November 11, 2019 Starting today, GitHub Actions is generally available. GitHub Actions are free for all public repositories, and every plan gets included storage and runner minutes for private repositories. Learn more about GitHub Actions pricing The 2.19.0 release of GitHub Enterprise Server is now available for download. The latest release includes the triage and maintain roles, WebAuthn securi
Italy’s Health Care System Groans Under Coronavirus — a Warning to the World (Published 2020)
ROME — The mayor of one town complained that doctors were forced to decide not to treat the very old, leaving them to die. In another town, patients with coronavirus-caused pneumonia were being sent home. Elsewhere, a nurse collapsed with her mask on, her photograph becoming a symbol of overwhelmed medical staff. In less than three weeks, the coronavirus has overloaded the health care system all o
印刷する メールで送る テキスト HTML 電子書籍 PDF ダウンロード テキスト 電子書籍 PDF クリップした記事をMyページから読むことができます サイバーリーズンは、Security Information and Event Management(SIEM)とExtended Detection and Response(XDR)を融合した新ソリューションとして「Cybereason SDR(SIEM Detection and Response)」を発表した。同ソリューションは、米Observeと共同で開発された。 Observeはクラウドデータプラットフォーム「Snowflake」上に構築されたObservability(可観測性)クラウドを提供する企業。全てのセキュリティデータを中央データレイクに統合し、サイバーリーズンのコアテクノロジーと可観測性を組み合わせることで、S
はじめに - 語源の広場
ごあいさつ 『語源の広場』へようこそ。 英語の語源を様々な視点で学べるようなコンテンツを用意しました。英語の単語をたくさん覚えるために、何度も来てくださいね。 『語源の広場』にはたくさん英単語があります。単語を探したいときには、左上にある「記事を検索」を使ってください。ブログ全体のページが検索されるので便利です。 また、このブログの左上にある、にほんブログ村の「英単語・英熟語」をクリックしていただき、ぜひ本ブログの充実を図るための応援をお願いします。 ●今月の単語 ならぬ今月のイラスト2020年4月 Stay home 英雄たちに感謝しましょう! ● (2020/4/28 記) ●今月の単語 2020年3月 (1)coronavirus「コロナウィルス」 corona+virusは見た目が花冠に見えるからこの名が付いたと思われます。 L.corona「花冠、王冠、(太陽の)光冠」
May 18, 2021 The GitHub Advisory Database now includes sixty curated Go advisories and will continue to grow as we curate existing and new advisories for the Go ecosystem. The addition of Go brings us to seven ecosystems including: Composer (PHP), Go, Maven, npm, NuGet, pip, and RubyGems. We are also in the process of reviewing repository security advisories for Go packages for possible inclusion
Incident response is critical for the active defense of any network, and incident responders need up-to-date, immediately applicable techniques with which to engage the adversary. Applied Incident Response details effective ways to respond to advanced attacks against local and remote network resources, providing proven response techniques and a framework through which to apply them. As a starting
FIRST CSIRT Services Framework Version 2.1 (for review purposes) Also available in PDF Computer Security Incident Response Team (CSIRT) Services Framework 1 Purpose The Computer Security Incident Response Team (CSIRT) Services Framework is a high-level document describing in a structured way a collection of cyber security services and associated functions that Computer Security Incident Response T
The DFIR Report Real Intrusions by Real Attackers, The Truth Behind the Intrusion Intro Sodinokibi (aka REvil) has been one of the most prolific ransomware as a service (RaaS) groups over the last couple years. The ransomware family was purported to be behind the Travelex intrusion and current reports point to an attack against Acer for a reported $50 million ransom demand. In March, we observed a
Recommendations and standard operating procedures for intensive care unit and hospital preparations for an influenza epidemic or mass disaster. Summary report of the European Society of Intensive Care Medicine's Task Force for Intensive care unit triage during influenza epidemic or mass disaster. 第 1 章 はじめに····························································································
Empirical Software Engineering https://doi.org/10.1007/s10664-019-09773-y What distinguishes great software engineers? Paul Luo Li1 · Amy J. Ko2 · Andrew Begel3 © Springer Science+Business Media, LLC, part of Springer Nature 2019 Abstract Great software engineers are essential to the creation of great software. However, today, we lack an understanding of what distinguishes great engineers from ord
How Lowe’s improved incident response processes with SRE | Google Cloud Blog
How Lowe’s SRE reduced its mean time to recovery (MTTR) by over 80 percent Editor’s Note: In a previous blog, we discussed how home improvement retailer Lowe’s was able to increase the number of releases it supports by adopting Google’s Site Reliability Engineering (SRE) framework on Google Cloud. Lowe’s went from one release every two weeks to 20+ releases daily, helping meet its customer needs f
Updated July 19, 2021: The U.S. Government attributes this activity to malicious cyber actors affiliated with the People's Republic of China (PRC) Ministry of State Security (MSS). Additional information may be found in a statement from the White House. For more information on Chinese malicious cyber activity, refer to us-cert.cisa.gov/China. Note: This Alert was updated April 13, 2021, to provide
Debian 12 KDE Plasma: The right GNU/Linux distribution for professional digital painting in 2024. Reasons and complete installation guide.
