Experimental News Clipping Site

Tag: software security

  • Simon Willison’s Weblog: Introducing OSS Rebuild: Open Source, Rebuilt to Last

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Jul/23/oss-rebuild/ Source: Simon Willison’s Weblog Title: Introducing OSS Rebuild: Open Source, Rebuilt to Last Feedly Summary: Introducing OSS Rebuild: Open Source, Rebuilt to Last Major news on the Reproducible Builds front: the Google Security team have announced OSS Rebuild, their project to provide build attestations for open source packages released through the NPM,…

  • Cloud Blog: How SUSE and Google Cloud collaborate on Confidential Computing

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/identity-security/how-suse-and-google-cloud-collaborate-on-confidential-computing/ Source: Cloud Blog Title: How SUSE and Google Cloud collaborate on Confidential Computing Feedly Summary: Securing sensitive data is a crucial part of moving workloads to the cloud. While encrypting data at rest and in transit are standard security practices, safeguarding data in use — while it’s actively being processed in memory…

  • Schneier on Security: Google Sues the Badbox Botnet Operators

    by

    Kurt Seifried
    in

    Source URL: https://www.schneier.com/blog/archives/2025/07/google-sues-the-badbox-botnet-operators.html Source: Schneier on Security Title: Google Sues the Badbox Botnet Operators Feedly Summary: It will be interesting to watch what will come of this private lawsuit: Google on Thursday announced filing a lawsuit against the operators of the Badbox 2.0 botnet, which has ensnared more than 10 million devices running Android open…

  • Simon Willison’s Weblog: Qwen3-Coder: Agentic Coding in the World

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Jul/22/qwen3-coder/ Source: Simon Willison’s Weblog Title: Qwen3-Coder: Agentic Coding in the World Feedly Summary: Qwen3-Coder: Agentic Coding in the World It turns out that as I was typing up my notes on Qwen3-235B-A22B-Instruct-2507 the Qwen team were unleashing something much bigger: Today, we’re announcing Qwen3-Coder, our most agentic code model to date. Qwen3-Coder…

  • Simon Willison’s Weblog: Qwen/Qwen3-235B-A22B-Instruct-2507

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Jul/22/qwen3-235b-a22b-instruct-2507/#atom-everything Source: Simon Willison’s Weblog Title: Qwen/Qwen3-235B-A22B-Instruct-2507 Feedly Summary: Qwen/Qwen3-235B-A22B-Instruct-2507 Significant new model release from Qwen, published yesterday without much fanfare. This is a follow-up to their April release of the full Qwen 3 model family, which included a Qwen3-235B-A22B model which could handle both reasoning and non-reasoning prompts (via a /no_think toggle).…

  • The Register: Surprise, surprise: Chinese spies, IP stealers, other miscreants attacking Microsoft SharePoint servers

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/07/22/chinese_groups_attacking_microsoft_sharepoint/ Source: The Register Title: Surprise, surprise: Chinese spies, IP stealers, other miscreants attacking Microsoft SharePoint servers Feedly Summary: With more to come, no doubt At least three Chinese groups are attacking on-premises SharePoint servers via a couple of recently disclosed Microsoft bugs, according to Redmond.… AI Summary and Description: Yes **Summary:** The…

  • Slashdot: Google Launches OSS Rebuild

    by

    Kurt Seifried
    in

    Source URL: https://tech.slashdot.org/story/25/07/22/144239/google-launches-oss-rebuild?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Google Launches OSS Rebuild Feedly Summary: AI Summary and Description: Yes Summary: Google has launched OSS Rebuild, a project aimed at detecting supply chain attacks in open source software by independently verifying package builds from major repositories. The initiative addresses significant security threats in the open-source ecosystem and highlights…

  • The Register: Microsoft patches critical SharePoint 2016 zero-days amid active exploits

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/07/22/microsoft_sharepoint_2016_patch/ Source: The Register Title: Microsoft patches critical SharePoint 2016 zero-days amid active exploits Feedly Summary: Admins urged to rotate machine keys, restart IIS after emergency fix Microsoft has good news for administrators running SharePoint Server 2016. The cloud and software megacorp has published updates to close a gaping hole in the document…

  • Google Online Security Blog: Introducing OSS Rebuild: Open Source, Rebuilt to Last

    by

    Kurt Seifried
    in

    Source URL: http://security.googleblog.com/2025/07/introducing-oss-rebuild-open-source.html Source: Google Online Security Blog Title: Introducing OSS Rebuild: Open Source, Rebuilt to Last Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the launch of OSS Rebuild by Google, aimed at enhancing security within open source package ecosystems by enabling the reproducibility of upstream artifacts. This initiative is particularly…

  • The Register: Another massive security snafu hits Microsoft, but don’t expect it to stick

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/07/21/massive_security_snafu_microsoft/ Source: The Register Title: Another massive security snafu hits Microsoft, but don’t expect it to stick Feedly Summary: Move along, nothing to see here comment Here we go again. Another major Microsoft attack, with this one seeing someone — most likely government-backed hackers — exploiting a zero-day bug in SharePoint Server that…