Nine additional states have joined the U.S. Department of Justice and eight previous states in a lawsuit against Google LLC alleging that the search giant’s advertising business breaks antitrust law. The lawsuit, first announced in January, charges that Google uses its position as a major provider of sell-side and buy-side advertising tools to harm market competition. ...

A new report from software supply chain management startup Lineaje finds an inherent risk of software supply chains being compromised when using the most popular open-source products and dependencies. “What’s in Your Open-Source Software?” was based on Lineage Data Labs researchers analyzing 41,989 open-source components embedded in the top 44 popular projects of the Apache Software Foundation across ...

Google LLC has released a security update to its popular Chrome browser that addresses a vulnerability that’s being actively exploited in the wild. The Chrome update addresses the vulnerability designated CVE-2023-2033, which Google describes as a “Type Confusion in V8” vulnerability discovered by Clément Lecigne of Google’s Threat Analysis Group on April 11. Although Google did ...

The Center for Cybersecurity Policy and Law today announced two new initiatives aimed at creating a more favorable legal, policy and business environment for good-faith security research and vulnerability disclosure. The first initiative, the Hacking Policy Council, is a new group that aims to make technology safer and more transparent by facilitating best practices for vulnerability ...

The European Data Protection Board today announced that it has set up a task force to investigate ChatGPT, a day after Italy rescinded a ban on the generative artificial intelligence service following privacy concerns. The EDPB is an independent body within the European Union whose purpose is to ensure the consistent application of the EU’s General ...

The U.S. Federal Bureau of Investigation today arrested a 21-year-old Air Force National Guard member over the leak of classified documents. Jack Teixeira, an Airman First Class with the 102nd Intelligence Wing of the Massachusetts Air National Guard, was arrested on allegations that he distributed secret files from the Pentagon that exposed sensitive data about U.S. ...

Google LLC is proposing initiatives to improve a vulnerability management ecosystem that’s plagued with an endless “merry-go-round” of problems. A Google whitepaper, released today, argues that while the security industry has improved in many ways, such as in technological advances and collaboration, many challenges remain within the vulnerability management realm. The cloud and ad giant said ...

Collaborative notebook startup Fiberplane BV today announced a new set of open-source libraries that enables developers to take advantage of metrics in the observability stack. Called Autometrics, the libraries are designed to address the issue wherein existing observability tools require complex configurations written in YAML, which is a programming language for human-readable data serialization, often used for writing configuration ...

Researchers at cloud forensics and incident response platform startup Cado Security Ltd. today announced details of a recently discovered Python-based credential harvester and hacking tool. Dubbed “Legion,” the credential harvester is being sold via Telegram and is designed to exploit various services for email abuse. The researchers believe that Legion is likely linked to the AndroxGh0st malware ...

Enterprise service mesh startup Tetrate Inc. today announced Tetrate Service Express, a new platform targeted at enterprises using service mesh on Amazon EKS that want to use the open-source tools Istio and Envoy Proxy with it. Tetrate says its new offering has been designed specifically for teams that need to prove the technical and business benefits of ...