In-brief: Software updates were released to address a serious and exploitable security flaw in the Linux kernel on Tuesday. The issue, in a feature called keyring, could impact embedded systems as well as mobile devices.
Vulnerabilities
Podcast: Craig Smith of OpenGarages on Vehicle Security and GM’s Bug Bounty
In-brief: In this podcast, Paul speaks with Craig Smith of Open Garages on GM’s bounty program, the state of connected vehicle security, and what the auto industry can learn from open source.
GM Launches Bug Bounty Program, Minus the Bounty
In-brief: General Motors (GM) has launched a program to entice white hat hackers and other expert to delve into the inner workings of its software. The reward: so far, a promise not to sue.
Podcast: Security is a Four Letter Word on the Internet of Things
In-brief: In this podcast, Dennis Fisher of onthewire.io and I talk about securing the Internet of Things.
Flaw in Super Secret BlackPhone Underscores Third Party Risk
In-brief: Black Phone contains a security flaw that could enable a malicious actor to redirect phone calls or secretly send text messages from the device, according to a report from the firm SentinelOne. The culprit: vulnerable third party software.*
