SHARING IS CARING.
Here are some things we want to share with you and the world.
Contractor Cyber-Security Fraud Now Subject to False Claims Act Penalties
In October 2021, the U.S. Department of Justice launched the Civil Cyber-Fraud Initiative leveraging the federal False Claims Act (FCA) to address cybersecurity-related fraud by government contractors. According to the announcement from Deputy Attorney General Lisa O. Monaco, the initiative seeks to “hold accountable entities or individuals that put U.S. information or systems at risk by knowingly providing deficient cybersecurity products or services, knowingly misrepresenting their cybersecurity protocols, or knowingly violating obligations to monitor and report cybersecurity incidents and breaches.” This announcement follows DOJ’s cyber review conducted in response to President Biden’s “Executive Order on Improving the Nation’s Cybersecurity” issued in May 2021 strengthen the government’s ability to respond to cybersecurity attacks and improve national cybersecurity. This initiative represents a significant shift in focus for the DOJ. Historically, the DOJ’s anti-fraud cyber work had focused more on hackers and foreign cyber-security threats which unlawfully access private networks to steal data. Successful prosecution has required cooperation from impacted companies, including government contractors targeted by hackers. The initiative now intensifies scrutiny on these same government contractors in the cybersecurity space by increasing their liability under the FCA if they fail to meet cyber-security contracting requirements. This shift to increase potential contractor accountability and liability may affect the collaborative approach that the DOJ has historically relied upon in its pursuit of cyber criminals. Key Aspects of the Civil Cyber-Fraud Initiative In a recent address, the DOJ has identified at least three common cyber-security failures that are prime candidates for potential False Claims Act enforcement against government contractors through this initiative: Knowing failure to comply with contractual cyber-security standards. Government contractors are required to...How to build a React Native application using Ant Media Server?
Our guest is Vitor Silva, Developer at Ubistart, and he will talk about their journey to build a React Native application using rn-antmedia. What type of project generated the need to create lib rn-antmedia? A project with a frontend dashboard and mobile application for users, this project is a platform that allows patients and doctors to connect with each other and schedule consultations by video, among other features. Why did you choose AntMedia for this project? The purpose of choosing Ant Media was to use WebRTC technology to connect patients and doctors with easy use of abstraction, and also for some advanced functionalities such as recording the teleconsultation. Why React Native to create mobile apps? React Native was chosen because it is easier to apply only one code base to develop for iOS and Android at the same time. Besides that, it has a solid community with lots of lib options, it is web developer-friendly (JSX syntax), it has a very good performance (if developed the right way) and we have good internal skills on using that at Ubistart. How easy is it to do an app with no knowledge of React Native? In order to develop an app in React Native, you should know a little bit of JavaScript, terminal, and perhaps HTML and NodeJS (NPM or Yarn). By reading a little documentation you may be able to install and configure it. To write the app code, you may use the JavaScript knowledge and JSX syntax, which has a syntax similar to the HTML syntax but inside the JavaScript. But to create solid apps with the good performance...
Securing OAuth Bearer tokens from multiple Identity Providers in an ASP.NET Core API
This article shows how to secure and use different APIs in an ASP.NET Core API which support OAuth access tokens from multiple identity providers. Access tokens from Azure AD and from Auth0 can be be used to access data from the service. Each API only supports a specific token from the specific identity provider. Microsoft.Identity.Web is used to implement the access token authorization for the Azure AD tokens and the default authorization is used to support the Auth0 access tokens. Code: https://github.com/damienbod/SeparatingApisPerSecurityLevel Blogs in this series Securing OAuth Bearer tokens from multiple Identity Providers in an ASP.NET Core API Setup An API ASP.NET Core application is created to implement the multiple APIs and accept access tokens created by Auth0 and Azure AD. The access tokens need to be validated and should only work for the intended purpose for which the access token was created. The Azure AD API is used by an ASP.NET Core Razor page application which requests an user access token with the correct scope to access the API. Two Azure AD App registrations are used to define the Azure AD setup. The Auth0 application is implemented using a Blazor server hosted application and accesses the two Auth0 APIs, See the pervious post for details. To support the multiple identity providers, multiple schemes are used. The Auth0 APIs use the default scheme definition for JWT Bearer tokens and the Azure AD uses a custom named scheme. It does not matter which scheme is used for which as long as the correct scheme is defined on the controller securing the API. The AddMicrosoftIdentityWebApiAuthentication method takes the scheme and the...
