Tag: sponsored

Google Sponsors 2 Full-Time Devs To Improve Linux Security

Worried about the security of Linux and open-source code, Google is sponsoring a pair of full-time developers to work on the kernel’s security. From a report: The internet giant builds code from its own repositories rather than downloading outside binaries, though given the pace at which code is being added to Linux, this task is non-trivial. Google’s open-source security team lead…

After SolarWinds Breach, Lawmakers Ask NSA for Help in Cracking Juniper Cold Case

As the U.S. investigation into the SolarWinds hacking campaign grinds on, lawmakers are demanding answers from the National Security Agency about another troubling supply chain breach that was disclosed five years ago. From a report: A group of lawmakers led by Sen. Ron Wyden, D-Ore., are asking the NSA what steps it took to secure defense networks following a years-old breach…

Ant Group Sponsors Reality Competition Show About Programmers

“A two-episode series which debuted on Chinese streaming platforms last week has been described as the first reality competition to focus on programmers,” reports the I Programmer web site: The show, sponsored by the Ant Group, an affiliate company of the Chinese Alibaba Group, is called Ranshaoba tiancaichengxuyuan, which roughly translates to “Burn Bright! Genius Programmer,” and followed four teams engaged…

Why AWS Is Forking Elasticsearch and Kibana

Steven J. Vaughan-Nichols writes at ZDNet: When Elastic, makers of the open-source search and analytic engine Elasticsearch, went after Amazon Web Services (AWS) by changing its license from the open-source Apache 2.0-license ALv2) to the non-open-source friendly Server Side Public License, I predicted “we’d soon see AWS-sponsored Elasticsearch and Kibana forks.” The next day, AWS tweeted it “will launch new forks…

A Chinese Hacking Group Is Stealing Airline Passenger Details

An anonymous reader quotes a report from ZDNet: A suspected Chinese hacking group has been attacking the airline industry for the past few years with the goal of obtaining passenger data in order to track the movement of persons of interest. The intrusions have been linked to a threat actor that the cyber-security has been tracking under the name of Chimera….

Backdoor Account Discovered in More Than 100,000 Zyxel Firewalls, VPN Gateways

More than 100,000 Zyxel firewalls, VPN gateways, and access point controllers contain a hardcoded admin-level backdoor account that can grant attackers root access to devices via either the SSH interface or the web administration panel. From a report: The backdoor account, discovered by a team of Dutch security researchers from Eye Control, is considered as bad as it gets in terms…

US Used Patriot Act To Gather Logs of Website Visitors

An anonymous reader quotes a report from The New York Times: The government has interpreted a high-profile provision of the Patriot Act as empowering F.B.I. national security investigators to collect logs showing who has visited particular web pages, documents show. But the government stops short of using that law to collect the keywords people submit to internet search engines because it…

Uber and Lyft Need To Make Drivers Employees, Appeals Court Rules

An appeals court ruled Thursday evening that an injunction issued against Uber and Lyft over the status of their drivers was an appropriate measure. CNET reports: The injunction was issued in August by Judge Ethan Schulman of the San Francisco Superior Court, who ruled that the ride-hailing companies must start classifying their drivers as employees in the state. The judge allowed…

Google Says it Mitigated a 2.54 Tbps DDoS Attack in 2017, Largest Known To Date

The Google Cloud team revealed today a previously undisclosed DDoS attack that targeted Google service back in September 2017 and which clocked at 2.54 Tbps, making it the largest DDoS attack recorded to date. From a report: In a separate report published at the same time, the Google Threat Threat Analysis Group (TAG), the Google security team that analyzes high-end threat…