| Feb 28 - Ghana's passes bill that imposes jail terms on people who identify as LGBTQ 🇬🇭
| White House urges developers to dump C and C++
@tech By 00010111 10 hours ago
The White House Office of the National Cyber Director (ONCD), in a report released Monday, called on developers to reduce the risk of cyberattacks by using programming languages that dont have memory safety vulnerabilities. Technology companies can prevent entire classes of vulnerabilities from entering the digital ecosystem by adopting memory-safe programming languages, the White House said in a news release.
Memory-safe programming languages are protected from software bugs and vulnerabilities related to memory access, including buffer overflows, out-of-bounds reads, and memory leaks. Recent studies from Microsoft and Google have found that about 70 percent of all security vulnerabilities are caused by memory safety issues.
We, as a nation, have the abilityand the responsibilityto reduce the attack surface in cyberspace and prevent entire classes of security bugs from entering the digital ecosystem but that means we need to tackle the hard problem of moving to memory safe programming languages, National Cyber Director Harry Coker said in the White House news release.
The US Cybersecurity and Infrastructure Security Agency also urged developers to use memory-safe programming languages in a September blog post. CISA, the FBI, the US National Security Agency, and agencies from allied countries also published the report, The Case for Memory Safe Roadmaps, in December.
The new 19-page report from ONCD gave C and C++ as two examples of programming languages with memory safety vulnerabilities, and it named Rust as an example of a programming language it considers safe. In addition, an NSA cybersecurity information sheet from November 2022 listed C#, Go, Java, Ruby, and Swift, in addition to Rust, as programming languages it considers to be memory-safe.
One goal of the new report is to shift the responsibility of cybersecurity away from individuals and small businesses and onto large organizations, technology companies, and the US government, which are more capable of managing the ever-evolving threat, the White House news release said.
ONCD worked with the private sector, including technology companies, the academic community, and other organizations to develop the recommendations in the report, it said. ONCD issued a request for public input on the topic in August. It also gathered comments in support of the initiative from several technology companies, including Hewlett Packard Enterprise, Accenture, and Palantir. Other software security experts also praised the report.
The ONCD report is helpful and timely, said Dan Grossman, a computer science professor at the University of Washington. While dangers of C and C++ have been well-known for decades, this is a good time for the White House to push for memory safety because practical and mature alternatives are now available, he said.
At the same time, changes are needed because of the sophistication of threats from adversaries that exploit memory safety violations, he said.
Discussions about memory safety involving the government, industry, and academic can lead to meaningful change, he added. Naturally, many branches of the federal government are key creators and vendors for software and they can use this perspective in deciding their priority for upcoming changes to systems or new systems.
However, a move away from C and C++ wont happen overnight, especially in embedded systems, Grossman said. But the use of other languages for systems software, notably Rust, has already grown significantly, and I think many people anticipate that sort of evolution accelerating rather than C and C++ development simply stopping, which still seems unimaginable in its entirety.
Moving away from C and C++ will be a long and difficult process, added Josh Aas, executive director and co-founder of the Internet Security Research Group. It takes a sustained effort to change the way people think about things, and communications like this help keep the issue of safety fresh in peoples minds.
For the change to happen, the government and the private sector need to work together to make secure code a priority, Aas said.
Ultimately, we need to write and deploy new code, but in order to get there, we need resources and we need leaders at all levels, from government to the private sector, to make it a priority, he added. Relevant leaders need to be made aware of the problem, and they need to know that they are going to be supported if they make solving this problem a priority.
↪ https://www.infoworld.com .. p-c-and-c.html
| Lebron in the 4th Quarter. The KING has arrived
| Don't Blame Him for bagging Cher, big up to Oakland
@wild'ish By CJ Schwarz 14 hours ago
| February 29th deals
@wild'ish By unit321 10 hours ago
Krispy Kreme announced Monday it is offering customers a dozen original glazed doughnuts for $2.29 with the purchase of any regularly priced dozen on Thursday, Feb. 29 in honor of Leap Day.