The best Mobile App Development Frameworks for 2022
Mobile app development has been around since the mid-1990s, but it has changed drastically since then. Over the years, developers have had to adapt to new technologies and frameworks in order to keep up with consumers’ needs. Worldwide, the mobile application market size is poised to grow by $653.91 billion during 2021–2025, growing at a compound annual growth rate (CAGR) of almost 21% during the forecast period. (Technavio) Keep in mind that the right framework depends on your project requirements and preferences. Moreover, to make adequate use of the frameworks in mobile app development, you can hire mobile app developers from a faithful mobile app development company. Let’s get started! Swiftic is one of the excellent mobile app development frameworks that use Apple’s new programming language, Swift. This framework can be used for more than just developing iOS apps. It can also be used to create MacOS applications, watchOS applications, and tvOS applications. This is one of its biggest benefits over other frameworks in that it has widespread applicability for all of Apple’s platforms. It uses a common syntax across all platforms and facilitates cross-platform functionality between iOS and OS X/watchOS/tvOS as well. Some of the significant features are: Native Scripts Image Source: Medium NativeScript is not a cross-platform framework; it’s for building native apps with Angular 2. If your goal is to build truly native apps that use native components and APIs, then NativeScript could be a good option. Of course, you’ll still have to write separate code for each platform. You’ll also need to learn how to use two different languages (JavaScript for your web and mobile...
4 tips for communicating cyber security with staff
You’re only as strong as your weakest link, and unfortunately, with cyber security, it only takes one weak link to bring down an entire infrastructure. But communicating cyber security is a challenge many IT managers face. Not only do non-tech-savvy people find cyber security boring, but they also don’t realize the massive threat weak security poses. You need an easy way to educate your staff en masse and share cyber security tips; a way that grabs your staff’s attention and helps them retain what you teach them. With videos, you can feel confident that people are actually listening to—and retaining—your cyber security tips. As a bonus, videos are easier to put together than training manuals (and more enjoyable to consume)! Why you should use videos to communicate cyber security tips with staff When it comes to communicating cyber security tips with staff, you need a way to train your team and teach them the importance of staying safe online. If you rely on text-heavy materials—like training manuals—to deliver crucial information, you risk your audience ignoring the information you’re sending them. After all, how many people do you know who wake up in the morning hoping to pour over a thick cyber security training manual? Chances are, most people aren’t as enthusiastic about cyber security as you are. So what’s the solution? Since over training manuals, videos are the ideal medium to communicate cyber security tips. We have two easy ideas for you: Create long-form webinars that contain in-depth information. Host them several times throughout the year and encourage staff to watch. Create a training series that you send out...
Top 9 Vuetify Templates for Web Developer – Flatlogic Blog
It is safe to say that in 2021 user experience is crucial. And, subsequently, user interface and overall project design are just as crucial. User experience and intuitive design help your end-user to not only get the overall gist of your project but also build a connection to your brand, which, ideally, evolves into brand loyalty in the future. The reasoning behind these simple, at face value, truths is actually quite fascinating if we were to get to the bottom of this. It all has to do with the natural evolution of the paradigm of the relationship between the seller and the buyer in the wider sphere of business and, more importantly, in the narrower sphere of marketing. At the moment, the customer’s position is much more convenient when compared to the seller’s one, due to the market’s oversaturation with demand. In layman’s terms, it is always possible for a customer to look elsewhere for similar, even if worth, goods and services. That is why it is most important for a company to work over its image and overall presentation, especially when it comes to such constantly changing spheres as the web. And, coming full circle to the very beginning of our discussion, means paying close attention to your project’s web presentation and user experience and interface. Luckily, nowadays there are ways to simplify this whole ordeal with the help of such tools as the main “characters” of today’s article – Vuetify and its templates. Things to Know About Vuetify: Vuetify Pros and Cons What is Vuetify and what does it have to do with everything that we have...
