CNET: Facebook takes heat from HUD over allegedly discriminatory housing ads. “Facebook is getting in trouble again for housing ads that a US agency says are discriminatory. The Department of Housing and Urban Development said Friday that it’s filed a formal complaint against Facebook for violating the Fair Housing Act because the social network lets landlords and home sellers engage in housing discrimination.”
Security & Legal Issues
Security & Legal issues and news. May be about patches, hacks, or court decisions.
Techdirt: Automated ‘Content Protection’ System Sends Wave Of Bogus DMCA Notice Targeting Legitimate URLs
Techdirt: Automated ‘Content Protection’ System Sends Wave Of Bogus DMCA Notice Targeting Legitimate URLs. “Yet another content protection service decides it’s better off letting the machines do the work, with predictably catastrophic results. The EFF first noticed the DMCA abuse being committed by ‘Topple Track,’ a content protection service offered by Symphonic Distribution. Symphonic talks big about its protection service, pointing out its position as one of the ‘leading members’ of Google’s ‘Trusted Copyright Program.'”
Go Zuck Yourself: Facebook destroys patent suit over timeline (The Register)
The Register: Go Zuck Yourself: Facebook destroys patent suit over timeline . “Facebook has prevailed in a suit over its iconic news feed and claims it ripped off the idea from a patent troll. Judge John Koetl granted Summary Judgement [PDF] to House Zuck, approving its motion to dismiss an allegation that the Facebook timeline violated Mirror Worlds’ purchased patents on the organization of messages and news items.”
The Register: Patch Tuesday heats up with pair of exploited zero-days squashed – plus 58 other vulns fixed
The Register: Patch Tuesday heats up with pair of exploited zero-days squashed – plus 58 other vulns fixed . “Microsoft and Adobe have teamed up to deliver more than 70 patches with this month’s Patch Tuesday batch released today. Microsoft contributed the bulk of the fixes emitted this month, kicking out updates for 60 CVE-listed vulnerabilities in its products. These should be installed as soon as you’re able to test and deploy them.”
BBC: Reddit sleuth identifies car part, leading to hit-and-run arrest
BBC: Reddit sleuth identifies car part, leading to hit-and-run arrest. “US Police have made an arrest in a fatal hit-and-run case after an obscure part of a car headlight was identified by a social media user.” The part identified is small enough to fit in someone’s hand. A very little bit of car.
ThreatBrief: Vulnerability Disclosures in 2018 So Far Outpacing Previous Years’
ThreatBrief: Vulnerability Disclosures in 2018 So Far Outpacing Previous Years’. “Between January 1 and June 30 of this year, a total of 10,644 vulnerabilities were published compared to 9,690 in the same period in 2017. The trend so far this year suggests that the total number of disclosed vulnerabilities in 2018 will comfortably exceed the 20,832 vulnerabilities that Risk Based Security published during 2017 — which itself represented a 31% increase over 2016.”
Oracle: Run, don’t walk, to patch this critical Database takeover bug (The Register)
The Register: Oracle: Run, don’t walk, to patch this critical Database takeover bug. “Oracle is advising customers to update their database software following the discovery and disclosure of a critical remote code execution vulnerability. The flaw, dubbed CVE-2018-3110 was given a CVSS base score of 9.9 (out of 10) and Oracle warns that successful exploit of the bug ‘can result in complete compromise of the Oracle Database and shell access to the underlying server.'”
