Independent security researchers testing the security of the United Nations were able to compromise public-facing servers and a cloud-based development account for the U.N. and lift data on more than 100,000 staff and employees, according to a report released Monday.
A serious security flaw in a commonly used npm security module, private-ip, may affect hundreds of thousands of private and public applications.
Chinese electronics giant TCL has acknowledged security holes in some models of its smart television sets, but denies that it maintains a secret “back door” that gives it control over deployed TVs.
A report by independent researchers warns that TCL brand Android smart TVs contained serious and exploitable security holes. It also raises questions about the China-based electronics firm’s ability to remotely access and control deployed devices.
Galen Emery of Chef comes into the Security Ledger studios to talk about how security and compliance are “shifting left” with DEVSECOPS.
