Month: August 2018

Half of Audited JavaScript Projects Contained a Vulnerability

Since April, according to the company, npm users have run 50 million automatic scans and have deliberately invoked the command 3.1 million times. And they’re running 3.4 million security audits a week. Across all audits, 51 per cent found at least one vulnerability and 11 per cent identified a critical vulnerability. In a phone interview with The Register, Adam Baldwin, head of security at NPM, said he didn’t have data on how many people are choosing to fix flagged flaws. “But what we’ve seen from pull requests suggests it’s gaining traction,” he said.

http://www.slashdot.org/story/345060

Faces Are Being Scanned At US Airports With No Safeguards on Data Use

The Department of Homeland Security is now using the data to track foreigners overstaying their visas, according to the Times. “After passengers’ faces are scanned at the gate, the scan is sent to Customs and Border Protection and linked with other personally identifying data, such as date of birth and passport and flight information.”

But the face scans are collected by independent companies, and Border Protection officials insist they have no control over how that data gets used.

http://www.slashdot.org/story/344530