Secure Software Development Compliance for OMB’s M-22-18 Memo | Code Patrol Podcast | Contrast Security

Do you wear to tell the truth about your secure software development, the whole truth and nothing but the truth? If you said “Yes,” are you sure? In this episode of Contrast’s Code Patrol podcast, Contrast CTO Jeff Williams says he doesn’t think most software producers can take the heat in the new transparency oven … Read more

OpenSSL downgrades horror bug after week of speculation • The Register

OpenSSL today issued a fix for a critical-turned-high-severity vulnerability that project maintainers warned about last week. After days of speculation, infosec professionals and armchair bug hunters received more of a trick than a treat on November 1: two CVE-tagged security issues, both rated “high” severity, to patch. One flaw was earlier rated “critical,” though it … Read more

Sustainable software needs more tools, corporate buy-in

Sustainable software limits hardware’s energy consumption and minimizes environmental impact by lowering data center carbon emissions. But individual developers who adopt greener coding practices are unlikely to make a dent in software’s carbon emissions without organizational and vendor support. In theory, developers can create sustainable software by implementing green software best practices, such as reducing … Read more

The best products we’ve tested in October: Dash cams, water flossers and more

CNN Underscored is constantly testing products — be those dash cams, water flossers or gaming monitors — to find the absolute best in each respective category. Our testing process is rigorous, starting out by spending hours of research to find the top products in each category. Once we create a testing pool of products, we … Read more

Videos and Graphic Images of Shooting Slammed Online

Rapper Takeoff was shot and killed Tuesday morning at a bowling alley in Houston, Texas. He was 28. Soon after, graphic videos and images of the aftermath began circulating on social media. Fans mourned the rapper and called on Twitter, news sites, and others to take the videos down. loading Something is loading. Thanks for … Read more

Security AI shifts left into DevSecOps

DevSecOps tools such as GitLab’s One DevOps Platform plan to inject AI into developer workflows to shore up secure coding, a shift IT pros and analysts say is timely as security AI becomes more popular. In IT and security operations, AIOps tools can reduce the number of alerts to which IT pros must respond or … Read more