Tech

New Yubico security keys let you log in with a tap to your USB-C port

Enlarge (credit: Yubico) Because of its power delivery, high transfer rates, and Thunderbolt capabilities, USB-C has become ubiquitous on modern devices. The European Union even wants to force the use of USB-C . So security keys that serve as a form of multi-factor authentication or passwordless login need to play well with the port. Hardware […]

Tech

NPM package with 3 million weekly downloads had a severe vulnerability

Enlarge (credit: Getty Images) Popular NPM package “pac-resolver” has fixed a severe remote code execution (RCE) flaw. The pac-resolver package receives over 3 million weekly downloads, extending this vulnerability to Node.js applications relying on the open source dependency. Pac-resolver touts itself as a module that accepts JavaScript proxy configuration files and generates a function for […]

Business

Why the SolarWinds hack is even worse than you thought

This is the web version of Data Sheet, a daily newsletter on the business of tech. Sign up to get it delivered free to your inbox.  Most of the time when we hear about cybersecurity crimes, we hear from the leading players, companies like Crowdstrike that nailed the Russians for stealing DNC emails in 2016. Or […]

Business

A cybersecurity Schedule for the Biden Government

Cybersecurity hasn’t been a partisan matter. On the other hand, the current, unwarranted firings of senior cybersecurity officials at the Trump Administration, along with the associated concern on a smooth transition of understanding on those issues, emphasize the urgency and necessity to your Biden government to reevaluate the cybersecurity program. These firings have generated unnecessary gaps […]