Open-source software: How many bugs are hidden there on purpose?

Microsoft-owned GitHub, the world’s largest platform for open-source software, has found that 17% of all vulnerabilities in software were planted for malicious purposes. 

GitHub reported that almost a fifth of all software bugs were intentionally placed in code by malicious actors in its 2020 Octoverse report, released yesterday. 

Proprietary software makers over the years have been regularly criticized for ‘security through obscurity’ or not making source code available for review by experts outside the company. Open source, on the other hand, is seen as a more transparent manner of development because, in theory, it can be vetted by anyone. 

SEE: Security Awareness and Training policy (TechRepublic Premium)    

But the reality is that it’s often not vetted due to a lack of funding and human resource constraints. 

A good example of the potential impact of bugs in open source is Heartbleed, the bug in OpenSSL that a Google researcher revealed in

Read More

Comparison website holidaymakers face problems over refunds and hidden fees | Travel News | Travel

Which? said its poll of 4,900 members suggested people were better off booking a package deal through a tour operator or going direct to an airline or accommodation provider. Flight booking sites fared particularly badly, with some proving impossible to contact about cancellations, and charging admin fees on refunds. Opodo got the lowest overall score at 41 per cent and just two stars out of five for customer service. and Gotogate also scored poorly, at 46 and 45 per cent.

Netflights received the highest score at 65 per cent but still only got three stars for customer service. The firm said refunds “normally” take 45 days to process but wait times are longer because of coronavirus.

Passengers are entitled to refunds within seven days under EU law.

Accommodation booking sites were rated more favourably. Airbnb came first, with five stars for customer service. Its overall score was 75 per

Read More

Comcast raising TV and Internet prices, including a big hike to hidden fees

Comcast Xfinity cable television installation truck parked on a street in front of a suburban home, San Ramon, California, May 17, 2018. (Photo by Smith Collection/Gado/Getty Images)
Enlarge / Comcast Xfinity cable television installation truck parked on a street in front of a suburban home, San Ramon, California, May 17, 2018. (Photo by Smith Collection/Gado/Getty Images)

Getty Images | Smith Collection | Gado

Comcast is raising prices for cable TV and Internet service on January 1, 2021, with price hikes coming both to standard monthly rates and to hidden fees that aren’t included in advertised prices.

TV customers are getting an especially raw deal, as Comcast is adding up to $4.50 a month to the “Broadcast TV” fee and $2 to the Regional Sports Network (RSN) fee. That’s an increase of up to $78 a year solely from two fees that aren’t included in advertised rates.

As in past years, even customers who still are on promotional pricing will not be spared from the Broadcast TV and RSN fee increases. “Customers on promotional pricing will not see

Read More

Google’s Device Lock Controller is a hidden app

Google Pixel 5 Google logo macro

Credit: David Imel / Android Authority

Updated, November 6, 2020 (17:53 PM): Google got back to Android Authority with an explanation about the app described below. As it turns out, this app first became active in July of this year, but only in Kenya. In that country, Google partnered with companies to get Android Go phones to people who otherwise couldn’t afford one. The Device Lock Controller app is thus intended to help creditors prevent defaulted loans for those devices.

However, a Google spokesperson said that this app wasn’t supposed to be active in the United States. It was mistakenly uploaded to the US version of the Play Store, which is why it appears new to us and why it does not appear on the list with other Google LLC apps.

The original article speculating on the Device Lock Controller app is below.

Original article: If you want to find

Read More

iPhone 12 Might Have Hidden Reverse Charging Feature, FCC Filing Suggests


  • Apple recently released the new iPhone 12 and iPhone 12 Pro
  • The devices can be charged via the new Magsafe charger
  • An FCC filing suggests that the new iPhones will also use MagSafe to charge accessories

Apple’s new iPhone 12 models could have an inactive wireless charging feature for accessories, an FCC filing has suggested.

Apple recently released the iPhone 12 and iPhone 12 Pro, which come with new and improved specs and features and offer a new wireless charging method in the form of the MagSafe charger. But they seemed to lack one interesting capability that has been present in some rival smartphones for a while: reverse wireless charging.

However, an FCC filing, spotted by VentureBeat’s Jeremy Horwitz, revealed that the 2020 iPhone models – the iPhone 12 series – “also support WPT charging function at 360KHz to charge accessories.”

The filing, a screenshot of which

Read More

UK says Instagram to crack down on hidden influencer ads

LONDON (AP) — British regulators said Friday that Instagram will clamp down on “hidden advertising” by social media influencers.

The Competition and Markets Authority said Instagram’s owner Facebook has committed to tightening policies to restrict influencers who don’t disclose they’re being paid to promote businesses on its platform.

It’s part of an investigation into the influencer industry the watchdog launched two years ago. Regulators are concerned that Instagram wasn’t doing enough under consumer protection laws to stop hidden advertising, which is illegal in the U.K. They want to make it harder to mislead people with posts that aren’t labeled as ads.

Influencers are online personalities with thousands of followers who can earn hefty fees from brands for endorsing or reviewing their products or services.

“These changes mean there will be no excuse for businesses to overlook how their brands are being advertised either – making life a lot harder for

Read More