Beta 1 of iOS 18.3, MacOS Sequoia 15.3, iPadOS 18.3, Released for Testing
Apple has released the first beta versions of iOS 18.3, MacOS Sequoia 15.3, and iPadOS 18.3, for users enrolled in the beta testing programs for Apple system software. The upcoming updates are now in beta testing, and are expected to focus on bug fixes and security enhancements as usual. Some new features are likely to … [Read More](https://osxdaily.com/2024/12/17/beta-1-of-ios-18-3-macos- … ⌘ Read more

Uncovering GStreamer secrets
In this post, I’ll walk you through the vulnerabilities I uncovered in the GStreamer library and how I built a custom fuzzing generator to target MP4 files.

The post Uncovering GStreamer secrets appeared first on The GitHub Blog. ⌘ Read more

Docker 2024 Highlights: Innovations in AI, Security, and Empowering Development Teams
We look at Docker’s 2024 milestones and innovations in security, AI, and more, as well as how we helped teams build, test, and deploy more easily and quickly than ever. ⌘ Read more

Open-Source Hornet Nest Alarm Panel for Home Assistant and ESPHome
CrowdSupply recently featured the Hornet Nest Alarm Panel, a PoE-enabled security panel that integrates traditional wired alarm systems with modern smart home platforms like Home Assistant. Its open-source design provides flexibility and customization for enhancing home security systems. The panel allows for integration with smart home ecosystems using ESPHome, it supports straightforward configuration, enablin … ⌘ Read more

[WTS] [DE] [$200] Hardened ThinkPad T420 laptop

This hardened T420 is tailored for those prioritizing security and privacy, with critical modifications ensuring minimal attack surfaces while maintaining its functionality as a reliable workhorse.

Link: https://moneromarket.io/listing/cb5a7f96-c21b-48ff-95f8-0d0009e752af

u/notgiven (MoneroMarket) ⌘ Read more

From Legacy to Cloud-Native: How Docker Simplifies Complexity and Boosts Developer Productivity
Learn how the Docker suite of products — including Docker Desktop, Docker Scout, and Docker Hub — helps you accelerate development, modernize legacy applications, and work more efficiently and securely. ⌘ Read more

sec-t 2024
[This has been in my draft folder since September. Sorry! It’s been a
few months with ups and downs, mostly downs. Energy to spend time on
blogging has been low. Hell, energy to do much of anything has been
low. I’m trying to clean out the drafts folder and will post more
stuff.]

I attended the security conference sec-t 2024 in Stockholm the other
week. I held a presentation during the Community Event, Wednesday
September 11: “Verifying the Tillitis TKey”.

The TKey uses a novel way of helpin … ⌘ Read more

How to Lock iPhone / iPad Apps with Face ID or Passcode
A handy app-specific security feature is available for iPhone and iPad that requires authentication with Face ID or a passcode before a chosen app can be launched. Essentially this lets you lock any iPhone or iPad app with Face ID or a passcode, and this lock applies even if your iPhone or iPad is already … Read More ⌘ Read more

Continued security improvements to CNCF projects with OSTIF audits
The Open Source Technology Improvement Fund, Inc (OSTIF) is thrilled to mark another successful year of helping CNCF projects with security audits. Since this partnership began in 2021, a total of 13 projects have graduated following… ⌘ Read more

[ANN] Discussion: Post-quantum security and ethical considerations over elliptic curve cryptography
Link: https://github.com/monero-project/research-lab/issues/131

@s​yntheticbird:monero.social (Matrix) ⌘ Read more

iOS 18.2 Released with ChatGPT Siri, Image Playground, More AI, Bug Fixes, & Security Updates
Apple has released iOS 18.2 for all iPhone users, and iPadOS 18.2 for all iPad users. The new software updates focus primarily on bringing new Apple Intelligence AI features to compatible devices, including support for ChatGPT integration with Siri, Image Playground image generation, along with smaller new AI features throughout various apps and the operating … [Read More](https://osxdaily.com/2024/12/11/i … ⌘ Read more

CodeQL zero to hero part 4: Gradio framework case study
Learn how I discovered 11 new vulnerabilities by writing CodeQL models for Gradio framework and how you can do it, too.

