Topic: vulnerabilities

Federal Source Code policy, Oracle’s data breach, Wolfram Language 11, Alibaba Cloud and HTC, and a new Android bug—SD Times news digest: August 9, 2016

The White House and the federal government is keeping the commitment to open-source software it made earlier this year. The White House has announced the Federal Source Code policy. The policy is designed to help make custom-developed source code created for the federal government easily accessible to all federal agencies. In addition to the policy, … continue reading

Guest View: Seven security misconfigurations that can jeopardize your Big Data project

Did you hear about the hacking attack carried out a few years ago on AT&T that resulted in exposing the contact details of more than 100,000 iPad users that were stored on their system? It was one of the high-profile attacks that targeted a “security misconfiguration” vulnerability in AT&T’s system architecture. That was not a … continue reading

SourceClear open-sources Commit Watcher to detect vulnerabilities in commits

As a way to help developers prevent disclosure of sensitive information or help them identify potentially dangerous commits, SourceClear has open-sourced Commit Watcher, a tool that finds both accidental credential leaks and security patches before they become an issue. Commit Watcher finds interesting or potentially hazardous commits in Git projects, according to its GitHub page. … continue reading

FileMaker 15 enables custom app development, Rancher HA simplified, and Facebook’s AI backbone—SD Times news digest: May 10, 2016

FileMaker has announced the newest release of its custom app platform, FileMaker 15, which has new features in automation, mobility, performance and security. The new features for mobility include Touch ID support, which allows developers to access their custom apps with their finger, including with 3D Touch support. There are automation and integration features that … continue reading

The Open Connectivity Foundation, AT&T’s cybersecurity report, and Realm’s new database for React Native—SD Times news digest: Feb. 22, 2016

A new collaborative effort has been announced to ensure companies and developers can create IoT devices and solutions that work seamlessly together. The Open Connectivity Foundation (OCF) aims to create specifications, protocols and open-source projects that will ensure devices and solutions can securely and safely interact with one another. Membership includes ARRIS, CableLabs, Cisco, Electrolux, … continue reading

Microsoft’s HoloLens award recipients, Instagram client pulled from iOS store, and Microsoft’s Project Oxford SDKs—SD Times news digest: Nov. 12, 2015

Earlier this year, Microsoft announced the HoloLens Academic Research Grant Program in order to encourage academic institutions to create holographic computing experiences. Today the company has announced the award recipients, which include Carnegie Mellon, Dartmouth, Virginia Tech, Clackamas Community College, and the University of California, Berkeley. Recipients will be awarded US$100,000 and two Microsoft HoloLens … continue reading

SourceClear raises funding to help improve software security

The software development industry is growing by leaps and bounds every day, but security still seems to be a problem that hasn’t been conquered. Many businesses have had the displeasure of dealing with hack attacks, and we read about them almost every week. So here comes SourceClear: a security company focused on software developers that … continue reading

Majority of Android vulnerabilities are due to lack of security updates

A team of researchers from the University of Cambridge have discovered that about 87% of Android vulnerabilities are due to a lack of security updates from manufacturers. The researchers used a device analyzer app they created to get statistics from more than 20,000 devices. With the data they collected, they rated each device manufacturer based … continue reading

SD Times Blog: x86 exploit released

Your teams have taken a lot of time to ensure your super secret systems are super secret, right? Thanks to Black Hat 2015, all that work to prove a system is secure and reliable is going to have to be redone. Christopher Domas, security researcher at the Battelle Memorial Institute, metaphorically dropped the mic and … continue reading

Mozilla blocks Flash in Firefox

More and more tech companies are piling on the “Occupy Flash” movement as Adobe’s Flash Player continues to be beset by publicly known security vulnerabilities. Mark Schmidt, Mozilla’s head of Firefox support, tweeted that the company has officially blocked Flash in all versions of Mozilla Firefox. He clarified that the block will only remain in … continue reading

NativeScript public beta, Adobe’s approach to flaw detection, and Django REST framework 3.1—SD Times news digest: March 6, 2015

It has been almost a year since Telerik announced its cross-platform framework for Android, iOS, and Windows. Today, that NativeScript framework is finally making it into public beta. Valentin Stoychev, product line manager at Telerik, announced that developers can start using the framework to build native mobile apps with CSS and JavaScript. “We have been … continue reading

SD Times news digest: September 9, 2014—Weave virtual Docker network, Java and C++ popularity hit lows

Weave: The virtual Docker network London-based developer Zettio has open-sourced Weave, a tool to create a virtual network that connects Docker containers across multiple hosts. Weave creates a network bridge on each host, connecting each container to the bridge via a veth pair (a pair of virtual network interfaces connected together). Weave routers then capture … continue reading

DMCA.com Protection Status