Security News
The FBI has revealed how it managed to hoodwink the criminal underworld with its secretly backdoored AN0M encrypted chat app, leading to hundreds of arrests, the seizure of 32 tons of drugs, 250 firearms, 55 luxury cars, more than $148M, and even cocaine-filled pineapples. "The CHS offered this next generation device, named 'AN0M,' to the FBI to use in ongoing and new investigations. The CHS also agreed to offer to distribute AN0M devices to some of the CHS's existing network of distributors of encrypted communications devices."
Google has launched a new experimental tool designed to help application developers visualize the dependencies of open source projects. In an effort to help developers gain a better perspective into the packages their open-source projects rely on, Google has introduced Open Source Insights, an exploratory visualization site that offers a view of dependencies, in an organized and accessible way.
Vulnerabilities in Visual Studio Code extensions could be exploited by malicious attackers to steal valuable information from developers and even compromise organizations, researchers with open-source software security firm Snyk say. Generally considered secure, VS Code extensions could expose millions of developers to malicious attacks, potentially leading to the compromise of information stored on developer machines, such as credentials, or even opening the route to further attacks.
Edge Impulse announced the closing of a $15 million Series A investment round led by Canaan Partners with Acrew Capital, Fika Ventures, Momenta Ventures, and Knollwood Investment Advisory. This funding will support the company's mission to democratize ML for millions of developers and engineers deploying to billions of edge devices.
With an overwhelming majority of software engineers expressing a preference for remote work, it's no wonder that more employers are making commitments to expand their remote workforces. Some employers jumping into remote hiring aren't aware of the challenges in auditioning their software engineers remotely.
Though most of the EO is aimed at government agencies, vendors and developers will have to design all of their products with a greater focus on security, according to Finite State. With ransomware attacks increasingly impacting businesses, government agencies and critical infrastructure, President Joe Biden last week signed an executive order designed to shore up the nation's cyber security.
Sentry announced new and enhanced platform capabilities designed to improve developer workflows and productivity by making it easier to find and resolve the issues that really matter, faster. Sentry solves for this challenge by helping developers understand the impact of code in real time, and by delivering context into their workflows to save hours, or even days, resolving issues.
LogDNA launched a new browser logging capability, which makes it easier for full-stack and frontend developers to ingest frontend log data in LogDNA to more efficiently debug web applications. LogDNA's new Browser Logger addresses this need by automatically capturing errors and logs occurring in the user's browser and allowing dev teams to centralize those errors alongside server-side logs.
Google this week announced that it is introducing a new policy for the Google Play app store, requiring all developers to provide information on their data collection practices. Planned as a safety section in Google Play, the change is expected to "Help people understand the data an app collects or shares, if that data is secured, and additional details that impact privacy and security."
Veriff launched a private beta programme for the Verification Tool, a version of its identity verification software tailored for external use. As the global identity verification market is booming, businesses are investing in the enhancement of their identity verification practices as advanced fraud prevention solutions become an operational requirement.