The post CodeQL zero to hero part 4: Gradio framework case study appeared first on The GitHub Blog. ⌘ Read more

Al “Slop” Bug Reports Hurting Python, Curl, & Other Open Source Projects
“Low-quality, spammy, and LLM hallucinated security reports” taking time away from real bugs and features. ⌘ Read more

What is authorization? Examples and definitions
Member post originally published on Cerbos’s blog by Omu Inetimi When building a secure application, there are plenty of factors to be considered. Who is allowed into the application, how users are allowed in, measures in… ⌘ Read more

AAEON Introduces the UP Xtreme i14 Edge, Its First Meteor Lake-Powered Mini PC
AAEON has unveiled the UP Xtreme i14 Edge, a compact fanless Mini PC powered by Intel Core Ultra processors, Intel Arc graphics, and up to 64GB of LPDDR5 memory. Designed for tasks such as computer vision and AI-driven security, it offers significant improvements in memory, graphics, and display capabilities compared to its predecessor. The Mini […] ⌘ Read more

Has someone a) found a bug or security hole in GoBlog or b) actually sent well over 5 million requests to my site to like my post about how to export GPX files automatically from Komoot? 🤔 ⌘ Read more

“No NAT November: My Month Without IPv4”
In his post “No NAT November: My Month Without IPv4” security engineer Alex Haydock writes about the challenges of IPv6-only networks and explains techniques like DNS64, NAT64 and CLAT. An interesting read for someone like me, who doesn’t know much more about IPv6 than that support is still lacking in many places (like GitHub). ⌘ Read more

Generalized Bulletproofs ‘suitable for use’ according to Brandon Goodell security review
Brandon Goodell (aka Surae Noether)1 has concluded2 that Generalized Bulletproofs (GBPs) 3 are suitable for use after completing a review4 of the security proofs5 produced by CypherStack6:

My general results: Overall, GBPs are suitable for use, I think they are secure. [..] If the proofs of security for BPs are up to ind … ⌘ Read more

Beyond Containers: Unveiling the Full Potential of Docker for Cloud-Native Development
Learn about what Docker does as a suite of software development tools to enhance productivity, improve security, and integrate seamlessly with CI/CD pipelines. ⌘ Read more

**(#dy3n2cq) @skinshafi Cool!

Iris leans heavily on convention. Iris’ security and message authentication is provided by filesystem permissions …**
@skinshafi @thunix.net Cool!

Iris leans heavily on convention. Iris’ security and message authentication is provided by filesystem permissions and message hashing. ⌘ Read more

Cake Labs releases Cake Wallet v4.21.2 and Monero.com v1.18.2
Cake Labs1 has released Cake Wallet v4.21.2 / Monero.com v1.18.22 with onboarding flow improvements, coin control bug fixes and enhancements, and various other changes.

Better onboarding flow (PIN screen before wallet creation/restoration)
Migrating our Monero nodes to SSL
Better privacy and security for users who leverage our node
Send all when selecting using coin control (for Monero) ... ⌘ [Read more](https://monero.observer/cake-wallet-4.21.2-monero.com-1.18.2-released/)

Enhancing Container Security with Docker Scout and Secure Repositories
Discover how Docker Scout integrates with secure container repositories to ensure vulnerability-free and compliant images in highly secure environments. ⌘ Read more

BenraouaneSoufiane submits CCS proposal to launch CryptoCheckout ‘email marketing campaign’
BenraouaneSoufiane1 has submitted a second CCS proposal2 looking to launch an email marketing campaign for the CryptoCheckout 3 project in an effort to onboard new users:

CryptoCheckout is a secure simple decentralized crypto payment gateway, enable merchants to accept crypto payments on their websites. CryptoCheckout integrates monero in … ⌘ Read more

Kewbit posts bounty for QubesOS Haveno AppVM
Kewbit1 has posted a bounty2 for creating a hardened and secure QubesOS3 AppVM that can run Haveno4 with external Tor integration:

We are seeking a skilled developer or QubesOS enthusiast to create a hardened and secure AppVM (based on Debian 12 TemplateVM) [..] A bounty will be offered for this project upon successful completion. The exact value will depend on the quality and thoroughness of the deliverables.

