Cybersecurity

This posting is here to collect security alert news in April 2018. I post links to security vulnerability news to comments of this article.   →

http://www.iflscience.com/technology/its-not-just-facebook-that-knows-a-horrifying-amount-of-stuff-about-you/ It’s Not Just Facebook That Knows A Horrifying Amount Of Stuff About You. Following the recent Cambridge Analytica scandal, many people are expressing concern about Facebook and how much it knows about them. “If the product is free, you are the product. If they’re making money, they probably have a lot of your data →

https://techcrunch.com/2018/03/23/the-web-will-soon-be-a-little-safer-with-the-approval-of-this-new-security-standard Transport Layer Security version 1.3 promises to make encrypted connections on the web faster and more resistant to snooping. The approval of TLS 1.3 has been long in coming for four years. The IETF approval is a big step towards the standard being adopted by big companies, web services, and other, higher-level standards. You →

http://www.commitstrip.com/en/2018/03/22/basic-functionality/ When customer wants easy access to sensitive data… →

https://www.theguardian.com/news/2018/mar/20/facebook-data-cambridge-analytica-sandy-parakilas This has grown to a huge story! Hundreds of millions of Facebookusers are likely to have had their private information harvested by companies that exploited the same terms as the firm that collected data and passed it on to Cambridge Analytica, according to a new whistleblower. →

https://blog.github.com/2018-03-14-eu-proposal-upload-filters-code/ The EU is considering a copyright proposal that would require code-sharing platforms to monitor all content that users upload for potential copyright infringement (see the EU Commission’s proposed Article 13 of the Copyright Directive). The proposal is aimed at music and videos on streaming platforms. However, the way it’s written captures many other types →

https://www.extremetech.com/computing/265582-everything-surrounding-new-amd-security-allegations-reeks-hit-job CTS-Labs, has accused AMD of 13 serious security flaws within its products. Standard operating procedure in security disclosures; vendors are typically given at least a 90-day window to implement solutions. But in this case, AMD was notified a day ahead of the disclosure. →

https://www.smashingmagazine.com/2018/02/gdpr-for-web-developers/ Europe’s imminent privacy overhaul means that we all have to become more diligent about what data we collect, how we collect it, and what we do with it. In our turbulent times, these privacy obligations are about ethics as well as law. Web developers have a major role to play here. After all, healthy →

This posting is here to collect security alert news in March 2018. I post links to security vulnerability news to comments of this article.   →

http://theinstitute.ieee.org/ieee-roundup/blogs/blog/2018-winter-olympics-a-prime-target-for-hackers Malware has already made its way into the 2018 Winter Olympics, but hopefully the organization is capable of keeping everything working well without serious problems. This article claims that hackers are deploying malware capable of disrupting this year’s Winter Olympic Games, in Pyeongchang, South Korea. The malware is claimed to have the potential to →