Critical flaw alert! Stop using JSON encryption

Critical flaw alert! Stop using JSON encryption

Developers shouldn't use JSON Web Tokens or JSON Web Encryption in their applications at all, lest their private keys get stolen

03/27/17

Google to Symantec: We don't trust you anymore

Google to Symantec: We don't trust you anymore

Admins need to consider whether they still want to use Symantec after its repeated mistakes with issuing TLS certificates

03/24/17

Malware finds unwitting ally in GitHub

Malware finds unwitting ally in GitHub

Winnti's abuse of GitHub repository leaves the site in the tricky position of deciding which projects can stay and which ones to shut down

03/24/17

SAS, Canonical turn silly over open source

SAS, Canonical turn silly over open source

One vendor incites fear of open source software, the other continues to oversell it. Neither is correct

03/24/17

H-1B reform promises hang by a thread

H-1B reform promises hang by a thread

The deadline for visa applications looms, but the Trump Administration has done nothing to fulfill campaign promises to end the ‘cheap labor program’

03/24/17

CoreOS opens its Kubernetes power to Azure and OpenStack

CoreOS opens its Kubernetes power to Azure and OpenStack

Now in new cloud environments, the Tectonic container-based Linux distro is becoming a showcase for Kubernetes projects beyond container orchestration

03/23/17

Google reports mixed progress on Android security

Google reports mixed progress on Android security

Is the glass half full or half empty? The real issue is that it’s at the halfway mark and there's still a significant security road that Android must travel

03/23/17

GitLab Enterprise 9 tweaks user management, application monitoring

GitLab Enterprise 9 tweaks user management, application monitoring

The new features show GitLab remaining as interested in the full lifecycle of software development as it is in code hosting

03/22/17

Devops embraces security measures to build safer software

Devops embraces security measures to build safer software

Survey finds that devops teams are automating security throughout the software development lifecycle to create better and safer code

03/22/17

Mozilla vies with Apple over future of web graphics

Mozilla vies with Apple over future of web graphics

Based on the existing Khronos API, Mozilla's plan could lead to competing proposals submitted by two different standards bodies

03/22/17

PyPy powers up Python 3.5

PyPy powers up Python 3.5

Latest version of the just-in-time compiler can run Python 3.5 scripts with asynchronous syntax and bolsters support for 2.x apps that use C-accelerated modules

03/21/17

IBM chases Google, Microsoft with Kubernetes in the cloud

IBM chases Google, Microsoft with Kubernetes in the cloud

IBM follows Google and Microsoft in offering hosted Kubernetes as a service, with direct access to the container orchestration system's APIs

03/20/17

Leading Linux distros dawdle as kernel flaw persists

Leading Linux distros dawdle as kernel flaw persists

A race condition flaw has been fixed in the mainline Linux kernel, but some Red Hat, Canonical, and Debian distributions don't yet have patches

03/20/17

MIT-Stanford project uses LLVM to break big data bottlenecks

MIT-Stanford project uses LLVM to break big data bottlenecks

Written in Rust, Weld can provide orders-of-magnitude speedups to Spark and TensorFlow

03/20/17

Warning: Your networking tools are weakening your web security

Warning: Your networking tools are weakening your web security

US-CERT says SSL inspection tools, which let enterprise administrators examine encrypted traffic to find and block malicious activity, actually hinder HTTPS

03/17/17

How to survive the robot-fueled jobs apocalypse

How to survive the robot-fueled jobs apocalypse

When automation makes money instead of you, economists look to redistribution schemes so you don't starve

03/17/17

Yahoo breach lessons IT can't ignore

Yahoo breach lessons IT can't ignore

The indictment against the attackers behind the Yahoo breach shows just how vulnerable corporate networks are when thieves get their hands on employees' personal information

03/16/17

How an open source Gitter could challenge Slack

How an open source Gitter could challenge Slack

Just becoming open source won't make Gitter into a Slack-killer, but the move might make big inroads with the audience that matters: developers

03/16/17

Docker frees container core for Cloud Native Computing Foundation

Docker frees container core for Cloud Native Computing Foundation

Docker has donated its containerd core container runtime to the CNCF to ensure open oversight

03/15/17

Why Splunk keeps beating open source competitors

Why Splunk keeps beating open source competitors

Arguably the first widely used big data tool, Splunk provides the kind of end-to-end user experience open source solutions lack

03/15/17

Load More