Total  ... ⌘ [Read more](https://monero.observer/kewbit-bounty-qubesos-haveno-appvm/)

iOS 18.1.1 & iPadOS 18.1.1 Security Updates Released
Apple has issued iOS 18.1.1, iPadOS 18.1.1, iOS 17.2.2, and iPadOS 17.2.2, for iPhone and iPad users. These updates are relatively small but contain important security fixes, making the software updates important for users to install onto eligible devices. Separately, Apple also released MacOS Sequoia 15.1.1 with the same set of security patches, along with … [Read More](https://osxdaily.com/2024/11/19/ios-18-1-1-ipados-18-1- … ⌘ Read more

MacOS Sequoia 15.1.1 with Security Fixes Available Now
Apple has released MacOS Seqouia 15.1.1, a small software update focused on important security fixes for the Mac. No new features are included, but several actively exploited security issues are patched, making these important updates to install on your Apple devices. Separately, Apple has also released iOS 18.1.1 for iPhone, ipadOS 18.1.1 for iPad, visionOS … [Read More](https://osxdaily.com/2024/11/19/macos-sequoia-15-1-1- … ⌘ Read more

Announcing GitHub Secure Open Source Fund: Help secure the open source ecosystem for everyone
Applications for the new GitHub Secure Open Source Fund are now open! Applications will be reviewed on a rolling basis until they close on January 7 at 11:59 pm PT. Programming and funding will begin in early 2025.

The post [Announcing GitHub Secure Open Source Fund: Help secure the open source ecosystem for everyone](https://github.blog/news-insights/company-news/announcing-github-sec … ⌘ Read more

Keycloak completes fuzzing audit
Community post by Adam Korczynski, ADA Logics The Keycloak has completed its fuzzing audit. The audit was carried out by Ada Logics, a UK-based security firm with deep expertise in fuzz testing, and the audit was… ⌘ Read more

Cake Wallet introduces ‘Cupcake’ companion app with initial support for Monero air-gapped wallets
Cake Labs1 has released Cake Wallet v4.21.02 with early support for Monero air-gapped wallets via their new companion app Cupcake (v0.1)3, beta support for LTC Ledger hardware wallets, various enhancements and bug fixes:

Cake Wallet now supports reading QR codes for airgapped wallets. This enables people to more securely store … ⌘ Read more

Automate Kubernetes Security and Operations with Kyverno Certified Associate (KCA)
Announcing a New CNCF certification for Kyverno Kyverno is an open-source policy engine designed for Kubernetes that allows teams to validate, mutate, and generate configurations, enabling the automation of security policies as code, beyond just audit… ⌘ Read more

KubeCon + CloudNativeCon North America 2024 Day 2: keynotes, announcements and more
On the second day of KubeCon, nearly 9,200 attendees had the opportunity to focus on the theme of the day – security – while attending sessions, visiting the Sponsor Showcase, and networking. The mood was upbeat,… ⌘ Read more

A look at the Cilium CNCF project journey report
We’re excited to share the Cilium project journey report!  Cilium is an open source platform designed for cloud-native networking, security, and observability, leveraging eBPF technology. It provides secure, high-performance network connectivity and deep visibility for Kubernetes… ⌘ Read more

Cloud Native Computing Foundation Announces cert-manager Graduation
Open source security project automates highly secure, encrypted data communications in cloud native environments SALT LAKE CITY, Utah – KubeCon + CloudNativeCon North America – November 12, 2024 – The Cloud Native Computing Foundation® (CNCF®), which… ⌘ Read more

Cloud Native Computing Foundation Announces Dapr Graduation
Dapr provides a set of integrated APIs for building reliable and secure distributed applications, increasing developer productivity by 20-40% SALT LAKE CITY, Utah – KubeCon + CloudNativeCon North America – November 12, 2024 – The Cloud… ⌘ Read more

Managing threat intelligence in Falco
Falco has become a vital tool for security practitioners seeking to safeguard containerized and cloud-native environments. Leveraging the power of eBPF (Extended Berkeley Packet Filter), Falco monitors system calls and audit events, allowing it to detect… ⌘ Read more

Better Together: Understanding the Difference Between Sign-In Enforcement and SSO
Learn how Docker Desktop’s sign-in enforcement and single sign-on (SSO) features work together to enhance security and streamline user management, ensuring proper authentication and access control while unlocking Docker’s full suite of tools. ⌘ Read more

ProcessOne: Docker: set up ejabberd and keep it updated automagically with Watchtower
This blog post will guide you through the process of setting up an ejabberd Community Server using Docker and Docker Compose, and will also introduce Watchtower for automatic updates. This approach ensures that your configuration remains secure and up to date.

