Security

Warrantless searches surge as online privacy dwindles

Not only are warrantless searches exploding in number, the boundaries of warrants themselves are expanding

Why most Android devices won’t patch the Qualcomm bug

Qualcomm has patched a high-severity flaw, but handset manufacturers' reluctance to update older models means most of them will remain vulnerable

Apple patches vulnerable OS X Git version that put developers at risk

A month and a half later, Apple imports Git patches for critical remote code execution flaws

Linux Foundation tackles open source security with new badge program

The Core Infrastructure Initiative's Best Practices Badge program will help businesses identify which open source projects follow a security-focused methodology

Enterprise Node.js upgrade focuses on security

NodeSource updates its commercially supported JavaScript platform runtime with vulnerability awareness and threshold monitoring

OpenSSL patches two high-severity flaws

Versions 1.0.2h and 1.0.1t of the cryptographic library also patch several more bugs of lesser impact

Admins: Don’t wait for ImageMagick patch

Millions of websites are vulnerable to flaws in the ImageMagick image processing tool

How to perform a risk assessment

Quantum computers pose a huge threat to security, and the NIST wants your help

An upcoming competition will invite the public to propose and test 'quantum-resistant' encryption schemes

4 projects ripe for a Rust rewrite

As Rust matures, projects aimed at reimplementing existing software in a language built for safety become more practical -- and more numerous