Fig0. Photo of my workplace, my cat Noutti (my main inspiration for Carrot) says hello! 1. Introduction Hey, here is my GNU/Linux Distribution Guide of the Year! You can reproduce my professional workstation identically and for free with this guide. This is a tradition on my blog, and something I've been publishing for 14 years. A. Motivations: I wrote this post-installation guide because nowadays
Ransomware Guide | CISA
Official websites use .gov A .gov website belongs to an official government organization in the United States. Secure .gov websites use HTTPS A lock (A locked padlock) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites. Ransomware is a form of malware designed to encrypt files on a device, rendering any files and the systems
On this episode, the Elm village decides to rescue Riruru and start a revolution against their empire with the elite class assistance. Later, Tsukasa and Shinobu infiltrates their territory lord's castle. Jeez, I didn't think I would get very disgusting vibes from an ugly evil lord. Although, it was very satisfying to see Elm village raid the castle with the elite class. Also, I liked how the elit
WHITE PAPER WHITE PAPER Using Splunk and JA3/s hashes to detect malicious activity on critical servers By Marcus LaFerrera and Ryan Kovar Detecting Supply Chain Attacks 2 Detecting Supply Chain Attacks WHITE PAPER Executive Summary Attacks like SolarWinds1 have shown that organizations have difficulty detecting when their internal appliances begin communicating to new external (possibly malicious)
A declarative router for Flutter based on Navigation 2 supporting deep linking, data-driven routes and more More... go_router # A declarative routing package for Flutter that uses the Router API to provide a convenient, url-based API for navigating between different screens. You can define URL patterns, navigate using a URL, handle deep links, and a number of other navigation-related scenarios. Fe
This was sitting in my notes for years. I’m still not sure if publishing this is a good idea. It’s bound to stir some discussion and I’m not entirely sure if I’ll handle it right but it seems like now is as good a time as any other. A bit of history Prawn is an old gem. It sprang from a very concrete need to generate PDF without external dependencies. I wasn’t around at the very beginning and can’
Toyama nestles between a deep blue bay and snow-topped peaks, some 250km northwest of Tokyo. In many ways, it is a quintessential regional Japanese city: its residents are greying, its industry is stable but sclerotic, its cuisine is exquisite. American firebombs targeting its steel mills wiped out 99% of Toyama’s centre during the second world war. Afterwards, the city was rapidly rebuilt and spr
Analyzing Dark Crystal RAT, a C# Backdoor | Google Cloud Blog
Written by: Jacob Thompson The FireEye Mandiant Threat Intelligence Team helps protect our customers by tracking cyber attackers and the malware they use. The FLARE Team helps augment our threat intelligence by reverse engineering malware samples. Recently, FLARE worked on a new C# variant of Dark Crystal RAT (DCRat) that the threat intel team passed to us. We reviewed open source intelligence and
The doctor will see you now. Sort of.Robot manufacturer Boston Dynamics has found a new job for its robot dog Spot Mini amidst the coronavirus outbreak: Modified Spot robots, outfitted with iPads, are now letting doctors walk into the rooms of coronavirus patients without risking infection. Hospitals have been asking the company for help with remote health. "Based on these conversations, as well a
GitHub - google/osv.dev: Open source vulnerability DB and triage service.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
Seamlessly Swapping the API backend of the Netflix Android app
by Rohan Dhruva, Ed Ballot As Android developers, we usually have the luxury of treating our backends as magic boxes running in the cloud, faithfully returning us JSON. At Netflix, we have adopted the Backend for Frontend (BFF) pattern: instead of having one general purpose “backend API”, we have one backend per client (Android/iOS/TV/web). On the Android team, while most of our time is spent work
This blog is where I post up various half-baked ideas that I have. All PostsCategoriesGitHubTwitterRSS/Atom feeds Hello! For the latest async interview, I spoke with Florian Gilcher (skade). Florian is involved in the async-std project, but he’s also one of the founders of Ferrous Systems, a Rust consulting firm that also does a lot of trainings. In that capacity, he’s been teaching people to use
Configuring issue templates for your repository - GitHub Docs
You can create default issue templates and a default configuration file for issue templates for your organization or personal account. For more information, see "Creating a default community health file." Creating issue templates On GitHub.com, navigate to the main page of the repository. Under your repository name, click Settings. If you cannot see the "Settings" tab, select the dropdown menu, th
Silent Data Corruption (SDC) can have negative impact on large-scale infrastructure services. SDCs are not captured by error reporting mechanisms within a Central Processing Unit (CPU) and hence are not traceable at the hardware level. However, the data corruptions propagate across the stack and manifest as application-level problems. These types of errors can result in data loss and can require m
Trojanized Windows 10 Operating System Installers Targeted Ukrainian Government | Mandiant | Google Cloud Blog
Trojanized Windows 10 Operating System Installers Targeted Ukrainian Government Written by: Mandiant Intelligence Executive Summary Mandiant identified an operation focused on the Ukrainian government via trojanized Windows 10 Operating System installers. These were distributed via torrent sites in a supply chain attack. Threat activity tracked as UNC4166 likely trojanized and distributed maliciou
高齢者と非高齢者の2トラック型の新型コロナウイルス対策について(2020年4月21日) 木村もりよ(医師、一般社団法人パブリックヘルス協議会) 関沢洋一((独)経済産業研究所) 藤井聡(京都大学大学院・京都大学レジリエンス実践ユニット) 1.現状認識 新型コロナウイルスが世界各国で猛威を振るっている。わが国でも公表感染者数の急増を背景として緊急事態宣言が発せられ、対人接触の8割減が求められている。 新型コロナウイルス及びそれに対する対策の中長期的な見通しについてはこれまでのところ政府や専門家会議から明確な説明は行われていない。しかし、多くの人々に新型コロナウイルスへの免疫ができていないという前提に立つと、今後の見通しは極めて悲観的なものになる。最近の研究によると、医療キャパシティの限界の中で多くの人々が免疫を獲得するためには、2年間にわたって、強力な感染防止対策と緩い対策を交互に取り続ける
WP VR – 360 Panorama and Virtual Tour Builder For WordPress
WP VR – 360 Panorama and Virtual Tour Builder For WordPress 作者: Rextheme 詳細 レビュー インストール 開発 説明 WPVR is the leading virtual tour creator and 360 panorama viewer for WordPress. It allows business owners to take their properties, shops, hotels, and exhibitions online in a virtual platform and keep them open for business 24/7. You can create complete virtual tours on your own, where your visitors can n
Amazon CloudWatch Application Signals for automatic instrumentation of your applications (preview) | Amazon Web Services
AWS News Blog Amazon CloudWatch Application Signals for automatic instrumentation of your applications (preview) One of the challenges with distributed systems is that they are made up of many interdependent services, which add a degree of complexity when you are trying to monitor their performance. Determining which services and APIs are experiencing high latencies or degraded availability requir
HTMLInputElement showPicker() · Issue #688 · w3ctag/design-reviews
Braw mornin' TAG! I'm requesting a TAG review of the showPicker() method for HTMLInputElement. The showPicker() element is a new addition to HTMLInputElement which addresses a very common request from web developers: programmatically showing a picker for controls like date etc. Explainer¹ (minimally containing user needs and example code): inline in Add showPicker() to <input> elements whatwg/html
Service Delivery Index: A Driver for Reliability - Slack Engineering
How a simple metric drives a reliability culture across the Slack engineering organization Customer-first: Moving from Hero Engineering to Reliability Engineering From the beginning, Slack has always had a strong focus on the customer experience, and customer love is one of our core values. Slack has grown from a small team to thousands of employees over the years and this customer love has always
2021年9月のニュースとしてBurnoutやHTTP/3,Docs for Developers,Metastability,SREの探求を取り上げました. Shownotes ⛩️ Opening Topotal CTOの@rrreeeyyyさんにSREについて聞いてみました! パックラフトのABC 稲城市の特産品: 梨 🧘Follow-up A Philosophy of Software Design, 2nd Edition 📰 News SOSP 2021 - Symposium on Operating Systems Principles Burning out and quitting Who Protects What? Shared Security in GKE (Cloud Next '19) Hardening your cluster's security
