IN CASE YOU MISSED IT!

Cybersecurity, infosec, ai, malware & much more…

Chatbots News Saturday, June 2

Git repository vulnerability leads to remote code execution attacks

  • A severe vulnerability has been patched in Git software source code to prevent remote code execution attacks being launched at users.
  • Git, originally created for Linux kernel development, is open-source software that developers worldwide utilize to manage source code repositories, tarballs, and to track changes in files.
  • When this repository is cloned, Git checks the parent system before preparing to clone related submodules.
  • When you use Git to clone a repository, some configuration elements are also intentionally left out to prevent remote servers from fetching and executing code on remote systems.
  • If when you recursively cloned (and this repository does have to be cloned with — recursive for this vulnerability to manifest) this carefully crafted malicious parent repository, it will first check out the parent, then read the submodule’s checked-in repository in order to write the submodule to the working directory,…

Tags:

Git repository vulnerability leads to remote code execution attacks | ZDNet

Twitter Blocks Accounts of Previously Underage Users

  • In order to comply with the new General Data Protection Regulations (GDPR) Twitter has started blocking its users who were underage when they created their accounts even if they now meet the minimum age requirements.
  • I received a message saying my account was now locked and would require parental consent in order to process my data, or my account will be deleted, one user, who is now 20, told the Guardian.
  • He had signed up for an account in 2009 without entering a birthday, and then put a fake age in once the company introduced the ability to add that information, before recently updating it to his actual birthday.
  • The company refused to publicly comment on the topic but a source confirmed that it had updated its policy to lock the accounts created by children who had claimed that they were above the age of 13 years when they signed up.
  • The issue of data privacy is more serious now more than ever because of the Cambridge Analytica Scandal and it is believed that Twitter thought that only way to comply with GDPR was to remove the accounts that may have been created by underage users.

Tags:

Twitter Blocks Accounts of Previously Underage Users

Hacks, Scams & Attacks on the Blockchain

  • The meteoric rise of Blockchain technology has sparked a myriad of exciting, new opportunities in business.
  • One of blockchains most valued features is its inherently secure structure, therefore the threat of cyber security would seem counter-intuitive at first glance.
  • Luckily, these emerging threats have only pushed blockchains to implement robust security protocols, specifically through the full encryption of blockchain data and authentication, authorization, and audit (AAA) strategies.
  • Thanks to a series of emerging new tools from companies like Chainalysis, blockchain hack prevention is being sought to support investigations in partnership with the U.S. Internal Revenue Service, the Federal Bureau of Investigation, the Securities and Exchange Commission, the Drug Enforcement Administration, Immigration and Customs Enforcement, and Europol.
  • If cybercriminals seek to challenge the widening security measures of blockchain, its clear they will be up against a much tougher security landscape than ever before.

Tags:

Hacks, Scams & Attacks on the Blockchain