Virtual Conference Inspires Female Computer Science Students

If women are underrepresented in computer science (and they are, by a large margin), you wouldn’t know it from sitting in on the Grace Hopper Celebration. Each fall, for the last 20 years, tens of thousands of women have converged for a long weekend of collaboration, networking, mentoring and commemoration of their contributions to the tech world.

COVID-19 pushed this fall’s convention into a virtual format, but it didn’t prevent the University of Denver’s Ritchie School of Engineering and Computer Science from sending 26 students (plus seven faculty and one staff member) for free. A private donor and funds from the school’s diversity, equity and inclusion budget covered the costs.

In interviews via email and Zoom, the DU Newsroom asked Anndi Russell, a graduate student in the data science program; Izzy Johnson, an undergraduate pursuing a BS in computer science; and Scott Leutenegger, a computer science professor and the Ritchie School’s director of inclusive excellence, about their experience

What’s it like for each of you as a woman in computer science?

Anndi Russell: My program is more equal in terms of women and men than is true in the larger computing world. But before this, I worked in education for a few years — which is a very female-heavy industry typically — so I know switching into computer science and the tech world is going to be a little different. I’m grateful for having a lot of female classmates right now and people I’ve connected with. We support each other.

Izzy Johnson: As an undergrad, I think I was surprised by how many women were in my classes, but it’s definitely still weighted the other way. At DU specifically, I’ve really enjoyed how many female professors I’ve had. I’ve had some really influential female professors in the Ritchie School.

Scott,

East Side Culture Crawl announces live and virtual programming

The 24th annual Eastside Culture Crawl has announced that it is expanding its reach this year with virtual and appointment-based studio tours and livestream demos.

 

“Each year, we welcome visitors to explore the richness and vitality of the Eastside Arts District,” says artistic and executive director Esther Rausenberg in a press release. “And while artists have faced unprecedented hardships this year, our mandate for the 24th annual Crawl remains the same—to celebrate the extraordinary talents of our visual artists and inspire a creative connection between artists and the greater community.

 

That connection for the Crawl–which takes place November 12-15 and 19-22–will be made through enhanced, interactive virtual programming, via the use of a new digital appointment scheduler for controlled, in-person engagement at open studios. A virtual preview week, November 2 to 9, will feature a curated selection of artist workshops, demonstrations, and talks, as well as the seventh annual Moving Art exhibition. 

 

“The strength and resilience, the fortitude and passion arts patrons have come to expect each year from the Culture Crawl will be on full display,” adds Rausenberg. “It promises to be an inspiring, uplifting and unifying experience.”

 

Crawl goers are invited to supplement their Eastside Culture Crawl experience through a number of feature presentations and exhibitions, including:
 
TAKE FLIGHT VIRTUAL BENEFIT
October 14–November 7, 2020
The Crawl’s fourth annual benefit and festival launch, this year’s virtual event features a silent auction, event-tote auction, and the return of the popular Art Roulette.

MOVING ART
November 2, 2020 at 7 pm (online premiere)
The Culture Crawl’s seventh annual film and video exhibition is titled “Connection in the year of our disconnect.” This showing of evocative contemporary films features 11 artists who have dug deep within their own creative reserves to embrace our multiplicity of experiences.

 

TALKING ART
November 3–5, 2020

Domo Experts From Citrus Ad and DHL to Present at the Forrester Data Strategy & Insights Virtual Trade Show

Data and Technology Leaders will Share How They Are Leveraging Data and Domo to Solve Today’s Complex Business Challenges

Domo (Nasdaq: DOMO), provider of the Domo Business Cloud, today announced that two customers – Citrus Ad and DHL – will be hosting separate sessions at the Forrester Data Strategy & Insights Virtual Trade Show to share how they are leveraging data and Domo to solve today’s complex business challenges. The event is being held from October 13 – 15 and Domo is a premium sponsor.

“Domo empowers organizations of all sizes to unlock the value of their business data. Join our customer sessions led by data and technology leaders at Citrus Ad and DHL, as they share how Domo has empowered them to help their organizations be more agile, and create a data-driven culture through well-governed, self-service BI and analytics,” said John Mellor, chief strategy officer, Domo.