Introducing FugueSQL — SQL for Pandas, Spark, and Dask DataFrames | by Khuyen Tran | Dec, 2021 | Towards Data Science
Introducing FugueSQL — SQL for Pandas, Spark, and Dask DataFrames An End-To-End SQL Interface for Data Science and Analytics As a data scientist, you might be familiar with both Pandas and SQL. However, there might be some queries, transformations that you feel comfortable doing in SQL instead of Python. Wouldn’t it be nice if you can query a pandas DataFrame like below: … using SQL? Or use a Python function within a SQL query? That is when FugueSQL comes in handy. What is FugueSQL? FugueSQL is a Python library that allows users to combine Python code and SQL commands. This gives users the flexibility to switch between Python and SQL within a Jupyter Notebook or a Python script. To install FugueSQL, type: To run on Spark or Dask execution engines, type: In this article, we will explore some utilities of FugueSQL and compare FugueSQL with other tools such as pandasql. FugueSQL in a Notebook FugueSQL comes with a Jupyter notebook extension that allows users to interactively query DataFrames with syntax highlighting. To use it, import the setup function from fugue_notebook to register the%%fsql cell magic. This is only available on classic notebooks for now (not available on JupyterLab). To understand how the%%fsql cell magic, let’s start with creating a pandas DataFrame: Now, you can query like how you would normally do in SQL by adding the %%fsql at the beginning of the cell. In the code above, only PRINT does not follow standard SQL. This is similar to the pandas head() and Spark show() operations to display a number of rows. Operations such as GROUP BY are similar to...![[100% OFF] MERN Stack E-Commerce Mobile App with React Native [2021] | SmartyBro](https://old.vinova.sg/wp-content/uploads/2022/04/MERN-Stack-E-Commerce-Mobile-App-with-React-Native-2021-400x250.jpg)
[100% OFF] MERN Stack E-Commerce Mobile App with React Native [2021] | SmartyBro
Building cross-platform mobile apps has become less time consuming and more effective with one of the most popular frameworks, React Native. Now get Udemy Coupon 100% Off, all expire in few hours Hurry. you should always try to take Online Classes or Online Courses rather than Udemy MERN Stack E-Commerce Mobile App with React Native [2021] Download, as we update lots of resources every now and then. This is not a reading documentation course. You have here a real-world project to learn from, and you will see the exact place of every feature of every technology used in this course. You will learn how to build a Mobile Application for iOS and Android with MERN stack using React Native. In this course you will learn to use technologies like: – React Navigation – Styled Components – And Native Base You will learn the basics of building React Native apps. First, you will discover how to set up your environment in record time, including how to debug and run your app on your phone. Then, you will explore the React Native component library and how to style your layouts for a great feel. Finally, you will delve into how to call an HTTP API from your app. When you’re finished with this course, you will have the basic skills and knowledge of React Native needed to tackle profitable, cross-platform mobile projects without learning at least two new programming languages. Also, this course is a perfect to the concepts of server-side web development. You’ll learn the different parts that make up the back-end of a website or web application, and you’ll...
How To Increase Sales And Traffic With eCommerce Mobile App Development?
The online shopping trend is now modified. Instead of sitting in front of the computer and laptops, people are buying online any time, anywhere. Yes, I am talking about eCommerce Mobile Apps. “Mobile Applications are people’s new favorite aspect for buying online.” The following Mobile statistics prove it, This shows that avoiding mobile apps makes no sense. Having an will bring in benefits like better customer experience, increase in conversions, more sales, and customer loyalty. Do you already have a mobile app but are unable to generate sales and traffic out of it? In this article, I will share some effective tips to get the most out of your mobile shopping app. Tips to Boost Sales with Mobile App Execute App Store Optimization (ASO) Marketing your mobile app is very important. One of the best ways to promote your mobile app is by optimizing your app for the app store. As Search Engine Optimization (SEO) is performed for websites, App Store Optimization (ASO) is performed for mobile apps. ASO will help users to find you with relevant keywords and categories. This will lead to an increasing number of downloads for your mobile app. Establish a Landing Page A landing page is an effective way to elevate your mobile app. A landing page describes the features and functionality of the mobile app with an attractive user interface. Its main objective is to drive users to download your app. Adding elements like catchy call to action buttons, discounts and rewards, and subscribe button can encourage users to install your app. Power of Email Marketing Even with the growth of new technologies,...
