Portsuppe

IT news

5,426 items

EFF Deeplinks57d05/19

Microsoft Took a Step Toward Human Rights Accountability. Google and Amazon (and Others) Should Pay Attention!

For years, civil society organizations, workers, journalists, and human rights experts have warned that major technology companies risk enabling grave human rights abuses when they provide cloud computing, AI, and surveillance infrastructure to governments implicated in violations of international and humanitarian law. While many companies pay lip service to evaluating customers and contracts for human rights implications (lip service Exhibit A: Palantir!), too often those processes fail to prov

off-topicunknown-it-category-7 · unknown-it-category-6 · unknown-it-category-5
Bundesregierung News58d05/19

Chancellor Merz congratulates the Prime Minister of the Republic of Iraq, Ali al-Zaidi

Dear Prime Minister, I extend my warmest congratulations to you on your election as Prime Minister of the Republic of Iraq. Iraq and Germany are linked by multiple connections and close relationships. I look forward to working with you to deepen the strong cooperation between our countries. I wish you much success and good luck in the tasks ahead of you. Kind regards, Friedrich Merz Federal Chancellor

off-topicunknown-it-category-8 · ai
EFF Deeplinks58d05/19

Your Privacy Shouldn't Be A Corporate Decision

“We will launch during a dynamic political environment where many civil society groups that we would expect to attack us would have their resources focused on other concerns.”-Meta Internal Document on face recognition software for smart glasses, 2025 It’s unsurprising that a company would plan to release yet another privacy-invasive product. What is surprising is that they think we aren’t watching. You can help us keep them in check. JOIN EFF Meta isn't the only company actively eroding your pr

unknown-it-category-7 · unknown-it-category-6 · unknown-it-category-5
Netzpolitik (DE)58d05/19

Child protection recommendations: “A bouquet of suggestions and ideas”

Olaf Köller, Karin Prien, Nadine Schön – All rights reserved: IMAGO / IPON; Edit: netzpolitik.orgIs the social media ban coming? On behalf of the federal government, experts are working on recommendations for protecting minors online. At the Tincon conference for young people in Berlin, the co-chairs of the committee provide new insights.

off-topicunknown-it-category-7 · unknown-it-category-6 · unknown-it-category-8
Netzpolitik (DE)58d05/19

Social media ban: Neither scientifically based nor effective

It's not just science that rejects a social media ban, practice in Australia is also providing initial facts. – All rights reserved: IMAGO / ANPE There is no scientific evidence for a blanket social media ban for minors, say researchers at the re:publica digital conference. Even many supporters of a ban doubt its effectiveness. Initial figures from Australia suggest why this skepticism is justified.

off-topicunknown-it-category-7 · unknown-it-category-6 · unknown-it-category-8
ICS-CERT Advisories58d05/19

ZKTeco CCTV Cameras

View CSAF Summary Successful exploitation of this vulnerability could result in information disclosure, including capture of camera account credentials. The following versions of ZKTeco CCTV Cameras are affected: SSC335-GC2063-Face-0b77 Solution CVSS Vendor Equipment Vulnerabilities v3 9.1 ZKTeco ZKTeco CCTV Cameras Authentication Bypass Using an Alternate Path or Channel Background Critical Infrastructure Sectors: Commercial Facilities Countries/Areas Deployed: Worldwide Company Headquarters Lo

privacy · unknown-it-category-14
ICS-CERT Advisories58d05/19

ABB CoreSense HM and CoreSense M10

View CSAF Summary An update is available that resolves vulnerability in the product versions listed as affected in this advisory. A path traversal vulnerability in these products can allow unauthenticated users to gain access to restricted directories. Exploiting this vulnerability can lead to complete system compromise and exposure of sensitive information. The following versions of ABB CoreSense HM and CoreSense M10 are affected: CoreSense™ HM <=2.3.1, 2.3.4 (CVE-2025-3465) CoreSense™ M10 <=1.

privacy · unknown-it-category-14
CISA Cybersecurity Advisories58d05/19

ScadaBR

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to perform unauthenticated remote code execution. The following versions of ScadaBR are affected: ScadaBR 1.2.0 (CVE-2026-8602, CVE-2026-8603, CVE-2026-8604, CVE-2026-8605) CVSS Vendor Equipment Vulnerabilities v3 9.1 ScadaBR ScadaBR Missing Authentication for Critical Function, Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Cross-Site Request Forgery (CSRF), Use of Hard-coded Credentials Background Critical Infrastructure Sectors: Critical Manufacturing, Dams

cybersecurity · government-security · privacy
CISA Cybersecurity Advisories58d05/19

Siemens RUGGEDCOM APE1808 Devices

View CSAF Summary A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets. Siemens is preparing fix versions and recommends countermeasures for products where fixes are not, or not yet available. Customers are advised to consult and implement the workarounds

cybersecurity · government-security · privacy
ICS-CERT Advisories58d05/19

Kieback & Peter DDC Building Controllers

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to take control of the victim's browser. The following versions of Kieback & Peter DDC Building Controllers are affected: DDC4002 Update to version 1.23.5 or newer Vendor fix Update the firmware to the latest available version: DDC4200e -> Update to version 1.23.5 or newer Vendor fix Update the firmware to the latest available version: DDC4400e -> Update to version 1.23.5 or newer Vendor fix Update the firmwa

privacy · unknown-it-category-14
FTC Technology News58d05/19

Federal Court Holds Payment Processor Cliq in Contempt for Violating FTC Order

Court issues order finding Cliq, formerly known as Cardflex, and its operators Andrew Phillips and John Blaugrund in contempt and imposing $6.5 million sanction At the request of the Federal Trade Commission, a federal judge ordered Cliq Inc., a payment processing company, and its operators to pay $6.5 million in sanctions for violating a 2015 federal court order designed to prevent the compaView Press Release

borderlinedata-protection · unknown-it-category-6 · vulnerability
FTC Technology News58d05/19

FTC Begins Enforcing the TAKE IT DOWN Act

New FTC website allows people to submit complaints about companies’ failure to comply with law requiring platforms to remove nonconsensual intimate images at request of victims The Federal Trade Commission today began enforcing the TAKE IT DOWN Act (TIDA), a law requiring platforms, at the request of victims, to remove intimate photos or videos shared online without victims’ consent. View Press Release

borderlinedata-protection · unknown-it-category-6 · vulnerability
KrebsOnSecurity58d05/18

CISA Admin Leaked AWS GovCloud Keys on Github

Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems. Security experts said the public archive included files detailing how CISA builds, tests and deploys software internally, and that it represents one of the most egregious government data leaks in recent history.

general-tech · cybersecurity · government-security
PrevPage 169 / 181Next