Blog

  A fix is out but the plugin is used in hundreds, if not thousands, of projects. Patching will take ages! Source: Zero-day in popular jQuery plugin actively exploited for at least three years | ZDNet

Security researchers have found flaws in four popular connected storage drives that they say could let hackers access a user’s private and sensitive data. The researchers Paulos Yibelo and Daniel Eshetu said the software running on three of the devices they tested — NetGear Stora, Seagate Home and Medion LifeCloud — can allow an attacker to […] Source: Buggy software in popular connected storage drives can let hackers read private data

Maintenance lacks the glamour of innovation—and is harder to measure Source: Repair is as important as innovation

Source: Researcher finds simple way of backdooring Windows PCs and nobody notices for ten months | ZDNet

I was in Montpellier, VT this week for R2R Task Force meeting, and one refrain that I kept hearing from the big corporate lobbyists was that the Right to Repair bill is “too broad.” They know legislators like to make everyone happy through negotiation, and tend towards incremental rather than broad Source: Right to Repair is Simple