Additionally, customers who have a Feb. 29 birthday can receive a free dozen original glazed doughnuts, no purchase necessary. Proof of birthday is required, Krispy Kreme said.
Chipotle told USA TODAY it is offering Rewards members a free side of guac on Thursday for orders placed online or via the app.
On leap day, Feb. 29, customers can get a free Cinnabon Pull-Apart at their local Wendy's restaurant during breakfast hours, while supplies last. Wendy's said customers can get one per vehicle in the drive thru or one per dining room transaction.
The item, a new collaboration with Cinnabon, is now available at Wendy's restaurants nationwide during breakfast hours.
Staples is giving away 29,000 passport photos nationwide on Thursday in honor of the extra day, the company told USA TODAY.
In honor of Leap Day on Feb. 29, Perdue is offering a 29% discount on any purchase of $99 or more on PerdueFarms.com using the code Leap29 from Thursday, Feb. 22 through Thursday, Feb. 29, the company told USA TODAY.
Noodles & Company
Noodles & Company told USA TODAY it is offering Noodles Rewards Members 29% off on orders of $29 or more on Feb. 29.
Customers can sign up for the Noodles Rewards program by visiting Noodles.com/rewards or downloading the Noodles Rewards app.
↪ https://www.yahoo.com/fin .. 130504210.html
There's probably more deals out there.
| The real life Omar from the wire went out just like him
@wild'ish By Press Enter 17 hours ago
| Jets accuse former WR Mecole Hardman of leaking game plans to Chiefs, Eagles last year🛩️
@sports By theFREAK 14 hours ago
| Amazon prime trying to one up Tubi now.
Naw this sh*t gotta be fake man
| Meek speaks
@hiphop By stillNAMELESS 14 hours ago
Jay Z Has Never Addressed The Roc A Fella Break Up In Detail
@hiphop By Eclectic 9 hours ago
Two 40 Shorty @O1as @biscuit @ChampD1012 @NoLedge18720 @Redrum741 @BobbiHeadRagTopTone @Alessandro88 @GrgeClrk @Okka @dacoolestg @ThunnLanguage @Nahmeanuheard @Prodigital SC @BaseWhitaker @DeadleeThreat @Leatherfacefr @servesurite @problym_chyld04 @Badnewz100 @AndyMuller @MiNimE3 @Bklynzfinest @sauvies @NVious @NAKHI ALLAH @GorillaGlue @Real @jet fuel @D-Clutch @2MuchSauce @smokeytheblunt2 @P DRILLA @iamlegend24 @Captain Fresh @4evaabso @Cutty Olds @rello99 @PROV @jigga_benjamin @ol natl 44+ @BathWaterMelody @Bill Wallace @SPdaGOAT @stealthm91 @consigliereA @Shhon @TrillestTalk404 @BangEm904 @OGpremo @victorious187 @Pretty @youngmic @Knowledgeable @Ron Swanson @Kyu @True School 2 @hardcore bastad @talkofny2k4 @WaveForLife2 @Avon_Barksdale @EastAfrican @MightyHealthy2 @Taree @Naga Sadow @drose1985 @Adwerdz @Dino87 @CRL @akverse47 @VicDutch @TheLuminousOne @Beach city @Pushin P @Jikkles @Gotti Pippen @Skilly713 @whitesand @Tha Boss @Almightyvsop @BigBoo44 @KREW @I Am The Truth @CheebaHawk21 @fullpoundsdotel @Sucka Repellent @Okka @frankwhite @LarryFresh @NeroNalu @codeine
| Feb 28 - 114-year-old Texas woman becomes oldest living American
@news By Sh33d 18 hours ago
| Meek - "Losing Your Cellmate Is Like Losing Ur Chick"
@hiphop By Dash 15 hours ago