2014, Applications, Open Source and Software - Information Technology Zone

Open source developer corrupts widely-used libraries, affecting tons of projects

The Verge

JANUARY 9, 2022

A developer appears to have purposefully corrupted a pair of open-source libraries on GitHub and software registry npm — “ faker.js ” and “ colors.js ” — that thousands of users depend on, rendering any project that contains these libraries useless, as reported by Bleeping Computer. Illustration by Alex Castro / The Verge.

Open Source

Open Source Development Software Software

We’re all becoming software CIOs — a role Red Hat CIO Jim Palermo knows well

CIO Business Intelligence

NOVEMBER 15, 2023

Whether you sell cars, candy, consulting, or construction, software is moving to the center of your business. Your products and services rely on software and data for nearly everything from product development to aftermarket support. You’ve become (or will become) what is, essentially, a software company CIO. So congratulations!

Software

Software Software Adobe Engineering

Software Is Assembled

ForAllSecure

AUGUST 17, 2021

The situation with software is similar. You can't realistically fix all of the software vulnerabilities, but you can try and find and fix an increasing number of vulnerabilities to make it more reliable and more secure, along the way. SOFTWARE IS ASSEMBLED. And how many barriers you feel comfortable putting into place.

Software

Software Software Open Source Software Development

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Your car is about to go open source

Galido

OCTOBER 6, 2016

The main reason for the limited functionality of most IVIs is that car manufacturers use proprietary software developed by third-party suppliers to power their infotainment systems, meaning car-based apps are also proprietary. By developing an open-source platform, carmakers can share upgrades as they arrive.

Open Source

Open Source Linux Automotive Operating Systems

Enterprise software developers continue to use flawed code in apps

Network World

JULY 11, 2016

Companies that develop enterprise applications download over 200,000 open-source components on average every year and one in every 16 of those components has security vulnerabilities.

Software Development

Software Development Software Software Enterprise

NGA joins GitHub, offers code to help disaster response

CTOvision

APRIL 11, 2014

April 11, 2014. If they can do open source, any agency can. It enables analysts to review imagery from different sources simultaneously, rather than sequentially, which results in much faster damage assessments and better prioritization of limited first-responder resources in a time-sensitive environment. “We

Open Source

Open Source Disaster Recovery Government Analysis

Which Government, Non-Profit and NGO Have Big Data/CDH Lessons Learned To Share?

CTOvision

SEPTEMBER 17, 2014

If you are in or know people in government, non-profits or NGO’s that have leveraged Hadoop in service to missions please nominate them for recognition as part of the 2014 Data Impact Awards presented by Cloudera. 2014 Data Impact Awards. Nominations are open through September 12, 2014. Presented by Cloudera.

Big Data

Big Data Government Fractional CTO Data

CDH Users: If you have done impactful things with data please share how what and why

CTOvision

SEPTEMBER 8, 2014

The 2014 Data Impact award, presented by Cloudera, is a great way of helping the community learn best practices by highlighting mission-focused solutions. 2014 Data Impact Awards. Nominations are open through September 12, 2014. The 2014 Data Impact Awards highlight achievements in the following areas: BUSINESS IMPACT.

Fractional CTO

Fractional CTO CTO Data Big Data

IBM to Acquire Cloudant: Open, Cloud Database Service Helps Organizations Simplify Mobile, Web App and Big Data Development

CTOvision

FEBRUARY 24, 2014

– 24 Feb 2014: IBM (NYSE: IBM ) today announced a definitive agreement to acquire Boston, MA-based Cloudant, Inc., Cloudant, an active participant and contributor to the open source database community Apache CouchDBTM , delivers high availability, elastic scalability and innovative mobile device synchronization.

IBM

IBM Big Data Mobile Development

IDF 2014: Data Center Mega-Session

Scott Lowe

SEPTEMBER 10, 2014

This is a liveblog of the Data Center Mega-Session from day 2 of Intel Developer Forum (IDF) 2014 in San Francisco. Infrastructure will be software defined. Bryant shifts the discussion to software-defined infrastructure (SDI). Open source investments in Ceph and OpenStack Swift. Analytics will be pervasive.

