Software Development – Page 2 – PossibleThreat Articles

WWDC22: Apple brings declarative device management to the Mac?

June 6, 2022 0 Comments Apple, MacOS, mobile device management, Operating Systems, Security, Software Development

Credit to Author: Jonny Evans| Date: Mon, 06 Jun 2022 08:11:00 -0700

More opportunities for engineers and developers to implement declarative device management solutions are likely to emerge at WWDC 2022, at least, according to MacAdmins.

Speaking during the pre-event podcast, speakers argue that Apple will eventually require that all mobile device management (MDM) providers introduce support for declarative management. Might this include bringing declarative device management to the Mac?

What is declarative device management?

Apple first introduced declarative device management last year, largely for two reasons: to make devices more proactive, and to reduce the impact on MDM servers that handle large fleets of devices. This should boost performance and scalability.

To read this article in full, please click here

ComputerWorld Independent

Google’s open-source security move may be pointless. In a perfect world, it should be.

May 31, 2022 0 Comments Security, Software Development

Credit to Author: Evan Schuman| Date: Tue, 31 May 2022 02:30:00 -0700

One of the bigger threats to enterprise cybersecurity involves re-purposed third-party code and open-source code, so you’d
think Google’s Assured Open Source Software service would be a big help.

Think again.

Here’s Google’s pitch: “Assured OSS enables enterprise and public sector users of open source software to easily incorporate the same OSS packages that Google uses into their own developer workflows. Packages curated by the Assured OSS service are regularly scanned, analyzed, and fuzz-tested for vulnerabilities; have corresponding enriched metadata incorporating Container/Artifact Analysis data; are built with Cloud Build including evidence of verifiable SLSA-compliance; are verifiably signed by Google; and are distributed from an Artifact Registry secured and protected by Google.”

To read this article in full, please click here

MalwareBytes Security

The Quad commits to strengthening cybersecurity in software, supply chains

May 30, 2022 0 Comments anthony albanese, australia, fumio kishida, india, indo-pacific, japan, joe biden, narendra modi, quad cybersecurity day, quad cybersecurity partnership, quadrilateral security dialogue, security world, Software Development, supply chain, the quad, united states

Credit to Author: Malwarebytes Labs| Date: Mon, 30 May 2022 14:50:56 +0000

Australia, India, Japan, and the US recently met to discuss pressing matters in the Info-Pacific, including cybersecurity.

The post The Quad commits to strengthening cybersecurity in software, supply chains appeared first on Malwarebytes Labs.

ComputerWorld Independent

Do you know where your software comes from?

March 14, 2022 0 Comments Security, small and medium business, Software Development, Windows

Credit to Author: Susan Bradley| Date: Mon, 14 Mar 2022 08:56:00 -0700

Where does your software come from?

That’s one of the questions online users at AskWoody.com have asked in recent weeks. Obviously, this comes up as the world sees what’s going on in Ukraine. For many years, one security software vendor in particular was tagged as possibly having Russian ties — and as far back as 2017, the US Government banned the use of Kaspersky antivirus over fears the security software could spy on defense contractors for Russia.

To read this article in full, please click here

ComputerWorld Independent

Why the Fed is considering a cash-backed cryptocurrency

February 11, 2020 0 Comments Blockchain, Financial Services Industry, Government, IT Leadership, Mobile, Security, Software Development

Credit to Author: Lucas Mearian| Date: Tue, 11 Feb 2020 03:00:00 -0800

The Federal Reserve is investigating the potential of a central bank digital currency (CBDC) as the backbone for a new, secure real-time payments and settlements system.

The move toward a form of government-backed digital currency is being driven by Fintech firms and a banking industry already piloting or planning to pilot cash-backed digital tokens, according to Lael Brainard, a member of the U.S. Federal Reserve’s Board of Governors.

“Today, it can take a few days to get access to your funds. A real-time retail payments infrastructure would ensure the funds are available immediately – to pay utility bills or split the rent with roommates, or for small business owners to pay their suppliers,” said Brainard, who serves as chair of the committees overseeing Financial Stability and Payments, Clearing and Settlements.

To read this article in full, please click here

Security Sophos

Apple developers – get this update to protect the rest of us!

November 4, 2019 0 Comments Apple, iOS, MacOS, rce, Software Development, xcode

Credit to Author: Paul Ducklin| Date: Mon, 04 Nov 2019 19:43:48 +0000

Know any Apple developers? Make sure they’re signed up to Apple’s security advisories, and getting their developer updates.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/FxxcQ0wOZOo” height=”1″ width=”1″ alt=””/>

ComputerWorld Independent

WWDC: Has Apple closed the door on non-Mac App Store apps?

July 19, 2019 0 Comments MacOS, Macs, Security, Software Development

Credit to Author: Jonny Evans| Date: Mon, 17 Jun 2019 07:58:00 -0700

Ever since Apple introduced the Mac App Store developers have warned it plans to close off its platform, so news the company will insist on App Notarization in macOS Catalina set those critics off again. The thing is, it’s a little more complicated.

What is Apple doing?

Yes, Apple is making it a little more difficult for Mac users to install apps that aren’t sold at the Mac App Store or made available from bona fide developers happy to submit their software for the company’s speedy App notarization service.

To read this article in full, please click here