According to a posting on Seclists.org, during the security audit of google-api-php-client (Google's PHP client library for accessing Google APIs) multiple XSS vulnerabilities were discovered by a team at DefenseCode using its ThunderScan SAST application source code security analysis platform. These flaws were found in the sample code for using the Google's URL Shortener.
The promise of artificial intelligence and machine learning for improving the way employees and departments collaborate with one another has tantalized forward-looking business leaders for a long time. Now, organizations may finally be able to turn that promise into tangible results, thanks to recent advancements from major players like Microsoft, Salesforce and Oracle in folding AI into their enterprise collaboration tools.
Nation-states are stockpiling software exploits to compromise and spy on their rivals. But do their gains represent a loss for manufacturers, developers and the public? Bradley Barth reports. For all of the hype surrounding the release by WikiLeaks of the Vault 7 documents revealing CIA hacking tools and digital surveillance techniques, the revelations by and large didn't surprise most privacy pundits.