SEARCH
Security Norms Must Shift in a Crisis
With so many employees and contractors working remotely, security teams and CISOs grapple with the job of continuing to protect networks, systems, data, and people. One challenge: recognizing clues that something is wrong when nothing looks normal.
VMware Patches Critical Flaw That Allows Guest Escape
A critical flaw in VMware Fusion and Workstation could allow an attacker to run arbitrary code on the host from the guest.
GitHub’s npm Acquisition Will Boost JavaScript Security
The security of the JavaScript software ecosystem will get a significant boost with GitHub acquiring npm, which hosts and maintains the Node package manager and the package registry. GitHub has the resources to invest in robust and stable infrastructure, thorough vetting of software packages, and integration into GitHub's other services.
EARN IT Act Casts a Long Shadow on Encrypted Services
More senators are expressing support for the EARN IT Act despite its serious threat to encrypted services and user privacy.
Microsoft Releases Emergency Fix for SMBv3 Flaw
Microsoft has issued a security advisory warning of a vulnerability in the Microsoft Server Message Block (SMB) protocol. Until a fix is available, administrators are advised to disable SMBv3 compression on their servers.