From Misconceptions to Mastery: Enhancing Security and Transparency with Docker Official Images
Docker Official Images are an important component of Docker’s commitment to the security of both the software supply chain and open source software. We address three common misconceptions about Docker Official Images and outline seven ways they help secure the software supply chain. ⌘ Read more
Isode: Harrier 4.0 – New Capabilities
Harrier is our Military Messaging client. It provides a modern, secure web UI that supports SMTP, STANAG 4406 and ACP 127. Harrier allows authorised users to access role-based mailboxes and respond as a role within an organisation rather than as an individual.
You can find out more about Harrier here.
** … ⌘ Read moreMacOS Ventura 13.6.6 & Safari 17.4.1 Update Available
Apple has released macOS Ventura 13.6.6 for Mac users running Ventura, along with Safari 17.4.1 for Mac users running Ventura and Monterey. These software updates include some of the same critical security fixes that came with macOS Sonoma 14.4.1, and are aimed at users who are not running the Sonoma operating system on their Macs. … [Read More](https://osxdaily.com/2024/04/03/macos-ventura-13-6-6-safari-17-4-1-update-avail … ⌘ Read more
Security research without ever leaving GitHub: From code scanning to CVE via Codespaces and private vulnerability reporting
This blog post is an in-depth walkthrough on how we perform security research leveraging GitHub features, including code scanning, CodeQL, and Codespaces.
The post [Security research without ever leaving GitHub: From code scanning to CVE via Codespaces and private vulnerability reporting](htt … ⌘ Read more
Which Operating System has the Most Vulnerabilities?
Serious question. Is it Windows? iOS? Ubuntu Linux? Which system is the least / most secure? And, while we’re at it, are computers more or less secure now than before? Let’s look at hard stats (on CVEs) and find out. The (free) article: https://lunduke.locals.com/post/5467882/which-operating-system-has-the-most-vulnerabilities ⌘ Read more
Bringing enterprise-level security and even more power to GitHub-hosted runners
GitHub-hosted runners now support Azure private networking. Plus, we’ve added 2 vCPU Linux, 4 vCPU Windows, macOS L, macOS XL, and GPU hosted runners to our runner fleet.
The post Bringing enterprise-level security and even more power to GitHub-hosted runners appea … ⌘ Read more
iOS 16.7.7 & iPadOS 16.7.7 Released for Older iPhone & iPad Models
Apple has released iOS 16.7.7 and iPadOS 16.7.7 for select older model iPhone and iPads. The updates seem to include the same essential and applicable security fixes that iOS 17.4.1 and iPadOS 17.4.1 included. Specifically, iOS 16.7.7 is available for iPhone 8, iPhone 8 Plus, iPhone X, while iPadOS 16.7.7 is available for iPad 5th … [Read More](https://osxdaily.com/2024/04/01/ios-16-7-7-ipados-1 … ⌘ Read more
Fix a Repeating “Trust This Computer” Alert on iPhone & iPad
When you connect an iPhone or iPad to a Mac or Windows PC, you will see a request on the device to “Trust this computer?” with an option to ‘Trust’ or “Don’t Trust’. This is a security feature that is part of iOS and iPadOS to ensure that you approve of a device connection to … Read More ⌘ Read more
Snikket: Security notice: Snikket not affected by CVE-2024-3094
A security vulnerability was intentionally added to a widely used open-source
project known as ‘xz’. This project is packaged in many operating systems, and
a lot of software depends upon it. The vulnerability has been assigned the
identifier CVE-2024-3094.
Systems with the vulnerable package may allow an attacker to gain unauthorized
access to the system via SSH, if your system’s SSH server was linked to the
affected packages.
Thankfully, the vulne … ⌘ Read more
Is Your Container Image Really Distroless?
Find out what makes an image distroless, tools that make the creation of distroless images practical, and security benefits of this approach. ⌘ Read more
Sfera Labs Unveils Strato Pi Max as Robust Industrial Controller Powered by Raspberry Pi CM4
Today, Sfera Labs has introduced two new additions to its Raspberry Pi server lineup: the Strato Pi Max XL and the Strato Pi Max XS. These devices also offer an optional integration with Zymbit’s Secure Compute Module, enhancing their security features. Both the Strato Pi Max XL and XS models from Sfera Labs feature the […] ⌘ Read more
MacOS Sonoma 14.4.1 Update Released with Bug Fixes & Security Updates
Apple has released macOS Sonoma 14.4.1 as an update for Mac users running the Sonoma operating system. The software update includes bug fixes and security enhancements, and appears to resolve the USB hub and external monitor issues that some Mac users were experiencing with macOS Sonoma 14.4 update. Separately, macOS Ventura 13.6.6 is also available … [Read More](https://osxdaily.com/2024/03/ … ⌘ Read more
How Secure are Personal Hotspot Connections from iPhone?
