Security News

Facebook is giving third-party application developers three weeks to respond to vulnerability reports and three months to patch bugs before public disclosure. As part of the responsible disclosure process, Facebook will make a reasonable effort to contact the impacted third-party and will provide them with the information required to understand the reported problem.

Styra announced that Styra Essentials now includes Long Term Support for Open Policy Agent, enabling companies in highly regulated industries to take advantage of cloud-native authorization policy. Highly regulated industries typically limit how often companies can update their software in order to reduce new risks.

In 1965, Gordon Moore published a short informal paper, Cramming more components onto integrated circuits. Based on not much more but these few data points and his knowledge of silicon chip development - he was head of R&D at Fairchild Semiconductors, the company that was to seed Silicon Valley - he said that for the next decade, component counts by area could double every year.

Alfresco Software, an open source, content services provider announced the availability of Alfresco Policy and Procedures as a Service, a new Content Accelerator hosted in Alfresco Cloud. Alfresco Policy and Procedures as a Service is a no code, tailored solution accelerator using modern search features and reporting tools that enables business users to quickly and easily locate, change, approve, and release both simple business procedures as well as more complex and regulated manufacturing and operations documents.

Establishing a clear communication strategy is a must for any incident response policy. Jerry Ray, chief operations officer at SecureAge, said incident response plans need to take into account how to allocate resources depending on the criticality of the infrastructure components affected by the breach.

The sudo system is about to undergo some radical changes. Find out how to begin working with the new policy system, to make sudo even more powerful.

Find out how to begin working with the new policy system, to make sudo even more powerful. I want to demonstrate how to use the new policy system, which makes it pretty easy to control what commands users can run with sudo.

Developers use a number of ways to breed extensions like a bunch of spam bunnies in Google's Chrome Web Store, which is the biggest extension catalog online. User Ratings, Reviews, and Installs: Developers are forbidden from manipulating their extensions' placement in the Chrome Web Store by doing things like cooking up bogus downloads, reviews or ratings.

AttackIQ, the leading independent vendor of breach and attack simulation solutions, announced the appointments of Julie O'Brien as chief marketing officer and Jonathan Reiber as senior director of cybersecurity strategy and policy. "The company has a unique opportunity to be the Switzerland of the security stack-providing an independent assessment of how solutions perform against real-world attack scenarios so enterprises can close security gaps and solution providers can improve their product offerings. AttackIQ is on a mission to enhance cybersecurity for all, and it's a mission I am very proud to support."

Earlier this month, articles on Mashable, EFF, Forbes, and Consumer Reports, among others, heavily criticized Zoom for not ensuring that users' privacy is well protected, which encouraged web veteran Doc Searls to have a look into the matter as well. EFF too pointed out that Zoom hosts could monitor attendees' activity while screen-sharing, could see whether a participant has the Zoom window in focus or not, and that administrators can view "How, when, and where users are using Zoom," and can access the contents of recorded calls, including "Video, audio, transcript, and chat files."