Data Center

Data Center Intel Data Storage

Cloudera Strengthens Hadoop Security with Acquisition of Gazzang: Builds on additional community efforts to deliver end-to-end security offering

CTOvision

JUNE 3, 2014

One is Intel corporation started a deep focus on enhanced security, including creating an open source community activity that leveraged smart design that could leverage Intel Data Protection Technology with AES-NI ( Project Rhino ) in 2013. Jun/03/2014. Cloudera Strengthens Hadoop Security with Acquisition of Gazzang.

Security

Security Big Data Intel Open Source

The Risks In Using Third-Party Code

ForAllSecure

MARCH 11, 2021

Vulnerabilities can be inherited through your software supply chain, and it’s more common than we may like to admit. BlackDuck Software uncovered that 67% of the applications they analyzed contained open source security vulnerabilities. Software decays without ongoing maintenance. See graph above.

Open Source

Open Source Retail Software Software

The Risks In Using Third-Party Code

ForAllSecure

MARCH 11, 2021

Vulnerabilities can be inherited through your software supply chain, and it’s more common than we may like to admit. BlackDuck Software uncovered that 67% of the applications they analyzed contained open source security vulnerabilities. Software decays without ongoing maintenance. See graph above.

Open Source

Open Source Retail Software Software

Attend the 6 Feb @Cloudera Federal Forum: For the Analyst, Data Scientist, #BigData Technologist in DC

CTOvision

JANUARY 23, 2014

By Bob Gourley The agenda for the 3rd Annual Cloudera Federal Forum (6 Feb 2014, Hanover MD) has firmed up and will no doubt lead to an incredible event. Sudhanshu Arora – Software Engineer, Cloudera. 2:00 PM The Evolution of Machine Learning from Science to Software. 3:30 PM The Art and Application of Hadoop.

CTO

CTO Big Data Data HP

OpenVPN will be audited for security flaws

Network World

DECEMBER 8, 2016

Green has experience in auditing encryption software, being one of the founders of the Open Crypto Audit Project, which organized a detailed analysis of TrueCrypt, a popular open-source full-disk encryption application.

Open Source

Open Source Security Analysis Internet

9 common myths about low-code development platforms

mrc's Cup of Joe Blog

AUGUST 19, 2021

Since the term was first coined by Forrester back in 2014, Low-Code Software has exploded. You’ll find hundreds (or even thousands) of software tools claiming to be ‘low-code’. In other words, software tools that built web applications with a minimum of hand-coding. Or, so can process automation software.

Development

Development Tools Applications Software

The Fuzzing Files: The Anatomy of a Heartbleed

ForAllSecure

JULY 28, 2020

In late March 2014, two teams of security researchers independently started fuzz testing OpenSSL, an open source utility that encrypts traffic from a web browser to a server and forms the basis of trusted transactions online. By providing invalid input continuously for several hours, flaws in the software can be revealed.

Open Source

Open Source Research Security Google

The Fuzzing Files: The Anatomy of a Heartbleed

ForAllSecure

JULY 28, 2020

In late March 2014, two teams of security researchers independently started fuzz testing OpenSSL, an open source utility that encrypts traffic from a web browser to a server and forms the basis of trusted transactions online. By providing invalid input continuously for several hours, flaws in the software can be revealed.

Open Source

Open Source Research Security Google

The Hacker Mind Podcast: Fuzzing Message Brokers

ForAllSecure

DECEMBER 17, 2021

Jonathan Knudsen from Synopsys joins The Hacker Mind to discuss his presentation at SecTor 2021 on fuzzing message brokers such as RabbitMQ and VerneMQ, both written in Erlang, demonstrating that any type of software in any environment can still be vulnerable. Vamosi: The idea behind Open Source is great.

Open Source

Open Source Software Software Applications

The Fuzzing Files: The Anatomy of a Heartbleed

ForAllSecure

JULY 28, 2020

In late March 2014, two teams of security researchers independently started fuzz testing OpenSSL, an open source utility that encrypts traffic from a web browser to a server and forms the basis of trusted transactions online. By providing invalid input continuously for several hours, flaws in the software can be revealed.

