Tootfinder

Apple releases visionOS 1.0.2, fixing a WebKit vulnerability that, if exploited, allowed malicious code execution; Apple patched the bug in iOS 17.3 last week (Zack Whittaker/TechCrunch)
https://techcrunch.com/2024/01/31/apple-vision-pro-zero-da…

Apple fixes zero-day bug in Apple Vision Pro that 'may have been exploited' | TechCrunch
Apple said the vulnerability, which is being exploited in the wild, allows malicious code to run on an affected device.

The first rule of #distributedsystems is "Don’t distribute your system". Designing distributed systems right is infamously hard for multiple reasons.
Imagine that the client sending a request sends a unique key along. The server keeps track of key-request pairs.
It’s precisely the idea behind the

Why did no one tell me there was a v4.2.8 update for Mastodon!? I feel so let down.
(I kid, I kid. Love you all! Except Nazis. Screw you Nazis.)
#selfhost #Mastodon

@… I seriously had to yesterday haha. Today I'm currently fixing it with a lot more Cypress Hill, before that was Glass Beams. Have you heard em? I boosted the YT video @… posted a couple days ago, huge thanks to him for this dis…

The poster is seeking advice for managing a high volume of vulnerabilities found during quarterly authenticated vulnerability assessment (VA) scans in their organization. There are difficulties in fixing all vulnerabilities within a quarter. They've asked for insight into how others handle such situations. https://reddit.com/r/cybersecurity/comments/1bq48ev/

A US federal judge dismisses DirecTV's lawsuit from March 2023 that accused Nexstar of engaging in price-fixing activity around the retransmission consent fees (Cynthia Littleton/Variety)
https://variety.com/2024/tv/news/directv-nexstar-a…

Judge Dismisses DirecTV's Antitrust Lawsuit Against Nexstar
A judge has dismissed the antitrust lawsuit DirecTV filed last year accusing Nexstar of engaging in price-fixing activity in contract negotiations.

So, yeah, I’m not saying if I worked for Libby on their app I’d fix all these problems overnight. Companies ship their org charts. This was all a deliberate choice. Not fixing obvious bugs is a choice. If you chose to do nothing, that’s still a choice.

The poster is seeking advice for managing a high volume of vulnerabilities found during quarterly authenticated vulnerability assessment (VA) scans in their organization. There are difficulties in fixing all vulnerabilities within a quarter. They've asked for insight into how others handle such situations. https://reddit.com/r/cybersecurity/comments/1bq48ev/

So, yeah, I’m not saying if I worked for Libby on their app I’d fix all these problems overnight. Companies ship their org charts. This was all a deliberate choice. Not fixing obvious bugs is a choice. If you chose to do nothing, that’s still a choice.

Researchers detail an unpatchable vulnerability in Apple's M-series of chips that lets attackers extract secret keys from Macs during cryptographic operations (Dan Goodin/Ars Technica)
https://arstechnica.com/security/2024/

Unpatchable vulnerability in Apple chip leaks secret encryption keys
Fixing newly discovered side channel will likely take a major toll on performance.