D.I.Y. Coronavirus Solutions Are Gaining Steam (Published 2020)
A student in Zaragoza, Spain, used a 3-D printer at home to make a face shield for health workers.Credit...Javier Cebollada/EPA, via Shutterstock There are moments when Gui Cavalcanti feels like he woke up in a dystopian universe — a guy with no background in medical or disaster response, suddenly leading an international effort on Facebook to design medical equipment to fight the Covid-19 pandemi
Project Status: Maintenance Reboot · Issue #5027 · mochajs/mocha
👋 Hi all! @Uzlopak, @voxpelli, and I are happy to announce that we've picked up maintenance of the Mocha organization and packages. That primarily includes the mocha test framework. Shoutout and thanks to @boneskull for inviting us on and helping set up many of the documentation and processes still in use today, as well as the other recent Mocha core team members: @giltayar, @juergba, @Munter, an
April 6, 2023 Today's Changelog brings you bulk editing in the table layout and improvements to tasklists! 🦖 Bulk editing in tables You can now update multiple cells in a column at once! Update a range of cells in any column by dragging the small blue rectangle in the bottom right of any cell up or down. You can also use keyboard commands to paste values into multiple cells at the same time. 1⃣ C
As we move forward with our renewed project activity, we would like to share more details about our plans for 2023. We’ve recently published the Servo 2023 roadmap on the project wiki, and our community and governance and technical plans are outlined below. Community and governance We’re restarting all the usual activities, including PR triage and review, public communications about the project, a
GitHub ProjectのMigration機能で古いProjectをBetaへ移行してみた | DevelopersIO
こんにちは、CX事業本部 IoT事業部の若槻です。 昨年の10月にGitHub Project betaがPublic Previewとなりました。 The new GitHub Issues - Public Beta | GitHub Changelog Betaでは、BoardだけではなくTable Viewが使えたり、Workflow機能が提供されていたりと様々な機能が強化されています。 そしてProjectでは、既存の古いProject(Classic)からBetaへBoardをMigrationできる機能が用意されています。 Migrating your project to Projects (beta) - GitHub Docs 今回は、このGitHub ProjectのMigration機能を利用して、古いProjectをBetaへ移行してみました。 Migration
By Minal Mishra Quality of a client application is of paramount importance to global digital products, as it is the primary way customers interact with a brand. At Netflix, we have significant investments in ensuring new versions of our applications are well tested. However, Netflix is available for streaming on thousands of types of devices and it is powered by hundreds of micro-services which ar
Protecting Against Cyber Threats to Managed Service Providers and their Customers | CISA
This advisory defines MSPs as entities that deliver, operate, or manage ICT services and functions for their customers via a contractual arrangement, such as a service level agreement. In addition to offering their own services, an MSP may offer services in conjunction with those of other providers. Offerings may include platform, software, and IT infrastructure services; business process and supp
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
GitHub Actions is generally available
SIEMとXDRを融合した「Cybereason SDR」を発表--サイバーリーズン
GitHub Advisory Database now includes Go advisories
Home | Applied Incident Response
CSIRT Services Framework Version 2.1
Sodinokibi (aka REvil) Ransomware
インフルエンザ大流行や大災害時の集中治療室と病院における対策のための推奨手順と標準手順書 日本集中治療医学会
What distinguishes great software engineers?
Mitigate Microsoft Exchange Server Vulnerabilities | CISA
Choyoyu! Episode 4 Impression
Detecting Supply Chain Attacks
go_router | Flutter package
Status Update 2021 · prawnpdf · Discussion #1210
Japan’s cities are being remade for an ageing population
Hospitals are using iPads to turn robot dogs into doctors
Async Interview #4: Florian Gilcher · baby steps
Silent Data Corruptions at Scale
【寄稿】高齢者と非高齢者の2トラック型の新型コロナウイルス対策について(木村もりよ、関沢洋一、藤井聡)
7: News September 2021
GitHub Issues & Projects - April 6th update
Servo 2023 Roadmap - Servo, the embeddable, independent, memory-safe, modular, parallel web rendering engine
Safe Updates of Client Applications at Netflix