CVE-2019-11928

Sealed with an XSS: Flaw in Go lang library could cause app issues Snowden was right: US court deems NSA bulk phone-call snooping illegal, possibly unconstitutional, and probably pointless anyway

In Brief A Colorado man will spend more than a decade behind bars for trying to settle a few arguments, albeit on an online souk selling highly illegal stuff. Bryan Connor Herrell, aka "penissmith" and/or "botah" has been sentenced to 11 years for his work as a sort of problem solver on the Alphabay crime market. The moderator was tasked with settling disputes between sellers and their customers, usually involving drugs. In addition to handling disputes, he was also asked to watch for scammers w...

And reveals half a dozen WhatsApp bugs into the bargain Facebook fires sueball at 'malicious' app SDK makers, accuses them of gobbling up people's personal information

Facebook has published its first Vulnerability Disclosure Policy and given itself grounds to blab the existence of bugs to the world if it thinks that’s the right thing to do. “Facebook may occasionally find critical security bugs or vulnerabilities in third-party code and systems, including open source software,” the company writes. “When that happens, our priority is to see these issues promptly fixed, while making sure that people impacted are informed so that they can protect themsel...