Language Selection

English French German Italian Portuguese Spanish

Security: EFAIL Hype, Kubernetes, 'Smart' Things and More

Filed under
Security
  • Serious vulnerabilities with OpenPGP and S/MIME

    The efail.de site describes a set of vulnerabilities in the implementation of PGP and MIME that can cause the disclosure of encrypted communications, including old messages. "In a nutshell, EFAIL abuses active content of HTML emails, for example externally loaded images or styles, to exfiltrate plaintext through requested URLs."

  • How the Kubernetes Security Response Team Works

    The open-source Kubernetes container orchestration is an increasingly deployed platform that is now supported across all three major public cloud providers (Google, AWS and Azure) as well as enterprise private clouds.

    Container security is a big issue these days, and keeping Kubernetes secure involves multiple aspects. One of those aspects is the security of the Kubernetes code itself, which has had its share of vulnerabilities that have been reported in the past year. Among those vulnerabilities is CVE-2017-1002101, which was patched in the Kubernetes 1.10 release that became generally available on March 26.

  • Ring doorbell flaw lets others watch after password changes (updated)

    The issue, as you might guess, is that the window exists in the first place. Someone with a still-valid login could not only spy on whatever's happening, but download videos. The same incident that prompted the change also included phantom rings in the middle of the night.

  • Security Innovation Supports Open Source Community with Free Security Tools to Identify and Mitigate Software Vulnerabilities

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Type Title Author Replies Last Postsort icon
Story Linux 4.20--rc76 Rianne Schestowitz 17/12/2018 - 12:12am
Story Android Leftovers Rianne Schestowitz 17/12/2018 - 12:06am
Story 080p Linux Gaming Performance - NVIDIA 415.22 vs. Mesa 19.0-devel RADV/RadeonSI Rianne Schestowitz 16/12/2018 - 11:57pm
Story This week in Usability & Productivity, part 49 Roy Schestowitz 1 16/12/2018 - 2:47pm
Story VK9, the project that aims to support Direct3D 9 over Vulkan has hit another milestone Roy Schestowitz 1 16/12/2018 - 1:55pm
Story Sparky SU 0.1.0 Roy Schestowitz 16/12/2018 - 1:50pm
Story Leftovers: Linux in the Ham Shack and Golden Age of the iPhone Is Ending Roy Schestowitz 16/12/2018 - 1:24pm
Story OSS Leftovers Roy Schestowitz 16/12/2018 - 1:18pm
Story California launches open-source code site Roy Schestowitz 2 16/12/2018 - 1:01pm
Story Schedule a visit with the Emacs psychiatrist Roy Schestowitz 16/12/2018 - 12:49pm