GitLab issues critical update after hard-coding passwords into accounts [Mon Apr 4 2022]

Hi {NAME}, Daily Headlines - 4 April 2022 ***************************************************************** GitLab issues critical update after hard-coding passwords into accounts Fixed passphrases for OmniAuth users not such a great idea ***************************************************************** Off-Prem * IDC: Public clouds to surpass non-cloud spending this year So long as the economy stays healthy, and supply can catch up to demand On-Prem * Tomorrow Water thinks we should colocate datacenters and sewage plants If it can cut energy requirements for both, this idea might not stink after all * Extreme-scale Scientific Software Stack team emits v22.02 Open-source HPC suite now includes 100 full-release products * RISC-V takes steps to minimize fragmentation Steering body calls for help to 'identify ISA gaps, build plans for future extensions' * Brit watchdog fines financial services biz £80k for text spam Company changed address to avoid probe after sending 378,553 messages * The time you solved that months-long problem in 3 seconds Behold the rarest of IT skills: Tact and diplomacy * Bain Capital plots to buy Toshiba with help from largest shareholder The deal is a long way from done and players can already foresee rival bids Security * Crooks use fake emergency data requests to get personal info out of Big Tech – report Plus: Hive hits health-care org, law enforcement ransomware response is lacking, and orgs can't meet new disclosure rules * GitLab issues critical update after hard-coding passwords into accounts Fixed passphrases for OmniAuth users not such a great idea * More charged in UK Lapsus$ investigation Two teenagers arrested as part of police probe into extortion group * Google: Russian credential thieves target NATO, Eastern European military Also: Belarusian miscreants pivot to browser-in-the-browser attacks * Modem-wiping malware caused Viasat satellite broadband outage in Europe And software nasty may have a VPNFilter link, too * National Security Agency employee indicted for 'leaking top secret info' Managed to send material from his private email address, it is claimed Software * AI beats top players at Bridge in two-day tournament Plus: Improving Google Search and open-source software library for more natural computer speech * Court erred in Neo4j source license ruling, says Software Freedom Conservancy If decision is upheld, this 'could seriously harm FOSS and copyleft' * Chinese distro Deepin hits 20.5, complete with browser called Browser Pretty 'community' version of one of the best-known Linuxes in Middle Kingdom * SAP hits 50: Entrenched, spread out and fully middle-aged Tech’s posterchild of German industrial success must face its failures as it succumbs to midlife angst * Web3 'contains the seeds of a dystopian nightmare' says analyst firm Forrester Research is DeFi-ing current hype Offbeat * Boston Dynamics' latest robot is a warehouse workhorse When does this thing get to unionize? * Scientists repurpose hoverfly vision to detect drones by sound It's a bug's life * Amazon warehouse workers in New York unionize in historic win against web giant White House chimes in: Folks 'in every state must have a free and fair choice' to unionize * Terra Quantum nets $75m for cryptography, security work Ferroelectric devices key for this qubit-slinging startup * UK suit over reselling surplus Microsoft licenses rolls on In the meantime, Windows giant eliminates 'challenged restriction' * The month I worked for DEADHEAD: Yes, that was their job title We can't have that contractor making us look bad ------------------------------------------------------------------------ This email was sent to {EMAIL} You can update your preferences here: or unsubscribe from this list: Situation Publishing Ltd, 315 Montgomery Street, 9th & 10th Floors, San Francisco, CA 94104, USA The Register and its contents are Copyright © 2022 Situation Publishing. All rights reserved. Find our Privacy Policy here: