GitHub introduces private vulnerability reporting for open source repositories
GitHub has announced that its private vulnerability reporting feature for open source repositories is now available to all project owners. General availability The private vulnerability reporting feature provides a direct collaboration channel that a.....»»
Quasi-periodic eruptions from eRO-QPE2 are remarkably stable, study finds
An international team of astronomers has inspected long-term evolution of quasi-periodic eruptions (QPEs) from a QPE source designated eRO-QPE2. The study found that QPEs from this source are remarkably stable over the investigated period of over thr.....»»
Setting a security standard: From vulnerability to exposure management
Vulnerability management has been the standard approach to fending off cyber threats for years. Still, it falls short by focusing on a limited number of vulnerabilities, often resolving only 1% to 20% of issues. In 2024, with the average data breach.....»»
Private jet carbon emissions soar 46%: Study
The carbon footprint from private jet travel grew 46 percent between 2019 and 2023 and will keep rising unless the ultra-luxury industry is regulated, according to new research published Thursday......»»
Saturday Citations: Color vision created demand for colorful animals; observing black hole light echoes; deadlines!
This week, researchers hypothesized that human culture is distinguished from cultures of other species like whales by unique open-endedness—the ability to communicate and understand an infinite number of possibilities. An ancient unicellular organi.....»»
Chemists find easier way to produce biodiesel from waste oil
UC Santa Cruz chemists have discovered a new way to produce biodiesel from waste oil that both simplifies the process and requires relatively mild heat. This discovery has the potential to make the alternative fuel source much more appealing to the m.....»»
Sony LinkBuds Open review: a new level of open-ear audio
Sony's LinkBuds Open find a way to crack the audio conundrum that comes with open earbuds......»»
Critical Palo Alto Networks Expedition bug exploited (CVE-2024-5910)
A vulnerability (CVE-2024-5910) in Palo Alto Networks Expedition, a firewall configuration migration tool, is being exploited by attackers in the wild, the Cybersecurity and Infrastructure Security Agency (CISA) confirmed on Thursday. About CVE-2024-.....»»
The OnePlus Open renewed my faith in folding phones. Here’s why
I've had some bad experiences with folding phones. After using the OnePlus Open, I'm a folding phone believer once more. Here's why......»»
Am I Isolated: Open-source container security benchmark
Am I Isolated is an open-source container security benchmark that probes users’ runtime environments and tests for container isolation. The Rust-based container runtime scanner runs as a container, detecting gaps in users’ container runtime i.....»»
Apple’s 45-day certificate proposal: A call to action
In a bold move, Apple has published a draft ballot for commentary to GitHub to shorten Transport Layer Security (TLS) certificates down from 398 days to just 45 days by 2027. The Apple proposal will likely go up for a vote among Certification Authori.....»»
New infosec products of the week: November 8, 2024
Here’s a look at the most interesting products from the past week, featuring releases from Atakama, Authlete, Symbiotic Security, and Zywave. Atakama introduces DNS filtering designed for MSPs Atakama announced the latest expansion of its Managed B.....»»
GeForce Now introduces a 100-hour monthly playtime cap
Although this cap will initially apply only to new GeForce Now members, all current paid subscribers will see their unlimited playtime end on January 1, 2026......»»
All your iPhone notes gone in Apple Notes app? Here’s the fix
Some iPhone users are reporting a scary bug with the Notes app on iPhone. After agreeing to new iCloud terms and conditions as prompted by the system, the Notes app appears to disconnect from iCloud and instead presents users with a screen of zero no.....»»
Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418)
Cisco has fixed a critical command injection vulnerability (CVE-2024-20418) affecting its Ultra-Reliable Wireless Backhaul (URWB) Access Points that can be exploited via a HTTP requests and allows complete compromise of the devices. There are no work.....»»
Artificial receptors made from coronavirus DNA open up new avenues for research
A team of microbiologists and virologists at Wuhan University, working with colleagues from the Chinese Academy of Sciences, the University of Washington and Humabs BioMed SA, has found that it is possible to use coronavirus DNA to create receptors t.....»»
Pathogens that cling to microplastics may survive wastewater treatment
Wastewater treatment fails to kill several human pathogens when they hide out on microplastics in the water, reports a study led by Ingun Lund Witsø of the Norwegian University of Life Sciences, published November 6, 2024 in the open-access journal.....»»
Grocery stores are more reliable than sushi restaurants in labeling salmon properly, Seattle study finds
In a study of salmon samples from Seattle, Washington, grocery stores and sushi restaurants, DNA analysis revealed that 18% were mislabeled. Tracie Delgado and colleagues at Seattle Pacific University, WA, U.S., present these findings in the open-acc.....»»
Vampire bats" metabolism mirrors that of blood-sucking insects, biologists find
A pair of biologists at the University of Toronto has found that vampire bats are able to burn amino acids as a fuel source similarly to blood-sucking insects. In their study published in the journal Biology Letters, Giulia Rossi and Kenneth Welch co.....»»
Direct synthesis method uses recovered carbon dioxide and hydrogen to produce formic acid
With the goal of achieving a carbon-neutral society and eliminating greenhouse gas emissions by 2050, efforts are accelerating to utilize hydrogen as a key energy source. To achieve this goal, the technologies for hydrogen storage, transportation, an.....»»
Volcanic ash as a source of nutrients: How the Hunga Tonga eruption affected ecosystems in the South Pacific
The eruption of Hunga Tonga-Hunga Ha'apai (HTHH) in January 2022 ejected about 2.9 billion tons of volcanic material into the atmosphere and across the South Pacific. In early 2022, a scientific expedition (GEOTRACES GP21) investigated the impact of.....»»