Open Source

Open Source Research Security Google

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

In this episode I talk about how Heartbleed (CVE 2014-0160) was found and also interview Rauli Kaksonen, someone who was at Codenomicon at the time of its discovery and is now a senior security specialist at the University of Oulu in Finland, about how new security tools are still needed to find the next big zero day. No shame in that.

Open Source

Open Source Tools Security Software

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

In this episode I talk about how Heartbleed (CVE 2014-0160) was found and also interview Rauli Kaksonen, someone who was at Codenomicon at the time of its discovery and is now a senior security specialist at the University of Oulu in Finland, about how new security tools are still needed to find the next big zero day. No shame in that.

Open Source

Open Source Tools Security Software

The Best eBook Platforms for the Post-Readium Era

Kitaboo

JANUARY 8, 2020

One of the major reasons is that Google’s recent changes to its security rules —such as no inline scripts — have ended up in partially crippling the application. Furthermore, Readium recently released the version 0.31 — its latest and final release of the Readium Chrome application. Applications Based on Readium.

eBook

eBook Licensing Open Source Applications

From the Intel Newsroom: Improving Parkinson’s Disease Monitoring and Treatment through Advanced Technologies

CTOvision

AUGUST 14, 2014

The Intel-built big data analytics platform combines hardware and software technologies to provide researchers with a way to more accurately measure progression of disease symptoms. 13, 2014) — The Michael J. The platform supports an analytics application developed by Intel to process and detect changes in the data in real time.

Intel

Intel Big Data Study Research

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

In this episode I talk about how Heartbleed (CVE 2014-0160) was found and also interview Rauli Kaksonen, someone who was at Codenomicon at the time of its discovery and is now a senior security specialist at the University of Oulu in Finland, about how new security tools are still needed to find the next big zero day. No shame in that.

Open Source

Open Source Tools Security Software

10 Best ePUB Readers for Android, Mac and Windows for 2023

Kitaboo

DECEMBER 22, 2022

If the ton of options across ePUB reading software intimidate you, and you are struggling to find the best ePUB reader, here’s a list of the most sought-after ePUB readers for iOS, Android, and Windows in 2023. Despite functioning incredibly well with all Windows devices, this software operates on the latest Android versions.

Windows

Windows eBook Adobe Cloud

Hitachi Data Systems (HDS) Acquires Open Data Leader Pentaho

CTOvision

FEBRUARY 10, 2015

TSE: 6501), today announced its intent to acquire Pentaho Corporation, a leading big data integration and business analytics company with an open source-based platform for diverse big data deployments. The company’s consolidated revenues for fiscal 2013 (ended March 31, 2014) totaled 9,616 billion yen ($93.4

System

System Data Big Data Open Source

The Cybersecurity Sprint: Are we safe yet?

Cloud Musings

AUGUST 7, 2015

One major and costly challenge will be in the area of software development. A recent analysis, State of Software Security by Veracode , that rated application security by using compliance with Open Web Application Security Project (OWASP) top 10 vulnerabilities recommendations as a yardstick found a “low pass rate” in government applications.

Dell

Dell Authentication Government Applications

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

It's not as hard as you think to leverage the bleeding-edge tools well-resourced organizations rely on for some of the largest, most popular third-party applications.". ForAllSecure was founded with the mission to make the world's critical software safe. ForAllSecure does automated analysis to find unknown defects in applications.

Security

Security Artificial Intelligence Open Source Software

Why Companies Accepting Bitcoin as a Payment Method

Galido

JULY 19, 2018

Cryptocurrency software is completely open source and anyone can review the code. The initial announcement had been made in 2014 when they partnered with Coinbase. By the end of 2014, the technology giant Microsoft recognized bitcoin as a form of payment. The form of payment is enabled since 2014.

Company

Company Banking Dell Network

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

It's not as hard as you think to leverage the bleeding-edge tools well-resourced organizations rely on for some of the largest, most popular third-party applications.". ForAllSecure was founded with the mission to make the world's critical software safe. ForAllSecure does automated analysis to find unknown defects in applications.

Security

Security Artificial Intelligence Open Source Software

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

ForAllSecure

OCTOBER 9, 2019

It's not as hard as you think to leverage the bleeding-edge tools well-resourced organizations rely on for some of the largest, most popular third-party applications.". ForAllSecure was founded with the mission to make the world's critical software safe. ForAllSecure does automated analysis to find unknown defects in applications.