Details on the Domo customer-led sessions include:

Date/Time: Wednesday, October 14 @ 11:25am ET
Session Title: Building a Data Driven Culture to Help Power Retail Media Insights
Speaker: Adam Skinner, CTO, Citrus Ad

Date/Time: Thursday, October 15 @ 11:55am ET
Session Title: How DHL leverages data as a value differentiator
Speakers: Jasmine Miller, Data Engineer, DHL
Carlos Palacios, Sr. Manager, Data Operations and Pricing, DHL

Additionally, meet virtually with Domo experts during the Data & Insights Trade Show in the Interactive Marketplace. For more information on Domo’s presence at the Forrester Data Strategy & Insights Virtual Trade Show, visit here.

To learn more about how Domo has helped democratize data for over 1,800 industry leading, innovative and disruptive organizations, visit Domo’s customer page.

About Domo

Domo is the Business Cloud, empowering organizations of all sizes with BI leverage at cloud scale, in record time. With Domo, BI-critical processes that took weeks, months or

Half of all virtual appliances have outdated software and serious vulnerabilities

Virtual appliances are a popular way for software vendors to distribute their products to enterprise customers as they contain all the necessary pre-configured software stacks their applications need to function and can be deployed in public clouds or private data centers with ease. Unfortunately, enterprises are at risk of deploying images that are vulnerable out-of-the-box according to a new study. It found that many vendors, including well-established ones, do a poor job of patching flaws and updating the software components in their virtual appliances.

Few virtual appliances get good security grades  

Orca Security, a cloud security company, scanned more than 2,200 virtual appliance images from 540 vendors that were being distributed through the public marketplaces of common cloud platforms including VMware, Amazon Web Services (AWS), Microsoft Azure and Google Cloud Platform. The appliances were both commercial and free-to-use, contained both proprietary software and open-source, and were supplied by both security and non-security vendors.

The company created a scoring system from 0 to 100 that took into account whether the appliances were running supported or no longer supported operating system versions, contained one or more of 17 high-profile and high-risk vulnerabilities such as Heartbleed, EternalBlue and DirtyCOW, contained one or more other vulnerabilities rated above CVSS 9 (critical), or had one or more vulnerabilities rated between CVSS 7 and 9.

A grading system from A+ (exemplary) to F (failed) was also used. A virtual appliance would automatically fail the test if it had an unsupported operating system, contained four of the 16 high-profile vulnerabilities, had 20 or more flaws with CVSS 9 and higher, had 100 or more flaws with CVSS 7 to 9, or had more than 400 unique vulnerabilities. Fifteen percent of the tested appliances received an F and the lowest recorded score was 6 out of 100. Another

Orca Security Research Reveals How Software Industry Unwittingly Distributes Virtual Appliances with Known Vulnerabilities

NEWS HIGHLIGHTS

Software vendors are often distributing their wares on virtual appliances with exploitable and fixable vulnerabilities, and running on outdated or unsupported operating systems:

  • The Orca Security research study found 401,571 total vulnerabilities in scanning 2,218 virtual appliance images from 540 software vendors.

  • The research has started to move the cloud security industry to a safer future. Since alerting vendors of these risks, 287 products have been updated and 53 removed from distribution, leading to 36,938 discovered vulnerabilities being addressed.

  • For example, Dell EMC issued a critical security advisory; Cisco published fixes to 15 found security risks; and IBM, Symantec, Kaspersky Labs, Oracle, Splunk, ZOHO and Cloudflare all removed outdated or vulnerable virtual appliances.

The “Orca Security 2020 State of Virtual Appliance Security” report found that as evolution to the cloud is accelerated by digital transformation across industries, keeping virtual appliances patched and secured has fallen behind. The report illuminated major gaps in virtual appliance security, finding many are being distributed with known, exploitable and fixable vulnerabilities and on outdated or unsupported operating systems.

To help move the cloud security industry towards a safer future and reduce risks for customers, Orca Security analyzed 2,218 virtual appliance images from 540 software vendors for known vulnerabilities and other risks to provide an objective assessment score and ranking.

Virtual appliances are an inexpensive and relatively easy way for software vendors to distribute their wares for customers to deploy in public and private cloud environments.

“Customers assume virtual appliances are free from security risks, but we found a troubling combination of rampant vulnerabilities and unmaintained operating systems,” said Avi Shua, Orca Security CEO and co-founder. “The Orca Security 2020 State of Virtual Appliance Security Report shows how organizations must be vigilant to test and close any vulnerability gaps, and that the software industry