6 months later, Spectre still haunts
It’s now more than six months since the major design flaw in computer chips labeled Spectre became public. And as predicted, it is still haunting the world of information technology. That’s largely because, as experts explained at the time, Spectre is not a software bug that can be fixed by ... Read More
Golden Cup was a world cup of trouble
Nobody with any connection to, or interest in, the FIFA World Cup can say they weren’t warned. In the days leading up to the quadrennial world championship of European football (or soccer), security experts put the word out constantly that everybody involved—players, organizers, staff, and spectators (including those watching on ... Read More
GDPR raises the stakes on data breaches
Another week, another list of data breaches resulting from vulnerabilities in third-party contractors for high-profile companies. But since May 25, at least in the European Union (EU), it is more than just another week. There is the potential for something both more harsh and more expensive than unhappy customers, brand ... Read More
Another inside job, Gmail privacy, and UK cyber crime court
Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup. What’s in this week’s Security Mashup, you ask? Another inside job, or perhaps it should be described as an “insider job.” A former NSO employee has been accused ... Read More
Supreme Court puts the brakes on Big Brother
The troops on the front lines of the war to protect personal privacy won a couple of significant battles last week. Significant, but likely not seismic—at least not yet. It’s not like the clock got rewound to 1990, before the Internet became mainstream, when mobile phones were still relatively rare ... Read More
Third parties spoil the party and WordPress content mismanagement
Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup. What’s in this week’s Security Mashup, you ask? FastBooking and BetVictor third parties spoil the security party, and a WordPress security flaw allows hackers to hijack entire websites ... Read More
Vulnerable routers are still out there—and hackers are noticing
Vulnerable routers aren’t news Long ago and far away—in 2014, which is indeed long ago and far away in our cutting-edge world of information technology—security gurus like Dan Geer, Jim Gettys, and Bruce Schneier were issuing urgent warnings about the catastrophic insecurity of routers—those devices in our homes that give ... Read More
