Microsoft, JavaScript, AI Can Fire – Application Security Weekly #21 | SC Media

Microsoft, JavaScript, AI Can Fire – Application Security Weekly #21

June 28, 2018
Apple comments on erroneous reports of iPhone brute force passcode hack, XSS, in Google Colaboratory + CSP bypass, how to deploy to Azure with Docker & VS Code, and debugging JavaScript in Google Chrome and Visual Studio Code.

News[edit]

Bugs, Breaches, and More!
1.) Apple comments on erroneous reports of iPhone brute force passcode hack Original Reporting 2.) Flaw in macOS 'Quick Look' could reveal encrypted data 3.) XSS in Google Colaboratory + CSP bypass 4.) Lacework Study Finds 300 Unsecured Container Orchestration Dashboards
If you build it, they will come
1.) Improving extension transparency for users & Dan Goodin calls out Google 2.) No, Microsoft is not rewriting Office in Javascript 3.) But Microsoft IS porting Skype to React Native 4.) The man who was fired by a machine
Learning & Tools
1.) Deploy to Azure with Docker & VS Code 2.) Starter: An Open Source Dockerfile Generator 3.) Debugging JavaScript in Google Chrome and Visual Studio Code 4.) List Lambdas
Food for Thought
1.) The Problem You Solve Is More Important Than The Code You Write 2.) That time Nick Craver broke StackOverflow 3.) CommitStrip: Are you any good at it? 4.) CommitStrip: The World Cup and the Sysadmin Full Show Notes Follow us on Twitter: securityweekly [audio src="http://traffic.libsyn.com/aswaudio/Microsoft_JavaScript_AI_Can_Fire_-_Application_Security_Weekly_21_converted.mp3" ]
prestitial ad