Cyber security education in Estonia: from kindergarten to NATO Cyber Defence Centre – e-Estonia
Cyber-attacks against Estonia in 2007 pushed Estonia at the front line of cyber security. One of the results of this cyber-warfare was the wide acknowledgment that cyber security knowledge and skills are part of the information society’s blood circulation. Today we can report that the Centre for Digital Forensics and Cyber Security at TalTech provides the highest level of cyber security education…starting from first-graders! Arena for strong cooperation with the world’s best In general, TalTech’s Department of Software Science, especially its Centre for Digital Forensics and Cyber Security, is materializing the ambition to be the best provider of cyber security bachelor, master’s, and doctoral education in the Nordic countries and the Baltics. Several factors support it: Estonia’s history in leading the mindset that cyber security must grow along with the digitalization of the society; establishment of NATO Cooperative Cyber Defence Centre of Excellence in Tallinn; support from the Estonian Ministry of Defence and a vast network of enterprises that are developing top-end cyber security solutions. Through cooperation with this capable network, the Center can provide each student with the knowledge and skills necessary to excel in cyber security jobs in Estonia and elsewhere. For example, when this article is published, the annual NATO cyber security exercise Locked Shields, the world’s largest of its kind, is taking place in Estonia with students, professors and professionals engaged. Professor Rain Ottis, Head of the Centre for Digital Forensics and Cyber Security, stresses the strength of this cooperation: “Cyber security requires a holistic approach that covers people, processes, as well as technology. To ignore even one of the three is inviting disaster. Therefore, we tackle the topic from the...
Sharing code between ASP.NET and ASP.NET Core
With the release of .NET 6 there are even more benefits to using ASP.NET Core. But migrating existing code to ASP.NET Core often sounds like a big investment. Today we’ll share how you can accelerate the migration to ASP.NET Core. There are minor changes you can make today that can make it easier to migrate to ASP.NET Core tomorrow. Before we begin let’s talk about a real scenario. Let’s talk about how to modify code in a 10-year-old application so that it can be shared with ASP.NET Core. In the next sections we’ll give samples that migrate the ShoppingCartController.cs from the MVC Music Store app that was used to demo ASP.NET MVC3. The first step to migrating this web app is to create a new ASP.NET Core Web App (Model-View-Controller) project. This template will add support for Controllers and map the default route for Controllers in the Program.cs file. Once we have the new project setup, we’ll remove the default HomeController and the view files for Home/Index and Home/Privacy so we can share content from the MVC3 Music Store web app without conflict. You can share Controllers The first thing you can share between the two projects is Controllers. Many teams want the new website to work the same as the current one. And when we say “the same” we mean “the same”. If you fix a bug in one project, then you need that same fix to show up in both sites. One of the easiest ways to assure this behavior is to share the same file in both projects. Luckily ASP.NET Core uses the new SDK style...
Confessions of a Web Developer XIX
It’s been a while since I’ve gotten a few things off of my chest and since I’m always full of peeves and annoyances I thought it was time to unleash: Due to the immensely negative response to any tweet about crypto from my blog account, I created a second account just for crypto musings. I’ll be honest — it hurt that I needed to do that. I’ve always felt readers and followers were on a journey with me but maybe the truth is that the majority of my value is quick tips and code to get people past a single problem. Last week I contributed to Uniswap, the well known decentralized exchange with billions of dollars in locked value and used by millions of DeFi investors each day. It was a small change but putting my footprint in as many places as possible is important to me. Good for the ego but also helps to make me feel valuable and energized. I couldn’t be prouder to be working the amazing team at MetaMask to build the secure future of Web3 and change the landscape of trading, voting, and money. The potential of blockchain, Web3, and the entrepreneurial spirit that comes with it makes me incredibly excited to wake up each day. It’s taken a while to admit to myself but Mozilla’s layoffs were mostly an effort to bin experienced, highly paid senior employees and replace then with younger, cheaper employees. Not bitter, just honest, and it’s a good reminder that your employer is not your friend, not matter how much they speak in terms of family. I grew up...