The Personal Hotspot feature on iPhone turns your iPhone cellular connection into a wi-fi hotspot that other nearby devices and computers can use to access the internet. It’s one of those really great features available for iPhone that allows you to work from just about anywhere that you have a cellular connection, and can also … [Read More](https://osxdaily.com/2024/03/23/how-secure-are-personal-hotspot-connections-from- … ⌘ Read more
Announcing the Kubestronaut program
CNCF is excited to announce the launch of the new Kubestronaut program. A Kubestronaut is someone who has passed all five of CNCF’s Kubernetes-related certifications: Certified Kubernetes Administrator (CKA), Certified Kubernetes Application Developer (CKAD), Certified Kubernetes Security Specialist… ⌘ Read more
iOS 17.4.1 Update Released for iPhone & iPad
Apple has issued iOS 17.4.1 update for iPhone, and iPadOS 17.4.1 update for iPad. The software updates include bug fixes and security enhancements for iPhone and iPad. Additionally, there’s an update available for Apple Vision Pro’s VisionOS 1.1.1, for users who have the spatial computing headset. How to Download & Install iOS 17.4.1 / iPadOS … Read More ⌘ Read more
Found means fixed: Introducing code scanning autofix, powered by GitHub Copilot and CodeQL
Now in public beta for GitHub Advanced Security customers, code scanning autofix helps developers remediate more than two-thirds of supported alerts with little or no editing.
The post [Found means fixed: Introducing code scanning autofix, powered by GitHub Copilot and CodeQL](https://github.blog/2024-03-20-found-means-fixed-introducing-code-scanning-autofix … ⌘ Read more
Ignite Realtime Blog: PionTurn plugin 1.0.0 released!
The Ignite Realtime community is happy to announce the release of version 1.0.0 of the PionTurn plugin.
This version brings in the new long-term authentication compatible with the TURN REST format, bringing security to the latest standard.
And it also brings in a new mechanism for resolving domain names, making it possible to run the Pionturn plugin in a dynamic IP environment without having to worry about updating the IP.
Last but not … ⌘ Read more
GitHub Enterprise Server 3.12 is now generally available
With this version, customers can choose how to best scale their security strategy, gain more control over deployments, and so much more.
The post GitHub Enterprise Server 3.12 is now generally available appeared first on The GitHub Blog. ⌘ Read more
My email is such a cluster of noise. The only time i actually use it is to find out I have to do my security training or something. All communication is slack now days.
iOS 17.4 Update Released to Download with New Emoji, Podcasts Transcripts, & Bug Fixes
Apple has released iOS 17.4 update for iPhone, and ipadOS 17.4 update for iPad. The iOS/iPadOS 17.4 updates feature new Emoji icons including a phoenix and mushroom, a podcasts transcription feature, a handful of bug fixes and security updates, along with some minor additions and changes. European users also gain some specific new capabilities that … [Read More](https://osxdaily.com/2024/03/05/ios-17-4-update-dow … ⌘ Read more
Filter Out Security Vulnerability False Positives with VEX
False positives got you down? VEX works with Docker Scout to filter out false positives in security vulnerabilities. Learn how to get started with this powerful combo. ⌘ Read more
Azure Container Registry and Docker Hub: Connecting the Dots with Seamless Authentication and Artifact Cache
See best practices for using public images and ensuring the security and reliability of your Docker containers. ⌘ Read more
Erlang Solutions: Blockchain Tech Deep Dive | 6 Principles
Blockchain technology is transforming nearly every industry, whether banking, government, fashion or logistics. The benefits of using blockchain are substantial. Businesses can lower transaction costs, free up capital, speed up processes, and enhance security and trust.
