A popular WordPress plugin leaked access tokens capable of hijacking Twitter accounts

A popular WordPress plugin, installed on thousands of websites to help users share content on social media sites, left linked Twitter accounts exposed to compromise.
The plugin, Social Network Tabs, was storing so-called account access tokens in the source code of the WordPress website. Anyone who viewed the source code could see the linked Twitter handle and the access tokens. These access tokens keep you logged in to the website on your phone and your computer without having to re-type your password every time or entering your two-factor authentication code.
But if stolen, most sites can’t differentiate between a token used by the account owner, or a hacker who stole the token.
Baptiste Robert, a French security researcher who goes by the online handle Elliot Alderson, found the vulnerability and shared details with TechCrunch. He later tweeted details of the bug on Thursday.
In order to test the bug, Robert found 539 websites using

Original URL: http://feedproxy.google.com/~r/Techcrunch/~3/LR44OlbFhu8/

Original article

Syncthing 1.0.0 released as open-source P2P sync tool, finally leaves beta

If you’re looking for an open, trustworthy and decentralized alternative to cloud sync platforms, then Syncthing is the tool for you. And today is a milestone — after five long years in beta, Syncthing 1.0.0 (32-bit) and Syncthing 1.0.0 (64-bit) has been released for Windows, Mac, Linux and Android. The new release has been given a new code name: Erbium Earthworm, continuing the tradition of alphabetic code names (the previous release was Dysprosium Dragonfly). It’s also been dubbed “Graduation Day” by lead developer Jakob Borg. Although Syncthing has reached a milestone release, it’s not down to any major new features.… [Continue Reading]

Original URL: https://betanews.com/2019/01/03/syncthing/

Original article

Here’s what 2019 holds for Paint.NET

As 2018 draws to a close, it’s a time not only for looking back over what the past year has offered, but also for looking forward to the new year and what’s on the horizon. There’s certainly a lot to look forward to in terms of hardware in 2019, but there’s also a great deal on the software front. The developer of the popular image editing tool Paint.NET, Rick Brewster, has shared his vision of what the coming year holds for his software. The 2019 roadmap for Paint.NET is an exciting one, promising migration to .NET Core, support for brushes… [Continue Reading]

Original URL: https://betanews.com/2018/12/27/paint-net-2019/

Original article

VirtualBox 6.0 adds new file manager, revamps user interface

Oracle has released VirtualBox 6.0, a major new release of its free virtualization tool for Windows, Mac and Linux. Version 6.0 unveils major improvements to — and a redesign of — the user interface, plus beefs up 3D support (including first-time support on Linux and Solaris guests). Hyper-V emulation is now also supported on Windows as a fall-back execution core helping fix problems running 64-bit guests when Windows Security’s sandboxing feature was enabled. The user interface is the chief beneficiary in VirtualBox 6.0. It opens with greatly improved HiDPI and scaling support, along with the promise of better detection and… [Continue Reading]

Original URL: https://betanews.com/2018/12/20/virtualbox-6-0-adds-new-file-manager-revamps-user-interface/

Original article

MongoDB switches up its open-source license

MongoDB is a bit miffed that some cloud providers — especially in Asia — are taking its open-source code and offering a hosted commercial version of its database to their users without playing by the open-source rules. To combat this, MongoDB today announced it has issued a new software license, the Server Side Public License (SSPL), that will apply to all new releases of its MongoDB Community Server, as well as all patch fixes for prior versions.
Previously, MongoDB used the GNU AGPLv3 license, but it has now submitted the SSPL for approval from the Open Source Initiative.
For virtually all regular users who are currently using the community server, nothing changes because the changes to the license don’t apply to them. Instead, this is about what MongoDB sees as the misuse of the AGPLv3 license. “MongoDB was previously licensed under the GNU AGPLv3, which meant companies who wanted to run MongoDB

Original URL: http://feedproxy.google.com/~r/Techcrunch/~3/CuVtAufi53w/

Original article

Rich-text editing platform Tiny raises $4M, launches file management service

Maybe you’ve never heard about Tiny, but chances are, you’ve used its products. Tiny is the company behind the text editors you’ve likely used in WordPress, Marketo, Zendesk, Atlassian and other products. The company is actually the result of the merger of Moxiecode, the two-person team behind the open source TinyMCE editor, and Ephox, the company behind the Textbox.io editor. Ephox was the larger company in this deal, but TinyMCE had a significantly larger user base, so Tiny’s focus is now almost exclusively on that.
And the future of Tiny looks bright thanks to a $4 million funding round led by BlueRun Ventures, the company announced today (in addition to a number of new products). Tiny CEO Andrew Roberts told me the round mostly came together thanks to personal connections. While both Ephox and Moxiecode were profitable, now seemed like the right time to try to push for growth.
Roberts also noted that

Original URL: http://feedproxy.google.com/~r/Techcrunch/~3/j-LCqplceuA/

Original article

LibreOffice 6.1 is here with new Windows icon theme

An office suite is regarded as an essential part of your daily work toolkit, whether you’re a big business or a retired individual wanting to keep on top of daily tasks. So you want to make the right choice, without spending a huge amount of money. Although it’s too easy to subscribe to Office 365 and use the suite across devices, we sometimes wonder if we really need the functionality? Do you use your word processor for more than a few essential documents or your spreadsheet to manage basic finances? If not, you might as well take a second look… [Continue Reading]

Original URL: https://betanews.com/2018/08/08/libreoffice-6-1-is-here-with-new-windows-icon-theme/

Original article

Handbrake 1.1.0 revamps user interface, adds Vimeo, YouTube and 4K presets

Popular cross-platform, open-source video transcoder Handbrake 1.1.0 has been released, and despite the version number increment is actually a major update. Handbrake allows users to convert video from a wide variety of formats — including DVD and Blu-ray — into MP4 or MKV files with support for a wide range of codecs, including x264, x265, VP8/9 and both MPEG-2 and MPEG-4. Handbrake 1.1.0 provides a major update to its user interface to provide a more logical and easy to follow workflow. It also adds new presets, filters and improves 4K and x265 support. The most visible change — of course — is… [Continue Reading]

Original URL: https://betanews.com/2018/04/10/handbrake-revamp/

Original article

Google Web Designer 3.0 makes HTML 5 web content easy to build across multiple devices and platforms

Google has released Google Web Designer 3.0 Beta, its HTML5 content-producing tool for Windows, Mac and Linux. Although targeted primarily at advertisers, the tool can be adapted for other content too, and also supports JavaScript, CSS and XML. Version 3.0 introduces several new features. First, users are now able to change the ad environment via the File > Ad environment menu. When supported, users can switch between DoubleClick, AdMob, AdWords and Non-Google Ad easily. Users also gain the ability to quickly add components to the centre of the stage simply by double-clicking them in the Components panel. A new component for… [Continue Reading]

Original URL: https://betanews.com/2018/03/15/google-web-designer-3/

Original article

Proudly powered by WordPress | Theme: Baskerville 2 by Anders Noren.

Up ↑

%d bloggers like this: