Tag: Open Source
-
Ubuntu and CentOS Are Undoing a GNOME Security Feature
Current versions of Ubuntu and CentOS are disabling a security feature that was added to the GNOME desktop environment last year. The …
-
Trust Us, We’re Secretly Working for a Foreign Government: How Australia’s Proposed Surveillance Laws Will Break The Trust Tech Depends On
In the last few years, we’ve discovered just how much trust — whether we like it or not — we have all been obliged to place in modern …
-
Proof-of-Concept Released for Apache Struts Vulnerability
That didn’t take long: Last week, the Apache Foundation reported that a new serious vulnerability had been found in …
-
Is Hyper-Threading a Fundamental Security Risk?
Ever since Intel introduced Hyper-Threading (known generically as Symmetric Multi-Threading), debates about whether or not to disable the …
-
Week in review: DNS interception, critical Apache Struts flaw, cybersecurity career pathing
Here’s an overview of some of last week’s most interesting news and articles: The importance of career pathing in the cybersecurity …
-
Is Your OSS Strategy Crying for Help?
More than 50% of applications today use Open Source Software; with more use comes more risks! See this tool for assessing OSS maturity to test your readiness. …
-
New Form of Mirai Malware Attacking Cross Platform By leveraging Open-Source Project
A newly discovered different form of Mirai malware leveraging Open-Source Project called Aboriginal Linux to infect multiple …
-
New Apache Struts Vulnerability Highlights Need for Software Composition Analysis
On Aug. 22, the Apache Software Foundation announced that a new critical remote code execution vulnerability was found in Apache Struts 2 …
-
If It Doesn’t Have Paper Backups and Automatic Audits, It’s Not an Election Security Bill
Right now, the U.S. Senate is debating an issue that’s critical to our democratic future: secure elections. Hacking attacks were used to try to undermine the 2016 U.S. election, and in recent years, elections in Latin America and Ukraine were also subject to cyber attacks. …
-
Admins Urged: Stop Everything and Patch New Apache Struts Flaw
Security experts are warning of another critical CVSS 10.0 vulnerability in Apache Struts, the framework that resulted in a major breach at …
-
Deja Vu All Over Again? Another New Apache Struts Vulnerability (CVE-2018-11776)
Another remote code execution vulnerability in Apache’s Struts2 Framework was disclosed late yesterday (August 22nd) – leaving many feeling …
-
New Apache Struts Vulnerability Leaves Major Websites Exposed
Remember last year’s Equifax hack? It involved an exploit of a vulnerability in Apache …
●●●