How EU lawmakers can make mandatory vulnerability disclosure responsible
There is a standard playbook and best practice for when an organization discovers or is notified about a software vulnerability: The organization works quickly to fix the problem and, once a fix is available, discloses that vulnerability for the bene.....»»
Amazon exec responsible for money-losers like Alexa and Fire Phone is departing
As of late 2022, Amazon's Alexa had reportedly lost the company $10 billion. Enlarge / Amazon's Astro, one of the hardware projects overseen by departing SVP David Limp. (credit: Amazon) Amazon senior vice president of d.....»»
Action1 platform update bridges the gap between vulnerability discovery and remediation
Action1 Corporation has released a new version of its solution. The updated Action1 patch management platform brings together vulnerability discovery and remediation, helping enterprises fortify their defenses against threats such as ransomware infec.....»»
Exposing the hidden genetic diversity of an ecologically harmful microbe
A microscopic species of algae is causing toxic algal blooms around the world, affecting two dozen states in the U.S., especially Texas. New research into the genetic diversity of the responsible organism, Prymnesium parvum, could help authorities pr.....»»
Dark energy could be measured by studying the galaxy next door
Researchers have found a new way to measure dark energy—the mysterious force that makes up more than two-thirds of the universe and is responsible for its accelerating expansion—in our own cosmic backyard......»»
Researchers identify 135 new melanin genes responsible for pigmentation
Melanin is produced within special structures called melanosomes. Melanosomes are found inside melanin-producing pigment cells called melanocytes. Although all humans have the same number of melanocytes, the amount of melanin they produce differs and.....»»
Billions of Intel CPUs are leaking passwords and killing performance
A recently discovered vulnerability that affects lots of Intel CPUs could steal your data, but there's a fix. The downside? It'll cost you performance......»»
Fortra releases new integrations for its Offensive Security
Fortra has released new integrations for its offensive security solutions that streamline capabilities for vulnerability management, penetration testing, and red teaming. Working together, the solutions apply the same techniques used by threat actors.....»»
Novel socio-environmental vulnerability index pinpoints sustainability issues in Brazilian river basins
Brazilian researchers combined environmental physical, social and economic indicators to create an index that measures a region's vulnerability and used it to analyze the basins of the Parnaíba River and São Francisco River in the Northeast of Braz.....»»
Study suggests disclosure laws about forced labor in the clothing industry are ineffective
The Canadian government recently passed the Fighting Against Forced Labour and Child Labour in Supply Chains Act. The new law is designed to address forced labor and child labor in supply chains by requiring companies to disclose their efforts in eli.....»»
Downfall vulnerability may affect Intel Macs; usual precautions recommended
A newly-discovered Downfall vulnerability found in Intel chips may affect older Macs powered by these processors … more….....»»
SentinelOne enhances vulnerability management through Singularity Ranger Insights
SentinelOne has launched Singularity Ranger Insights. The solution removes the complexity from vulnerability management, enabling companies to continuously discover unmanaged assets, evaluate and prioritize threats and mitigate risk using a single co.....»»
Saudi Arabia makes USB-C mandatory for electronic devices ahead of iPhone 15
iPhone 15 is coming next month, and multiple rumors suggest Apple will finally switch from its proprietary Lightning connector to USB-C. While this has a lot of advantages, Apple is likely getting ahead of a new European Union law that makes USB-C ma.....»»
NetRise unveils SBOM and vulnerability prioritization solutions to enhance XIoT firmware security
NetRise announced advanced capabilities for maintaining and working with Software Bill of Materials (SBOMs) and support for the CISA’s KEV Catalog for managing and understanding the risks associated with software components in the firmware of c.....»»
How an unpatched Microsoft Exchange 0-day likely caused one of the UK’s biggest hacks ever
Evidence appears to show a critical 0-day tracked as ProxyNotShell was exploited. Enlarge / Building with Microsoft logo. (credit: Getty Images) It’s looking more and more likely that a critical zero-day vulnerability.....»»
Capacity and vulnerability analysis of flood risk
The increasing frequency and intensity of flooding events worldwide due to climate change have drawn attention to the pressing issue of flood risk management. The loss of life can be devastating, particularly in less developed and more vulnerable par.....»»
Lawmakers urged to block TSMC worker visas over Arizona plant construction
A campaign is being waged against Apple chip partner TSMC over its first plant in the United States, demanding that TSMC is prevented from bringing over 500 workers from Taiwan.TSMCTSMC's Arizona plant has been delayed until 2025, under claims that i.....»»
Lab repeats nuclear fusion feat, with higher yield
US scientists responsible for a historic nuclear fusion breakthrough say they have repeated the feat—this time achieving a greater yield of energy......»»
Unlimited miles and nights: Vulnerability found in rewards programs
Points.com, used by major travel rewards programs, exposed user data... and more. Enlarge (credit: Jose A. Bernat Bacete) Travel rewards programs like those offered by airlines and hotels tout the specific perks of joi.....»»
CarGurus delays Q2 earnings release; stock price plunges
The vehicle listings company offered little explanation behind its earnings disclosure delay......»»
FCC issues historic $300 million fine against the largest robocall scam it has ever investigated
The Federal Communications Commission on Thursday cracked down on a massive illegal robocall operation responsible for billions of auto-warranty scam calls in recent years, with regulators imposing a record $300 million fine on what authorities said.....»»