FSF Adopts New Governance Measures: a Board Member Agreement and Code of Ethics
The Free Software Foundation's board "has approved and implemented two new measures designed to help make FSF governance more transparent, accountable, ethical, and responsible," according to an FSF announcement. First a Board Member Agreement "enu.....»»
Nudge Security unveils SSPM capabilities to strengthen SaaS security
Nudge Security unveiled new SSPM (SaaS security posture management) capabilities for its SaaS security and governance platform. This enhancement creates the industry’s most comprehensive solution of its kind, combining SaaS discovery, security.....»»
Security measures fail to keep up with rising email attacks
Organizations must reassess their email security posture as incidents continue to escalate, leading to financial losses. Key findings reveal a significant increase in email attacks, with many successfully bypassing standard security protocols and tar.....»»
How to make Infrastructure as Code secure by default
Infrastructure as Code (IaC) has become a widely adopted practice in modern DevOps, automating the management and provisioning of technology infrastructure through machine-readable definition files. What can we to do make IaC secure by default? Secur.....»»
Court clears researchers of defamation for identifying manipulated data
Harvard, however, will still face trial over how it managed the investigation. Enlarge / Harvard Business School was targeted by a faculty member's lawsuit. (credit: APCortizasJr) Earlier this year, we got a look at some.....»»
Adobe Acrobat Reader has a serious security flaw — so patch now
A bug allows threat actors to launch malicious code on Acrobat Reader remotely, and it's already being used in the wild......»»
Adobe completes fix for Reader bug with known PoC exploit (CVE-2024-41869)
Among the security updates released by Adobe on Tuesday are those for various versions of Adobe Acrobat and Reader, which fix two critical flaws that could lead to arbitrary code execution: CVE-2024-45112 and CVE-2024-41869. Nothing in the advisory p.....»»
GM, Hyundai to explore collaboration across range of tech, products
General Motors and Hyundai Motor Co. will explore cooperation in everything from passenger and commercial vehicles to electric cars and raw materials under a sweeping agreement that aims to improve efficiencies, slash costs and reach bigger economies.....»»
VW recalls nearly 100,000 ID4s over faulty door handles
Insufficient water protection in the 2021-24 Volkswagen ID4 handles could cause the door to fly open while the vehicle is moving because of circuit board malfunctions......»»
Denso goes workerless under new factory concept for Toyota Group
Denso's new ¥69 billion ($482.9 million) workerless plant will make advanced on-board computers that bundle together control of multiple functions in the car, accelerating the transition of Toyota's top supplier into a software-driven mobility compa.....»»
Appeals court OKs NLRB"s continued enforcement action against Chicago Cadillac dealership
A federal appeals court has allowed the National Labor Relations Board to continue its enforcement action against a suburban Chicago dealership that engaged in unfair labor practices against unionized technicians......»»
Ivanti fixes critical vulnerabilities in Endpoint Management (CVE-2024-29847)
Ivanti has fixed a slew of vulnerabilities affecting its Endpoint Manager solution, including a maximum severity one (CVE-2024-29847) that may allow unauthenticated attackers to remotely execute code in the context of the vulnerable system, and use i.....»»
Mount Fuji crowds shrink after Japan brings in overtourism measures
Fewer climbers tackled Mount Fuji during this year's hiking season, preliminary figures show, after Japanese authorities introduced an entry fee and a daily cap on numbers to fight overtourism......»»
Microsoft fixes 4 exploited zero-days and a code defect that nixed earlier security fixes
September 2024 Patch Tuesday is here and Microsoft has delivered 79 fixes, including those for a handful of zero-days (CVE-2024-38217, CVE-2024-38226, CVE-2024-38014, CVE-2024-43461) exploited by attackers in the wild, and a Windows 10 code defect (C.....»»
High-throughput biosensor measures metabolite levels that indicate disease
Researchers at the Nano Life Science Institute (WPI-NanoLSI), Kanazawa University, have developed a biosensor that improves sensitivity to 1-methylnicotinamide (1-MNA) in urine by orders of magnitude without the need for sample purification. The work.....»»
The Yale Code is a unique alternative to traditional smart locks
The Yale Code lacks the connectivity of smart locks, yet it still offers keypad support, Auto-Lock, and the option to toggle settings directly from the lock......»»
33 open-source cybersecurity solutions you didn’t know you needed
Open-source cybersecurity tools provide transparency and flexibility, allowing users to examine and customize the source code to fit specific security needs. These tools make cybersecurity accessible to a broader range of organizations and individual.....»»
Researcher examines model to foster just and equitable youth engagement in residential facilities
Recent research by Andrew Nalani, a faculty member at Vanderbilt Peabody College of education and human development, examines the viewpoints of youth care workers in juvenile residential facilities and their desires for fostering more just and equita.....»»
Veeam Backup & Replication RCE flaw may soon be leveraged by ransomware gangs (CVE-2024-40711)
CVE-2024-40711, a critical vulnerability affecting Veeam Backup & Replication (VBR), could soon be exploited by attackers to steal enterprise data. Discovered and reported by Code WHite researcher Florian Hauser, the vulnerability can be leveraged fo.....»»
The case for adding iron to the ocean for carbon dioxide removal
While the urgent reduction of carbon dioxide (CO2) and other greenhouse gas emissions is needed as the primary activity to curb climate change, there is broad agreement for the need to remove CO2 already in the atmosphere. Given its outsized role in.....»»
Harnessing the power of AI for climate change impact assessment
As climate change continues to intensify, the world is seeing an increase in the number and intensity of climate- and weather-related disasters. The UN member states need to develop urgent mitigation and adaptation actions based on reliable climate c.....»»