Using S3 with Laravel | Laravel News
AWS S3 provides a place for us to store files off of our servers. There are some big benefits to this: Using S3 now (even in single-server setups) can reduce headaches in the long run. Here’s what you should know! There’s two places to configure things for S3: If you check your config/filesystem.php file, you’ll see that s3 is an option already. It’s setup to use environment variables from your .env file! Unless you need to customize this, then you can likely leave it alone and just set values in the .env file: 1# Optionally Set the default filesystem driver to S3 4# Add items needed for S3-based filesystem to work 9AWS_USE_PATH_STYLE_ENDPOINT=false The config/filesystem.php file contains options like the following: 3 // ‘local’ and ‘public’ ommitted… 7 ‘key’ => env(‘AWS_ACCESS_KEY_ID’), 12 ‘endpoint’ => env(‘AWS_ENDPOINT’), 13 ‘use_path_style_endpoint’ => env(‘AWS_USE_PATH_STYLE_ENDPOINT’, false), There’s a few options there we didn’t use in the .env file. For example, the AWS_URL can be set, which is useful for using other file storage clouds that have an S3 compatible API such as CloudFlare’s R2 or Digital Ocean’s Spaces. AWS Configuration Within AWS, you need to do 2 things: Like anything in AWS, creating a bucket in S3 involves looking at a ton of configuration options and wondering if you need any of them. For most use cases, you don’t! Head to the S3 console, create a bucket name (it has to be globally unique, not just unique to your AWS account), choose the region you operate in, and leave all the defaults (including the ones that labeled “Block Public Access settings for this bucket”). Yes, some...The Future of Enterprise Mobile App Development
Enterprise mobile app is a sophisticated software system designed, deployed, and maintained to deal with routine business operations. The app is developed according to the company’s global strategy and makes certain app functions available on mobile devices to streamline business tasks and enterprise operations. Enterprise mobile app development focuses on developing apps for employees to address their immediate needs and streamline business processes. Thus, these apps serve their core purpose in making your company’s operations results-oriented and focused. The app performs several other crucial but mundane tasks, including tracking sales, invoicing, and inventory tracking. The future of enterprise mobile app development is bright. Today, enterprise mobile apps are experiencing an upsurge with the rapid adoption of mobile strategies by companies. Small, medium-sized, and large organizations alike are adopting high-end mobile strategies to optimize offline and online marketplaces. Organizations are also using mobile applications to manage their employees and routine operations remotely. Enterprise mobile app development has become an integral part of every business – from designing and deploying marketing campaigns to managing routine operations. Mobile apps are further leveraged to engage small communities in social platforms to create brand visibility and strengthen brand value. So, what indicators mark the future of enterprise mobile app development? Let’s dive right in. Transaction control and additional payment features Transaction control and additional payment features are especially valuable for retailers involved with e-commerce payment systems. Having an enterprise mobile app focused exclusively on money management can help you cut spending and improve your money management. The evolving role of enterprise mobile apps in routine money management tasks has made it a frontrunner...
Certificates Attained In Cyber Security Training | Loop PNG
The Australian High Commissioner, Jon Philp, presented the certificates Australian government being the enabling partner of the program. This course was made possible by an MOU between Australia-PNG Government partnerships, which was executed in 2018. Department of Information and Communication Technology Secretary, Steven Matainaho said under the MoU for Cyber Security signed by the two governments almost five years ago, further assistance was given by the Australian government to operationalize the National Cyber Security Shelter project. That project offered awareness and training primarily to IT Managers and IT officers within the Public Sector. “Quite a lot of recipients passed through but today was just a day to acknowledge those that actually completed the programme. The programme consist of Tier 1 & Tier 2 in Cyber Security. That is analyst training and basics of not only IT only, but Cyber Security Functions and its role within the IT space,” Mr Matainaho said. Key stakeholders involved in the Cyber Security include the Office of Security and Coordination Assessment under the Department of PM, with support from National ICT Authority as the regulator and of course the ICT Department. It was an event also to recognize the partnership between Australia and PNG. Australian High Commissioner, Jon Philp emphasized on the relevance and importance of cyber security in the country and the world. “It’s a really important partnership for us in cyber security. It’s important to remember why it’s important, not just in your careers and your jobs but the lives of our country and in fact the lives of millions of people.” Philp said. High Commissioner Philp emphasized the practicality of Cyber...7 R Packages You Should Be Using for Data Visualisation | Towards Data Science
The 7 R Packages You Should Be Using for Data Visualisation With example code and free datasets “It’s not what you do, it’s how you do it.” ― Cheri Huber, Suffering Is Optional: Three Keys to Freedom and Joy Having data but not knowing how to visualise it is what I call self-inflicted suffering. So, like Cheri said, there are 3 keys to freedom and joy — my take on it — Data + R + these 7 R packages. The Data The 7 (Nonfatal) R Packages Let’s start with the original library that makes R the best language for visualisation — ggplot2. I am making use of a dataset from Kaggle, which you can find here (Sustainable Development Solutions Network, 2019, License CC0: Public Domain). The data looks at the state of global happiness: Code An extension library to ggplot2 is called ggforce, which was developed by Thomas Pedersen. It has the added functionality of highlighting different groups and their specific features in your data, helping you to tell your story more effectively. You can see some ggforce examples here. 2. ColourPicker Don’t waste time googling the hex codes for the colours you want to use— Rather make use of ColourPicker! This is particularly useful if you are required to stick to a customized colour palette. See the demo below: Here is the code I used in the demo: If you would like to read more about creating custom palettes, see an article I wrote here. 3. Esquisse Have the data but not sure how to visualise it? Or, not sure how to write the code in R?...
