Language Selection

English French German Italian Portuguese Spanish

Proprietary Software, Censorship (Again) by Microsoft's Proprietary GitHub, and Monopoly-Led 'Security'

Filed under
Google
Microsoft
Security
  • Cloud [cracking]: India now 2nd most targeted nation after US [iophk: Windows TCO]

    The most targeted sectors by ransomware in Q2 of 2021 were the government, followed by telecom, energy, and media and communications.

    Spam showed the highest increase of reported incidents -- 250 per cent -- from Q1 to Q2 2021, followed by Malicious Script with 125 per cent and Malware with 47 per cent.

  • The case of the insecure printer

    The latest way to make sure the vendor calls the shots is to insist that printers won't print a page unless they have internet connectivity and are linked to an "HP Smart" account. According to HP, you must connect your HP LaserJet M209dwe, MFP M234dwe, M234sdne, and M234sdwe printers to an HP Smart account before they'll work. (I expect other printers will soon face the same annoying requirement.)

    I'm not happy about this. And it's not just because I'm sure this will monitor my ink or my laserjet cartridge. I'm ticked off because this is a major security hole in my network. I do not want an unauthorized connection to printers in my network reporting who knows what to HP.

  • Github Removes GTA Fan Projects re3 & reVC Following New Take-Two DMCA Notice

    After Take-Two Interactive sent a legal letter to Github referencing a copyright infringement lawsuit against the people behind the popular re3 and reVC Grand Theft Auto fan projects, Github has now removed the repositories for a second time. Take-Two has also demanded the removal of many project forks and wants Github to take action under its repeat infringer policy.

  • Google commits $1M to new Linux Foundation open source security rewards program | VentureBeat

    Google has announced that it’s sponsoring a new open source security program hosted by the Linux Foundation. The Secure Open Source (SOS) Rewards pilot program provides financial incentives for developers working on security around critical open source projects.

    Open source software plays a key role in many essential infrastructure and national security systems, but recent data suggests “upstream” attacks on open source software have increased in the past year as bad actors seek new ways to infiltrate the software supply chain. Moreover, countless organizations — from government agencies to hospitals and corporations — have been hit by targeted software supply chain attacks, leading U.S. President Biden to issue an executive order outlining measures to combat them.

  • Google’s New Spyware in Chrome 94

    Google’s at it again.

    A few weeks ago when Google released Chrome 94 for desktop and Android, a new “feature” added by Alphabet all but slipped under the radar. The feature takes the form of a new API the company is calling Idle Detection. It’s not a feature added to benefit users, but is another way for website owners to keep tabs on you.

    Google says the feature is primarily designed for collaborative multi-user applications such as online games, meetings, and chat boxes.

    “The Idle Detection API notifies developers when a user is idle, indicating such things as lack of interaction with the keyboard, mouse, screen, activation of a screensaver, locking of the screen, or moving to a different screen. A developer-defined threshold triggers the notification,” the company said on a web page devoted to all of the gee-whiz stuff that’s included in its ad serving platform web browser.