Aggregator

Tells would-be affiliates they don't need to worry because cyberattacks don't violate a cease fire

An Iranian ransomware-as-a-service operation with ties to a government-backed cyber crew has reemerged after a nearly five-year hiatus, and is offering would-be cybercriminals cash to infect organizations in the US and Israel.…

One of the endless struggles in writing reusable API endpoints is creating useful schemas to describe them. Each new serialization format comes up with new ways to express your constraints, each with their own quirks and footguns and absolute trainwrecks.

Maarten has the "pleasure" of consuming an XML-based API, provided by a third party. It comes with an XML schema, for validation. Now, the XML Schema Language has a large number of validators built in. For example, if you want to restrict a field to being a date, you can mark it's type as xsd:date. This will enforce a YYYY-MM-DD format on the data.

If you want to ruin that validation, you can do what the vendor did:

<xsd:simpleType name="DatumType"> <xsd:annotation> <xsd:documentation>YYYY-MM-DD</xsd:documentation> </xsd:annotation> <xsd:restriction base="xsd:date"> <xsd:pattern value="(1|2)[0-9]{3}-(0|1)[0-9]-[0-3][0-9]" /> </xsd:restriction> </xsd:simpleType>

You can see the xsd:pattern element, which applies a regular expression to validation. And this regex will "validate" dates, excluding things which are definitely not dates, and allowing very valid dates, like February 31st, November 39th, and the 5th of Bureaucracy (the 18th month of the year), as 2025-02-31, 2025-11-39 and 2025-18-05 are all valid strings according to the regex.

Now, an astute reader will note that this is a xsd:restriction on a date; this means that it's applied in addition to ensuring the value is a valid date. So this idiocy is harmless. If you removed the xsd:pattern element, the behavior would remain unchanged.

That leads us to a series of possible conclusions: either they don't understand how XML schema restrictions work, or they don't understand how dates work. As to which one applies, well, I'd say 1/3 chance they don't understand XML, 1/3 chance they don't understand dates, and a 1/3 chance they don't understand both.

[Advertisement] Picking up NuGet is easy. Getting good at it takes time. Download our guide to learn the best practice of NuGet for the Enterprise.

Julian McMahon's family have broken their silence following the actor's shock death at age 56.

Widely considered to have been one of the most famous people in the world while she was alive, protecting Queen Elizabeth II was one of the most daunting security tasks of her reign.

Love at first sight is the stereotypical start to any romantic tale. However for the teenage Queen Elizabeth II and Prince Philip it certainly was the case.

Apple AirTags are a great way of ensuring you know where your luggage and keys are, as well as keeping safe as a solo traveller, or making sure your kids are safe. And they're on sale.

A new book has revealed precisely what President Donald Trump told former President Barack Obama during their spirited conversation at Jimmy Carter's funeral in January.

Hundreds of children are sitting on Junior Isa pots worth over £100,000, This Is Money can reveal.

Newcastle Building Society has opened a new super-branch in Newcastle city centre which spans over five floors and is more than 10,000 sqft.

The royal ladies are stepping firmly into one of 2025's most talked-about fashion trends right now.

At least 173 people remain missing five days after a '30-foot tsunami wall of water' wiped out cabins along the Guadalupe River and destroyed everything in its path.

She spent the next 28 hours trapped at an elevation of 13,600 feet with no access to her backpack, which contained all her food, water and clothing. But one decision undoubtedly saved her life.

The sighting comes less than two weeks after the Oscar-winner, 50, was branded a 'hypocrite' for attending Sanchez and billionaire Jeff Bezos' $50million Italian nuptials.

A big bet that RISC-V can make a dent in the AI market

GlobalFoundries has acquired chip design firm MIPS, creating a company that both designs and creates semiconductors.…

Could Erin Patterson's evil actions have been inspired by a classic British TV crime drama?

President Donald Trump said on Tuesday there would be no 'amnesty' for illegal immigrants working on farms and in the service industries.

The plans are in the early stages but the first details have been revealed

Chelmsford has launched its first-ever art sculpture trail, Buzz in the City, featuring giant bees.

Festival goers said organisation was “diabolical” and car park departure was “traumatic” at Chelmsford City Live on Friday.

A planning application for six new commercial units is under consideration in Braintree, near the junction of the A120 and B1256.