Collaborate Disseminate
Watch a brittle star catch a squid, and then lose it to another brittle star. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here…. Continue reading Friday Squid Blogging: Brittle Star Catches a Squid
If you assume your browsing is private and secure, think again. Jack Wallen offers up what he believes is your best bet to safeguard your browsing sessions and data. Continue reading If you’re really concerned about browser security, Incognito isn’t enough
A file containing the names, addresses, dates of birth and other information about Chicago’s 1.8 million registered voters was published online and publicly accessible for an unknown period of time, the Chicago Board of Election Commissioners said this… Continue reading Info on 1.8M Chicago Voters Was Publicly Accessible, But Now Removed From Cloud Service
Online platforms inadvertently helped create chaos in American politics, but Harvard researchers believe the solution must come from elsewhere. Continue reading Facebook Can’t Fix Our Political Divide With an Algorithm
It’s been a week since Carbon Black got into a very public PR scuffle over what was charged to be a flaw in its Cb Response product that revealed sensitive user data. Now the Massachusetts-based security firm has informed customers that an internal review revealed a new bug in Cb Response, wholly separate from last week’s fight, that potentially revealed sensitive data for some of the company’s customers. The new bug can potentially result in files being miscategorized and mistakenly uploaded to VirusTotal where they can be seen publicly. The new problem is miniscule by comparison to the allegation last week, potentially impacting only ten customers according to a blog posted by the company after Brian Krebs broke the news. “In the presence of certain MacOS third-party applications, the Cb Response sensor (v5.2.7+ and v6.0.4+) occassionally miscategorizes some content files as binaries,” CEO Michael Viscuso explained. “If a customer configured a computer to […]
The post Newly uncovered Carbon Black bug may have mistakenly sent files to VirusTotal appeared first on Cyberscoop.
Continue reading Newly uncovered Carbon Black bug may have mistakenly sent files to VirusTotal
An anonymous reader shares a report: Making a living from streaming royalties is tough for music artists, and YouTube has had one of the worst reputations in the music industry for a while. Even Lyor Cohen, the current head of YouTube Music, knows that… Continue reading YouTube Music Head Says Company Pays Higher Royalties Than Spotify in US
Remote code execution in the Venkman script debugger in Mozilla Firefox before 2.0.0.8. Continue reading CVE-2007-5341 (firefox)
An error was found in the X-Pack Security TLS trust manager for versions 5.0.0 to 5.5.1. If reloading the trust material fails the trust manager will be replaced with an instance that trusts all certificates. This could allow any node using any certifi… Continue reading CVE-2017-8445 (x-pack)
The Reporting feature in X-Pack in versions prior to 5.5.2 and standalone Reporting plugin versions versions prior to 2.4.6 had an impersonation vulnerability. A user with the reporting_user role could execute a report with the permissions of another r… Continue reading CVE-2017-8446 (x-pack, x-pack_reporting)
A single byte overflow in catalogue.c in X.Org libXfont 1.3.1 allows remote attackers to have unspecified impact. Continue reading CVE-2007-5199 (libxfont)