BT
Development Follow 547 Followers

How Apple's Intelligent Tracking Prevention in Safari Works

by Daniel Bryant Follow 634 Followers on  Jun 14, 2018

The latest release of Apple’s web browser, Safari 12, will provide “Intelligent Tracking Prevention” (ITP) 2.0, which aims to reduce the ability of third-parties to track web users via cookies and other methods.

Development Follow 547 Followers

Privacy and Security a Top Priority in macOS Mojave and Safari 12

by Daniel Bryant Follow 634 Followers on  Jun 12, 2018

At their annual Developer Conference WWDC Apple previewed macOS Mojave, the latest version of the company’s desktop operating system, and Safari 12, the updated web browser. Apple has stated that enhanced privacy and security are a top priority with these releases.

AI, ML & Data Engineering Follow 760 Followers

The Lowdown on Face Recognition Technology

by Alexis Perrier Follow 1 Followers on  Jun 07, 2018

Facial recognition is a direct application of machine learning that is being deployed far and wide to consumers, in the industry and to law enforcement agencies with potential benefits in our daily lives as well as serious concerns for privacy. facial recognition models show above human performances but real world implementation remains problematic for some applications.

Architecture & Design Follow 1877 Followers

Zip Slip Directory Traversal Vulnerability Impacts Multiple Java Projects

by Charles Humble Follow 798 Followers on  Jun 05, 2018

Security monitoring company Snyk has disclosed Zip Slip, an arbitrary file overwrite vulnerability exploited using a specially crafted ZIP archive that holds path traversal filenames. The vulnerability affects thousands of projects including AWS CodePipeline, Spring Integration, LinkedIn's Pinot, Apache/Twitter Heron, Alibaba JStorm, Jenkins, Gradle, and Google Cloud Platform.

JavaScript Follow 344 Followers

Package Containing Malicious Backdoor Makes its Way into NPM

by Sergio De Simone Follow 12 Followers on  May 06, 2018

The NPM security team removed a package masquerading as a cookie parser that actually contained a malicious backdoor, along with three other packages depending on it. The backdoor allowed attackers to inject arbitrary code into a running server and execute it.

Development Follow 547 Followers

Twitter Passwords May Be Compromised, Could Be One of the Largest Data Breaches in History

by Kevin Ball Follow 3 Followers on  May 03, 2018

On May 3 Twitter announced that they had uncovered and fixed a bug that had resulted in users' passwords being stored in plaintext. No information has been released on how many users were affected, and all users are being recommended to change their passwords. If all users were in fact compromised, this would be the one of the largest known data breaches in history.

Mobile Follow 133 Followers

Securing IoT Devices with Microsoft's Azure Sphere

by Alexis Perrier Follow 1 Followers on  Apr 25, 2018

To improve security of IoT devices, Microsoft announced Azure Sphere, an end-to-end solution for Internet-connected microcontrollers (MCUs). Azure Sphere has a three-layer architecture based on hybrid microcontrollers running a new IoT-optimized Linux kernel and leveraging a cloud-based security service. The first Azure Sphere chip, the MT3620, is developed by MediaTek Inc.

Cloud Follow 251 Followers

Google’s New Cloud Security Tools Increase DDOS Protection, Transparency and Usability

by Steef-Jan Wiggers Follow 5 Followers on  Apr 06, 2018

Recently, Google introduced several new cloud-focused security enhancements for the Google Cloud Platform (GCP). These enhancements include new services like Cloud Security Command Center (Cloud SCC), Google Cloud Armor, VPC Service Controls, and a few new features for G Suite administrators. Furthermore, these enhancements are a part of Google’s investment in their cloud platform.

Culture & Methods Follow 576 Followers

Q&A with Marisa Fagan on Security Championship

by Rafiq Gemmail Follow 6 Followers on  Mar 19, 2018

Security lead Marisa Fagan recently spoke at QConLondon 2018 about upskilling and elevating engineering team members into the role of Security Champions. We catch up with Fagen and report on her efforts to address contention caused by a scarcity of security professionals.

Cloud Follow 251 Followers

SaaS Platform for Managing Configurations Enters Private Beta

by Richard Seroter Follow 5 Followers on  Feb 17, 2018 1

Config is a new SaaS offering for managing configuration files. Created by Bien David in 2017, the company looks to simplify how teams store and access configurations used by systems, apps, modules, environments, and server instances. InfoQ spoke to the team behind Config to learn more about how these problems are solved.

Architecture & Design Follow 1877 Followers

Blockchain and Smart Contracts in a Business Process

by Jan Stenberg Follow 29 Followers on  Jan 31, 2018

Buying something through an internet portal, for example a car, normally involves two parties who don’t trust each other; a buyer and a seller. The portal is just a broker so either the buyer must transfer money before getting the ordered item, or the seller must send the item before getting the money. To overcome this lack of mutual trust, Bernd Rücker claims that a blockchain can be used.

JavaScript Follow 344 Followers

Last Npm Incident Uncovers Security Vulnerability

by Sergio De Simone Follow 12 Followers on  Jan 15, 2018

Last week, the npm registry had an operations incident that caused a number of highly depended on packages, such as require-from-string, to become unavailable. While the incident was relatively straightforward to solve, it uncovered a major security vulnerability that could have been exploited to inject malicious code in projects using npm.

Development Follow 547 Followers

Intel Joins the Race for Quantum Supremacy with a 49-Qubit Chip

by Sergio De Simone Follow 12 Followers on  Jan 12, 2018 1

At CES 2018, Intel CEO Brian Krzanich announced Intel successfully built a 49-qubit chip, which aims to allow researchers to improve error correction techniques and simulate computational problems.

Development Follow 547 Followers

Intel Found That Spectre and Meltdown Fix Has a Performance Hit of 0-21%

by Abel Avram Follow 7 Followers on  Jan 12, 2018

Microsoft, Red Hat and Intel have published their performance evaluation of the impact Meltdown and Spectre mitigation has on various systems.

Development Follow 547 Followers

Redpoint Games Launch NPM Package Signing Tool

by Andrew Morgan Follow 3 Followers on  Jan 11, 2018

Redpoint has launched pkgsign, a package signing and verification tool for NPM. It aims to improve security by helping ensure the authenticity of packages which are uploaded and downloaded from the NPM registry.

Login to InfoQ to interact with what matters most to you.


Recover your password...

Follow

Follow your favorite topics and editors

Quick overview of most important highlights in the industry and on the site.

Like

More signal, less noise

Build your own feed by choosing topics you want to read about and editors you want to hear from.

Notifications

Stay up-to-date

Set up your notifications and don't miss out on content that matters to you

BT