Security

Security Artificial Intelligence Open Source Software

A Reflection On ForAllSecure's Journey In Bootstrapping Behavior Testing Technology

ForAllSecure

APRIL 3, 2019

Software security is a global challenge that is slated to grow worse. The application attack surface is growing by 111 billion new lines of software code every year, with newly reported zero-day exploits rising from one-per-week in 2015 to one-per-day by 2021, according to the Application Security Report from Cybersecurity Ventures.

Programming

Programming Software Software Research

Technology Short Take #70

Scott Lowe

AUGUST 11, 2016

In this post you’ll find a collection of links to articles discussing the major data center technologies—networking, hardware, security, cloud computing, applications, virtualization…you name it! (If It’s worth a read as a good “foundation” to better understanding the ideas behind cloud-native applications and cloud-native environments.

Vmware

Vmware Hardware Storage Linux

A Reflection On ForAllSecure's Journey In Bootstrapping Behavior Testing Technology

ForAllSecure

APRIL 3, 2019

Software security is a global challenge that is slated to grow worse. The application attack surface is growing by 111 billion new lines of software code every year, with newly reported zero-day exploits rising from one-per-week in 2015 to one-per-day by 2021, according to the Application Security Report from Cybersecurity Ventures.

Programming

Programming Software Software Research

A REFLECTION ON FORALLSECURE'S JOURNEY IN BOOTSTRAPPING BEHAVIOR TESTING TECHNOLOGY

ForAllSecure

APRIL 3, 2019

Software security is a global challenge that is slated to grow worse. The application attack surface is growing by 111 billion new lines of software code every year, with newly reported zero-day exploits rising from one-per-week in 2015 to one-per-day by 2021, according to the Application Security Report from Cybersecurity Ventures.

Programming

Programming Software Software Research

The Hacker Mind: Shellshock

ForAllSecure

MARCH 24, 2021

How could open source software be vulnerable for so long? Years ago, I was the lead security software reviewer at ZDNet and then at CNET. This was a software flaw. Fuzz testing is similar to randomly striking keys and producing an unexpected result from the software. “Why did you press those keys?

Open Source

Open Source Operating Systems Software Software

The Hacker Mind: Shellshock

ForAllSecure

MARCH 24, 2021

How could open source software be vulnerable for so long? Years ago, I was the lead security software reviewer at ZDNet and then at CNET. This was a software flaw. Fuzz testing is similar to randomly striking keys and producing an unexpected result from the software. “Why did you press those keys?

Open Source

Open Source Operating Systems Software Software

Technology Short Take #58

Scott Lowe

DECEMBER 17, 2015

It says the the JET (Juniper Extension Toolkit) uses “open application programming interfaces”, but fails to provide any specifics. Is this “open-washing”, or is there actually some meat to this? See here for some of my thoughts on Intel’s RSA following IDF 2014.) Operating Systems/Applications.

Vmware

Vmware Linux Architecture Hardware

Open Source Security Podcast EP. 151 - The DARPA Cyber Grand Challenge With David Brumley

ForAllSecure

AUGUST 12, 2019

Open Source Security Podcast helps listeners better understand security topics of the day. Hosted by Kurt Seifried and Josh Bressers, the pair covers a wide range of topics including IoT, application security, operational security, cloud, devops, and security news of the day. In 2014, DARPA announced a Cyber Grand Challenge.

Open Source

Open Source Security Programming Analysis

Open Source Security Podcast EP. 151 - The DARPA Cyber Grand Challenge With David Brumley

ForAllSecure

AUGUST 12, 2019

Open Source Security Podcast helps listeners better understand security topics of the day. Hosted by Kurt Seifried and Josh Bressers, the pair covers a wide range of topics including IoT, application security, operational security, cloud, devops, and security news of the day. In 2014, DARPA announced a Cyber Grand Challenge.

Open Source

Open Source Security Programming Analysis

OPEN SOURCE SECURITY PODCAST EP. 151-- THE DARPA CYBER GRAND CHALLENGE WITH DAVID BRUMLEY

ForAllSecure

AUGUST 12, 2019

Open Source Security Podcast helps listeners better understand security topics of the day. Hosted by Kurt Seifried and Josh Bressers, the pair covers a wide range of topics including IoT, application security, operational security, cloud, devops, and security news of the day. In 2014, DARPA announced a Cyber Grand Challenge.

Open Source

Open Source Security Programming Analysis

Identity Relationship Management Market to Exceed $50 Billion by 2020

CTOvision

FEBRUARY 26, 2014

SAN FRANCISCO–(February 26, 2014)– ForgeRock Inc. , As the Internet of Things (IoT) grows, ForgeRock expects an increase in the number of applications serving each device, driving an increase in identity revenue per device — approximately $50 billion in total opportunity. It’s all about Identity Relationship Management now!

Open Source

Open Source IBM Oracle Internet

The Hacker Mind Podcast: EP 69 Self-Healing Operating Systems

ForAllSecure

APRIL 19, 2023

It was not a literal time machine, but a way of capturing the software development process by recording intervals and storing them in the close. In the Forbes article I never published, Dan said quote- “The reason that software is so inexpensive, we actually are very good at estimating development time. And software?

Operating Systems

Operating Systems System Open Source Applications

Open source developer corrupts widely-used libraries, affecting tons of projects

We’re all becoming software CIOs — a role Red Hat CIO Jim Palermo knows well

Webinars

Trending Sources

Software Is Assembled

Webinars

Your car is about to go open source

Enterprise software developers continue to use flawed code in apps

NGA joins GitHub, offers code to help disaster response

Which Government, Non-Profit and NGO Have Big Data/CDH Lessons Learned To Share?

CDH Users: If you have done impactful things with data please share how what and why

IBM to Acquire Cloudant: Open, Cloud Database Service Helps Organizations Simplify Mobile, Web App and Big Data Development

IDF 2014: Data Center Mega-Session

Cloudera Strengthens Hadoop Security with Acquisition of Gazzang: Builds on additional community efforts to deliver end-to-end security offering

The Risks In Using Third-Party Code

The Risks In Using Third-Party Code

Attend the 6 Feb @Cloudera Federal Forum: For the Analyst, Data Scientist, #BigData Technologist in DC

OpenVPN will be audited for security flaws

9 common myths about low-code development platforms

The Fuzzing Files: The Anatomy of a Heartbleed

The Fuzzing Files: The Anatomy of a Heartbleed

The Hacker Mind Podcast: Fuzzing Message Brokers

The Fuzzing Files: The Anatomy of a Heartbleed

The Hacker Mind Podcast: Hunting The Next Heartbleed

The Hacker Mind Podcast: Hunting The Next Heartbleed

The Best eBook Platforms for the Post-Readium Era

From the Intel Newsroom: Improving Parkinson’s Disease Monitoring and Treatment through Advanced Technologies

The Hacker Mind Podcast: Hunting The Next Heartbleed

10 Best ePUB Readers for Android, Mac and Windows for 2023

Hitachi Data Systems (HDS) Acquires Open Data Leader Pentaho

The Cybersecurity Sprint: Are we safe yet?

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

Why Companies Accepting Bitcoin as a Payment Method

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

A Reflection On ForAllSecure's Journey In Bootstrapping Behavior Testing Technology

Technology Short Take #70

A Reflection On ForAllSecure's Journey In Bootstrapping Behavior Testing Technology

A REFLECTION ON FORALLSECURE'S JOURNEY IN BOOTSTRAPPING BEHAVIOR TESTING TECHNOLOGY

The Hacker Mind: Shellshock

The Hacker Mind: Shellshock

Technology Short Take #58

Open Source Security Podcast EP. 151 - The DARPA Cyber Grand Challenge With David Brumley

Open Source Security Podcast EP. 151 - The DARPA Cyber Grand Challenge With David Brumley

OPEN SOURCE SECURITY PODCAST EP. 151-- THE DARPA CYBER GRAND CHALLENGE WITH DAVID BRUMLEY

Identity Relationship Management Market to Exceed $50 Billion by 2020

The Hacker Mind Podcast: EP 69 Self-Healing Operating Systems

Stay Connected