Feed aggregator

Article URL: https://near.blog/personality-basins/

Comments URL: https://news.ycombinator.com/item?id=42203635

Points: 3

# Comments: 0

Article URL: https://www.fcc.gov/document/chairwoman-jessica-rosenworcel-announces-departure-fcc

Comments URL: https://news.ycombinator.com/item?id=42203627

Points: 2

# Comments: 0

Article URL: https://www.newyorker.com/culture/infinite-scroll/the-fantasy-of-cozy-tech

Comments URL: https://news.ycombinator.com/item?id=42203624

Points: 1

# Comments: 0

Article URL: https://blog.helix.ml/p/from-clickops-to-gitops-the-evolution

Comments URL: https://news.ycombinator.com/item?id=42203616

Points: 1

# Comments: 0

Article URL: https://news.itsfoss.com/twenty-open-source-salesforce-alternative/

Comments URL: https://news.ycombinator.com/item?id=42203606

Points: 1

# Comments: 0

Article URL: https://justin.searls.co/shots/2024-11-21-15h22m12s/

Comments URL: https://news.ycombinator.com/item?id=42203600

Points: 2

# Comments: 0

Here's a hint: That eggplant emoji isn't about vegetables.

Today, CISA released Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a U.S. Critical Infrastructure Sector Organization in coordination with the assessed organization. This cybersecurity advisory details lessons learned and key findings from an assessment, including the Red Team’s tactics, techniques, and procedures (TTPs) and associated network defense activity.

This advisory provides comprehensive technical details of the Red Team’s cyber threat activity, including their attack path to compromise a domain controller and human machine interface (HMI), which serves as a dashboard for operational technology (OT).

CISA encourages all critical infrastructure organizations, network defenders, and software manufacturers to review and implement the recommendations and practices to mitigate the threat posed by malicious cyber actors and to improve their cybersecurity posture.

For more information on the most common and impactful threats, tactics, techniques, and procedures, see CISA’s Cross-Sector Cybersecurity Performance Goals. To learn more about secure by design principles and practices, visit CISA’s Secure by Design webpage.

CISA released seven Industrial Control Systems (ICS) advisories on November 21, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-24-326-01 Automated Logic WebCTRL Premium Server
• ICSA-24-326-02 OSCAT Basic Library
• ICSA-24-326-03 Schneider Electric Modicon M340, MC80, and Momentum Unity M1E
• ICSA-24-326-04 Schneider Electric Modicon M340, MC80, and Momentum Unity M1E
• ICSA-24-326-05 Schneider Electric EcoStruxure IT Gateway
• ICSA-24-326-06 Schneider Electric PowerLogic PM5300 Series
• ICSA-24-326-07 mySCADA myPRO Manager

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2024-44308 Apple Multiple Products Code Execution Vulnerability
• CVE-2024-44309 Apple Multiple Products Cross-Site Scripting (XSS) Vulnerability
• CVE-2024-21287 Oracle Agile Product Lifecycle Management (PLM) Incorrect Authorization Vulnerability

Users and administrators are also encouraged to review the Palo Alto Threat Brief: Operation Lunar Peek related to CVE-2024-0012, the Palo Alto Security Bulletin for CVE-2024-0012, and the Palo Alto Security Bulletin for CVE-2024-9474 for additional information. 

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

Sonic is a very fast internet service provider, offering one max speed for a very competitive price. CNET takes a deeper look at this California ISP.

Sparklight is the best internet provider in Rio Rancho. If you are looking to explore more options, CNET's internet experts suggest the following.

The ultimate guide on how long to cook a turkey, the tools you'll need and what to do if something does go wrong.

Article URL: https://vercel.com/blog/vercel-acquires-grep

Comments URL: https://news.ycombinator.com/item?id=42203245

Points: 1

# Comments: 0

From Google's Pixel 9 and Samsung's Galaxy S24 to foldable phones like Motorola's Razr Plus, these are the best Android phones you can buy.

Chinese black market operators are openly recruiting government agency insiders, paying them for access to surveillance data and then reselling it online—no questions asked.

Article URL: https://twitter.com/hongyangzh/status/1859288829825515810

Comments URL: https://news.ycombinator.com/item?id=42203221

Points: 1

# Comments: 0

It can be used to write your own generic hash table, see for an example: https://pkg.go.dev/gitlab.eif.urjc.es/paurea/cuckoo

In contrast to https://github.com/dolthub/maphash it can use any hash function (as long as it implements hash.Hash64) and it does not depend on any internal detail of the runtime. It works by inspecting the type and creating the hasher to be used later. One of the types defined lets you also hash non-comparable types (ignoring the non-comparable part).

Comments URL: https://news.ycombinator.com/item?id=42203214

Points: 1

# Comments: 0

Article URL: https://www.nature.com/articles/s41586-024-08189-z

Comments URL: https://news.ycombinator.com/item?id=42203184

Points: 1

# Comments: 0