What Your Password Says About You
What Your Password Says About You

At the end of last year, a survey revealed that the most popular password was still “123456,” followed by “password.” These highly hackable choices are despite years of education around the importance of password security. So, what does this say about people who pick simple passwords? Most likely, they are shooting for a password that is […]

Read more
DHS Task Force Moves Forward on Playbooks for Supply Chain Security
Black Hat Europe 2018

The public/private task force takes early steps toward securing the end-to-end supply chain. In July, the Department of Homeland Security (DHS) announced the formation of the Information Communications Technology Supply Chain Task Force. Its purpose: to develop “playbooks” for organizations that need an operational response to security risks in the supply chain. This week, the task […]

Read more
New Bluetooth Hack Affects Millions of Vehicles
Dark Reading

Enterprise VulnerabilitiesFrom DHS/US-CERT’s National Vulnerability Database CVE-2018-19349PUBLISHED: 2018-11-17 In SeaCMS v6.64, there is SQL injection via the admin_makehtml.php topic parameter because of mishandling in include/mkhtml.func.php. CVE-2018-19350PUBLISHED: 2018-11-17 In SeaCMS v6.6.4, there is stored XSS via the member.php?action=chgpwdsubmit email parameter during a password change, as demonstrated by a data: URL in an OBJECT element. CVE-2018-19341PUBLISHED: 2018-11-17 […]

Read more
BlackBerry Doubles Down on Security in $1.4B Acquisition of Cylance

BlackBerry aims to bring Cylance artificial intelligence and security tools into its software portfolio. BlackBerry has agreed to buy endpoint security firm Cylance for $1.4 billion cash in a deal expected to close before February 2019, the two companies announced today. Once famous for its keyboarded smartphones, BlackBerry has since pivoted to enterprise software. The […]

Read more
GraphQL is Everywhere!
GraphQL logo

By Chris Coyier On November 16, 2018 graphql I find GraphQL extremely fun and empowering tech to work with, even as a novice just getting started. You’ve probably heard the elevator pitch before: it allows you to ask for exactly the data you need whenever you need it (probably at the component level), and it […]

Read more
Top