Network Computing Dark Reading

Advertise

Risk

1/21/2014
06:43 AM

Thomas Claburn
Quick Hits

Connect Directly

0 comments
Comment Now

50%

Obama Outlines 5 Surveillance Reforms

NSA's controversial bulk collection of phone records will end, but businesses may be asked to retain data in case the government needs it

President Obama on Friday announced five changes in US surveillance policy, a move he attributed in part to the revelations about the scope of US intelligence gathering made possible by documents leaked by ex-NSA contractor Edward Snowden.

The most significant change is an end to the bulk collection of telephone records -- phonecall meta-data -- under Section 215. The President said he is ordering the gradual discontinuation of this program and the establishment of "a mechanism that preserves the capabilities we need without the government holding this bulk meta-data."

But the President conceded that alternatives, such as having a third-party or individual businesses retain data until the government comes calling, pose problems. It remains to be seen exactly what form such data collection will take.

Read the full article here.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Thomas Claburn has been writing about business and technology since 1996, for publications such as New Architect, PC Computing, InformationWeek, Salon, Wired, and Ziff Davis Smart Business. Before that, he worked in film and television, having earned a not particularly useful ... View Full Bio

Recommended Reading:

Comment |

Email This |

Print |

RSS

More Insights

Webcasts

How Cyber Attackers Will Use & Abuse AI, ML Against the Enterprise

Enabling a Smooth DX Transformation in the Post-Pandemic New Tomorrow

More Webcasts

White Papers

Wi-Fi 6: The (Much) Bigger Story

Getting Cloud Management Right

More White Papers

Reports

The New Face of IT Automation

State of Cybersecurity Incident Response

More Reports

Comments

Newest First | Oldest First | Threaded View

[close this box]

Be the first to post a comment regarding this story.

Hot Topics

Editors' Choice

COVID-19: Latest Security News & Commentary

Dark Reading Staff 7/6/2020

Ripple20 Threatens Increasingly Connected Medical Devices

Kelly Sheridan, Staff Editor, Dark Reading, 6/30/2020

Another COVID-19 Side Effect: Rising Nation-State Cyber Activity

Stephen Ward, VP, ThreatConnect, 7/1/2020

Live Events

Webinars

Enterprise Connect FREE Virtual Conference & Expo on Aug 3-6

More Informa Tech Live Events

White Papers

Wi-Fi 6: The (Much) Bigger Story

Getting Cloud Management Right

2020 Trends to Watch: Cybersecurity

The New Face of IT Automation

How to Build a 'DefenderSphere' Map for OT Security

More White Papers

Video

All Videos

Cartoon

Latest Comment: Interesting! Kills 99% of germs and contains chilli juice to prevent you from touching your face.

Cartoon Archive

Current Issue

How Cybersecurity Incident Response Programs Work (and Why Some Don't)

This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

The Threat from the Internet�and What Your Organization Can Do About It

This report describes some of the latest attacks and threats emanating from the Internet, as well as advice and tips on how your organization can mitigate those threats before they affect your business. Download it today!

Download Now!

State of Endpoint Security: How Enterprises Are Managing Endpoint Security Threats

0 comments

State of Cybersecurity Incident Response

0 comments

Developing and Maintaining Secure Applications

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-15350
PUBLISHED: 2020-07-07

RIOT 2020.04 has a buffer overflow in the base64 decoder. The decoding function base64_decode() uses an output buffer estimation function to compute the required buffer capacity and validate against the provided buffer size. The base64_estimate_decode_size() function calculates the expected decoded ...

CVE-2019-19935
PUBLISHED: 2020-07-07

Froala Editor before 3.0.6 allows XSS.

CVE-2020-11882
PUBLISHED: 2020-07-07

The O2 Business application 1.2.0 for Android exposes the canvasm.myo2.SplashActivity activity to other applications. The purpose of this activity is to handle deeplinks that can be delivered either via links or by directly calling the activity. However, the deeplink format is not properly validated...

CVE-2020-15028
PUBLISHED: 2020-07-07

NeDi 1.9C is vulnerable to a cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Map.php xo parameter.

CVE-2020-15029
PUBLISHED: 2020-07-07

NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php sn parameter.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]