Furthermore, we will examine the potential risks associated with automatic updates and suggest Diun as an alternative tool for notification-based up … ⌘ Read more

Kubernetes RBAC: improve the K8s security posture
Member post originally published on the Devtron blog by Siddhant Khisty TL;DR: Secure your Kubernetes cluster with Role-Based Access Control (RBAC) to define granular permissions for users and applications. This guide explains how to implement RBAC… ⌘ Read more

Fast, secure, and simple: Istio’s Ambient Mode reaches General Availability in v1.24
Project post by Lin Sun, Solo.io, for the Istio Steering and Technical Oversight Committees Our latest release signals ambient mode – service mesh without sidecars – is ready for everyone. We are proud to announce that… ⌘ Read more

(#jsn6ija) @wbknl@wbknl The only thing I know about the HAM Radio space is that it’s considered “taboo” to encrypt the traffic. So that make …
@wbknl The only thing I know about the HAM Radio space is that it’s considered “taboo” to encrypt the traffic. So that makes secure IP a bit difficult to say the least right? 🤔 ⌘ Read more

Unstoppable Domains introduces personalized .XMR onchain domains
Unstoppable Domains 1 has announced2 the launch of personalized .XMR 3 onchain domains that can be used instead of long wallet addresses, seemingly in collaboration with Cake Wallet and the Monero project:

In partnership with @monero and @cakewallet, we’re making $XMR payments more secure and private. [..] .XMR domains let you transact securely on Monero and streamline payments in … ⌘ Read more

Mastering Argo CD image updater with Helm: a complete configuration guide
Member post by Stanislava Racheva, DevOps & Cloud engineer at ITGix Understanding Argo CD Image Updater In modern Kubernetes environments, managing container images and ensuring that applications are always running the latest, most secure versions can… ⌘ Read more

Maximizing Docker Desktop: How Signing In Unlocks Advanced Features
Signing into Docker Desktop unlocks advanced features and integrations, enabling developers and admins to fully leverage Docker’s cloud-native tools for enhanced productivity, security, and scalability. ⌘ Read more

MacOS Sonoma 14.7.1 & MacOS Ventura 13.7.1 with Security Updates Available
Apple has released macOS Sonoma 14.7.1 and MacOS Ventura 13.7.1 for Mac users who have not yet updated to MacOS Sequoia, of which MacOS Sequoia 15.1 with Apple Intelligence was just released. macOS Sonoma 14.7.1 and macOS Ventura 13.7.1 both contain many security fixes, making them important updates to install for Mac user who are … [Read More](https://osxdaily.com/2024/10/29/macos- … ⌘ Read more

iOS 17.7.1 & iPadOS 17.7.1 Available for iPhone & iPad
Apple has released iOS 17.7.1 and iPadOS 17.7.1 for iPhone and iPad users who are not running iOS 18, which was just updated to includes support for Apple Intelligence with iOS 18.1 and iPadOS 18.1. The software updates include important security fixes, making them important updates to install if you’re still running the prior major … [Read More](https://osxdaily.com/2024/10/29/ios-17-7-1-ipados-17-7-1-available-for-ip … ⌘ Read more

Flatcar brings Container Linux to the CNCF Incubator
The CNCF Technical Oversight Committee (TOC) has voted to accept Flatcar as a CNCF incubating project.  Flatcar is a zero-touch, minimal operating system (OS) for containerized workloads, addressing the challenges of managing and securing a production… ⌘ Read more

ProcessOne: ejabberd 24.10

Image

We’re excited to announce ejabberd 24.10, a major release packed with substantial improvements and support for important extensions specified by the XMPP Standard Foundation (XSF). This release represents three months of focused development, bringing around 100 commits to the core repository alongside key updates in dependencies. The improvements span enhanced security, streamlined connectivity, and new … ⌘ Read more

What is zero trust authorization?
Member post originally published on Cerbos’s blog by Twain Taylor Traditional security models, which rely on perimeter-based defenses, have proven to be quite inadequate in the face of sophisticated attacks and the growing adoption of cloud… ⌘ Read more

Software supply chain compliance and security policies with SignServer, EJBCA, and Chainloop
Member post originally published on the EJBCA by Keyfactor and Chainloop blogs by Ben Dewberry, Product Manager, Signing and Key Management, Keyfactor and Miguel Martinez Trivino, Co-founder, Chainloop A software supply chain is the series of steps… ⌘ Read more

Attacking browser extensions
Learn about browser extension security and secure your extensions with the help of CodeQL.

The post Attacking browser extensions appeared first on The GitHub Blog. ⌘ Read more