Controllo a distanza del Pc dei lavoratori, quando è lecito? La pronuncia della CassazioneAlessandro Canelli e Antonella Lucente
Il computer aziendale del lavoratore può essere controllato a distanza dal datore del lavoro nel caso in cui sussista il “sospetto” di una commissione di un illecito, ma solo per dati successivi all'insorgere del presunto timore. I paletti della Corte...
Code Execution Bug Affects Yamale Python Package — Used by Over 200 ProjectsThe Hacker News
A high-severity code injection vulnerability has been disclosed in 23andMe's Yamale, a schema and validator for YAML, that could be trivially exploited by adversaries to execute arbitrary Python code.
The flaw, tracked as CVE-2021-38305 (CVSS score: 7.8), involves manipulating the schema file provided...
Penetration Testing Your AWS Environment - A CTO's GuideThe Hacker News
So, you've been thinking about getting a Penetration Test done on your Amazon Web Services (AWS) environment. Great! What should that involve exactly?
There are many options available, and knowing what you need will help you make your often limited security...
New U.S. Government Initiative Holds Contractors Accountable for CybersecurityThe Hacker News
The U.S. government on Wednesday announced the formation of a new Civil Cyber-Fraud Initiative that aims to hold contractors accountable for failing to meet required cybersecurity requirements in order to safeguard public sector information and infrastructure.
"For too long, companies have...
Apple now requires all apps to make it easy for users to delete their accountsThe Hacker News
All third-party iOS, iPadOS, and macOS apps that allow users to create an account should also provide a method for terminating their accounts from within the apps beginning next year, Apple said on Wednesday.
"This requirement applies to all app submissions...