(Reuters) – Campbell Soup Co said on Thursday it would reorganize its businesses, giving newly-appointed Chief Operating Officer Luca Mignini more control over its main units, including soup, simple meals and shelf-stable beverages.
This week, two separate security alerts have revealed major holes in devices from Moxa, an industrial automation networking company. In one case, attackers could potentially send commands to a device’s operating system by using them as a username in a login attempt. In another, the private key for a Web server used to manage network devices could be retrieved through an HTTP GET request.
The first vulnerability, in Moxa’s AWK-3131A 802.11n industrial wireless networking gear—which can act as an access point, bridge, or client device—was revealed by Cisco Talos on April 3. Because of the way user authentication for multiple features works—leveraging the “loginutils” tool of the Busybox operating system—the usernames from failed login attempts are processed in such a way that they could be leveraged to inject command-line instructions by using punctuation to separate the command from the rest of the command-line output.
“Exploitation of this vulnerability has been confirmed via Telnet, SSH, and the local console port,” Patrick DeSantis and Dave McDaniel of Cisco Talos wrote in their report. “It is suspected that the web application may also be vulnerable as it relies on loginutils and examination of the iw_event_user binary reveals ‘fail’ messages for ‘WEB,’ ‘TELNET,’ and ‘SSH.'”
But residents along Baxter Street in Los Angeles’ Echo Park neighborhood—reportedly one of the steepest streets in America (comprising two major hills)—are now banding together to try to change local traffic patterns. Neighbors have contacted city officials and Waze’s parent company, Google, to try to mitigate the problem.
They believe that a lot of drivers are using Baxter as a way to avoid Glendale Boulevard, a nearby thoroughfare.
When asked about how many advertisers had paused their ad spending, Sandberg would only get as specific as saying that “a few” had done so, leaving plenty of room for interpretation. She told Bloomberg that Facebook was engaged in “reassuring conversations” with advertisers with concerns about data privacy.
The slight chill is just one more way that the Cambridge Analytica scandal is shifting Facebook’s relationship to the advertisers at the core of the company’s business model.
In the interview, Sandberg reiterated that Facebook’s proactive measures around privacy and security — like doubling its safety and security team from 10,000 to 20,000 workers — will negatively affect profitability in the short to medium term.
“We also didn’t build our operations fast enough, and that’s on me,” Sandberg said.
She admitted that Facebook has historically addressed problems on the platform as isolated incidents, an approach that allowed more systemic issues to remain unaddressed.
“What we didn’t do until recently, and what we’re doing now, is just take a broader view, looking to be more restrictive in ways data could be misused,” Sandberg said.
“This is going to be a long process… we’re going to find more things, we’re going to tell you about them, we’re going to shut them down.”