High-level programming language
A daily look at the relevant information security news from overnight - 05 July, 2022Episode 258 - 05 July 2022WeWork Exposure- https://techcrunch.com/2022/07/04/wework-exposed-visitors-data/ Django Injection - https://www.bleepingcomputer.com/news/security/django-fixes-sql-injection-vulnerability-in-new-releases/AstraLocker Expires - https://www.bleepingcomputer.com/news/security/astralocker-ransomware-shuts-down-and-releases-decryptors/Google to Delete Sensitive Tracking- https://www.infosecurity-magazine.com/news/british-army-social-media-accounts/Google Zero-Day Patch - https://threatpost.com/actively-exploited-chrome-bug/180118/Hi, I'm Paul Torgersen. It's Tuesday July 5th 2022, and this is a look at the information security news from overnight. From TechCrunch.comWeWork India had a security lapse that exposed the personal information and selfies of tens of thousands of people who used the WeWork coworking spaces in the country. The bug made it possible to access the check-in record of any visitor by manually typing in a check-in ID, with no safeguards against accessing the data in bulk. The company is fixing the issue. From BleepingComputer.com:Django, an open source Python-based web framework, has patched a high-severity SQL injection vulnerability. The flaw affects Django's main branch, and versions 4.1 (currently in beta), 4.0, and 3.2. Developers are urged to upgrade to Django versions 4.0.6 and 3.2.14 as soon as possible. Also from BleepingComputer.com:The threat actor behind the AstraLocker ransomware says they're shutting down the operation and plan to switch to cryptojacking. The ransomware's developer even submitted a ZIP archive with the AstraLocker decryptors to VirusTotal. The decryptors appear to be legit and worked on the one sample the team at BleepingComputer tried out. Details and a link to that zip file in the article. From ZDNet.comGoogle says it will automatically wipe user location history for visits to healthcare clinics, including abortion and fertility clinics, domestic abuse shelters, and other sensitive areas. The fear is that, in a post-Roe world, this location tracking data could be used in persecutions, excuse me, prosecutions. These changes will be rolling out in the coming weeks. And last today, from ThreatPost.comGoogle quietly rolled out a stable channel update for Chrome to patch an actively exploited zero-day vulnerability. This is the fourth such flaw the vendor has had to patch so far this year. The bug is a buffer overflow that was just reported on July 1. The company also tidied up a few other bugs while it was at it. That's all for me today. Have a great rest of your day. Like and subscribe, and until tomorrow, be safe out there.
Should you use Redux or MobX-State-Tree? Robin, Mazen, and Jamon do a breakdown of the various tradeoffs of these two popular state management libraries.This episode brought to you by Infinite Red! Infinite Red is a premier React Native design and development agency located in the USA. With five years of React Native experience and deep roots in the React Native community (hosts of Chain React and the React Native Newsletter), Infinite Red is the best choice for your next React Native app.Helpful Links:https://www.loom.com/share/9e3afe0547824e42bada06191e891ae1https://mobx-state-tree.js.org/intro/welcomehttps://redux.js.org/introduction/getting-startedhttps://reactnativeradio.com/episodes/175-state-management-in-react-native-sLR6hN_vConnect With Us!React Native Radio - @ReactNativeRdioJamon - @jamonholmgrenMazen - @mazenchamiRobin - @robin_heinze
This week we start a two parter on the Stack Overflow developer survey 2022 and unearth the surprising dev tech stories of this year. Spoiler, jQuery is still with us!Find Simon B at All The CodeFind Simon G at the Ionic AcademyLinks:Stack Overflow 2022 dev survey
In this episode we discuss the history and mission of Prisma, the boundary between Prisma Client and Prisma Migrate, and whether developers need to know the difference between SQL and NoSQL.Austin Crim Home Page Twitter GitHub LinkedIn Prisma Home Page Twitter GitHub Links Prisma Data Platform Deploying Prisma to Cloudflare Workers Remix with Kent C. Dodds
Simon B went to the AWS summit in Milan and comes back with interesting data based stats about Formula 1 and shares his experience of the conference including the Gameday challenge for developers.Meanwhile Simon G has silently opened up his latest side project Ionic Blocks to the world and already made a sale without any official announcement,Links in this episode Ionic Blocks (super) early bird launch