We’re mapping out the six key principles for blockchain integration success, so businesses can navigate the challenges and opportunities this disruptive tec … ⌘ Read more
Docker Desktop 4.28: Enhanced File Sharing and Security plus Refined Builds View in Docker Build Cloud
Learn about the latest improvements to Docker Desktop, including enhanced security, Builds view refinements, and updated file-sharing controls. ⌘ Read more
Battle over border bills continues in Congress
President Joe Biden and former President Donald Trump are planning to visit the U.S. border on the same day, separated by just 300 miles as a bipartisan group in the House is working to provide an alternative to the Senate’s failed national security bill. ⌘ Read more
‘Saltburn’ house owners beg TikTok-ers to stay away
The real-life owners of the mansion used in the film ‘Saltburn’ have hired security to keep the ‘plague’ of influencers and trespassers visiting the property away. ⌘ Read more
UN chief: Security Council undermined by Gaza, Ukraine deadlock
United Nations chief Antonio Guterres on Monday (February 26) deplored how the U.N. Security Council had failed to respond adequately to the Israel-Hamas conflict in Gaza and Russia’s invasion of Ukraine, saying the conflicts had “perhaps fatally” undermined its authority. ⌘ Read more
Could the ‘Middle Corridor’ offer a secure trade route that bypasses the Red Sea?
The so-called “Middle Corridor”, a trade route that would link Chinese and European markets through Central Asia and the Caucasus, was the focus of the 5th Balkans and Black Sea Forum held on Thursday 15th of February. Delegates at the conference promoted the Middle Corridor as an opportunity for a stable trade route amid escalating tensions … ⌘ Read more
6 Docker Security Best Practices for Your Application
This comprehensive guide for developers and operators provides actionable insights to enhance the security and efficiency of Docker applications. ⌘ Read more
How to Automatically Fill SMS Passcodes & Security Codes on iPhone, iPad, Mac
Messages for iPhone, Mac, and iPad all contain a really handy feature that autofills security codes that are sent to you via text message. You know the type, as these text message verification codes are often required for signing into financial institutions or many other things that use it as a method of identity and … [Read More](https://osxdaily.com/2024/02/20/how-to-automatic … ⌘ Read more
Build code security skills with the GitHub Secure Code Game
Learn to find and fix security issues while having fun with Secure Code Game, now with new challenges focusing on JavaScript, Python, Go, and GitHub Actions!
The post Build code security skills with the GitHub Secure Code Game appeared first on The GitHub Blog. ⌘ Read more
Fixing security vulnerabilities with AI
A peek under the hood of GitHub Advanced Security code scanning autofix.
The post Fixing security vulnerabilities with AI appeared first on The GitHub Blog. ⌘ Read more
How to Autofill Security Codes from Mail on Mac, iPhone, iPad
The latest versions of Mail for iPhone, Mac, and iPad support a fantastic autofill security code feature. This is similar to the autofilling security code feature for SMS that is available in Messages for Mac, iPhone, and iPad, except of course that it’s utilizing the Mail app for two-factor authentication and security codes that are … [Read More](https://osxdaily.com/2024/02/14/how-autofill-security-code-mail-iphone-ipad-ma … ⌘ Read more
FRDM-MCXN947 Development Board for Embedded Applications with MCX N94/N54 MCUs
The FRDM-MCXN947 by NXP Semiconductors is an advanced development board, engineered specifically for swift prototyping with MCX N94X and N54X Microcontrollers. This board is an ideal tool for developing applications in fields such as Industrial Automation, AI and Machine Learning, Security Systems, and Smart City and Home technologies. At the heart of the FRDM-MCXN947 is […] ⌘ Read more
The architecture of SAST tools: An explainer for developers
More developers will have to fix security issues in the age of shifting left. Here, we break down how SAST tools can help them find and address vulnerabilities.
The post The architecture of SAST tools: An explainer for developers appeared first on The GitHub Blog. ⌘ Read more
iOS 17.3.1 Update Released to Fix Overlapping Text Bug on iPhone & iPad
Apple has released iOS 17.3.1 as an update for iPhone, along with iPadOS 17.3.1 for iPad. The small software update includes a bug fix for an issue where text may duplicate or overlap while typing. There do not appear to be any other changes or security fixes in this update. Separately, macOS Sonoma 14.3.1 and … [Read More](https://osxdaily.com/2024/02/08/ios-17-3-1-update-released-to-fix … ⌘ Read more
GitHub’s Engineering Fundamentals program: How we deliver on availability, security, and accessibility
The Fundamentals program has helped us address tech debt, improve reliability, and enhance observability of our engineering systems.
