…
-
The Register: Microsoft preps big guns to shift Copilot software and PCs
Source URL: https://www.theregister.com/2024/11/29/microsoft_preps_big_guns_for/ Source: The Register Title: Microsoft preps big guns to shift Copilot software and PCs Feedly Summary: IT admins be warned: 13,000 tech suppliers coming for your employer’s checkbook Canalys Forums EMEA 2024 When Microsoft needs to make a market, it turns to the channel – a nebulous term used for resellers, distributors…
-
Hacker News: US Antitrust Watchdog Launches Broad Microsoft Investigation
Source URL: https://news.bloomberglaw.com/us-law-week/us-antitrust-watchdog-launches-broad-microsoft-investigation Source: Hacker News Title: US Antitrust Watchdog Launches Broad Microsoft Investigation Feedly Summary: Comments AI Summary and Description: Yes Summary: The US Federal Trade Commission (FTC) is investigating Microsoft for potential antitrust violations concerning its cloud computing, software licensing, and cybersecurity practices. This scrutiny arises from concerns about Microsoft’s market dominance and…