The post [GitHub’s Engineering Fundamentals program: How we deliver on availability, security, and accessibility](https://github.blog/2024-02-08-githubs-engineering-fundamentals-program-how-we-delive … ⌘ Read more
Rise in extreme weather events putting huge strain on food charities helping struggling families
Food charities helping struggling families put food on the table can no longer rely on excess produce being available as farmers count their own cost of extreme weather events. ⌘ Read more
Safari Autofill Security Codes Not Working on Mac? Here’s a Tip
Modern versions of Safari for Mac include an incredibly useful Autofill Security Code feature, that allows security codes that are texted to your number to be automatically filled in when you are logging into secure websites in Safari on the Mac. For example, you may be logging into a banking website which requires a security … [Read More](https://osxdaily.com/2024/02/06/safari-autofill-security-codes-n … ⌘ Read more
@prologic@twtxt.net pretty nothing berger. The “blowout” was pretty tame coming from Linus kill yourself now. The world will be a better place” Torvold.
The issue was a dev making a “fix” that didn’t have a documented problem. They reused some specific low level functions they did not understand the reason they were made.
How to Stop iPhone Apps Snooping via Push Notifications
Apple is well known for being a privacy centric company and building tons of security and privacy features into the iPhone and iPad to control things like location tracking and app tracking, but some big name app developers are coming up with creative ways to pry details about your device. One such crafty method of … Read More ⌘ Read more
Docker Security Advisory: Multiple Vulnerabilities in runc, BuildKit, and Moby
Docker security advisory about multiple vulnerabilities in runc, BuildKit, and Moby: We will publish patched versions of runc, BuildKit, and Moby on January 31 and release an update for Docker Desktop on February 1 to address these vulnerabilities. Additionally, our latest Moby and BuildKit releases will include fixes for CVE-2024-23650 and CVE-2024-24557, discovered respectively by an … ⌘ Read more
EJBCA and Docker — Streamlining PKI Management and TLS Certificate Issuance
Learn how to deploy EJBCA as a Docker container, making your infrastructure setup more modern, efficient, and flexible for your security and certificate management needs. ⌘ Read more
MacOS Ventura 13.6.4 & MacOS Monterey 12.7.3 Released with Security Fixes
Apple has released MacOS Ventura 13.6.4 and macOS Monterey 12.7.3, each containing important security fixes, for Mac users who are not yet running macOS Sonoma. The security updates correspond with the macOS Sonoma 14.3 update that was issued for Sonoma users. It’s not unusual for many Mac users to continue to run older versions of … [Read More](https://osxdaily.com/2024/01/23/macos-v … ⌘ Read more
iOS 16.7.5 & iPadOS 16.7.5 Security Updates for Older iPhone & iPad Released
Apple has released iOS 16.7.5 and iPadOS 16.7.5 as updates for older model iPhone and iPad devices that are not running iOS 17.3. These updates are available for iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 9.7-inch, and iPad Pro 12.9-inch 1st generation, whereas newer devices will find iOS 17.3 and … Read More ⌘ Read more
iOS 15.8.1 & iPadOS 15.8.1 Security Updates Released for Old iPhone, iPad, iPod Touch
Apple has released security updates to old model iPhone, iPad, and iPod touch devices running iOS 15 and iPadOS 15. Yes, you read that correctly and you do not need to check your calendar (or your eyes), iOS 15.8.1 and iPadOS 15.8.1 are new releases of system software for old hardware. iOS 15.8.1 and iPadOS … [Read More](https://osxdaily.com/2024/01/23/ios-15-8-1 … ⌘ Read more
iOS 17.3 Update for iPhone Available to Download Now
iOS 17.3 for iPhone has been released by Apple, along with iPadOS 17.3 for iPad. The software updates include some minor new features, as well as security enhancements and bug fixes, and are therefore recommended for all iPhone and iPad users to install onto their devices. The most notable new feature to arrive with iOS … Read More ⌘ Read more
MacOS Sonoma 14.3 Update Available to Download Now for Mac
macOS Sonoma 14.3 is now available for Mac users running the Sonoma operating system on their computer. The software update includes bug fixes, security enhancements, and adds a few very minor new features, like the ability to collaborate on playlists with Apple Music and use Emoji reactions there. The full release notes for macOS Sonoma … [Read More](https://osxdaily.com/2024/01/22/macos-sonoma-14-3-update-available … ⌘ Read more
Ignite Realtime Blog: HTTP File Upload plugin 1.4.0 released
The HTTP File Upload plugin is a plugin for Openfire that allow users to easily share files (such as pictures) in a chat
A new release is now available for this plugin: version 1.4.0.
This release introduces a couple of interesting security improvements:
- an additional guard has been added that should prevent scripts embedded in data to be executed without the recipient’s approval
- It is now possible to configure a viru … ⌘ Read more
How to Enhance Application Security Posture with Docker Scout Policies
Learn how Docker Scout policies can help development and security teams define and achieve an ideal application security posture for organizations. ⌘ Read more