techlist.io
KR EN

asset-management

2 posts

discord

Discord Update: November 6, 2025 Changelog (opens in new tab)

The November 2025 Discord update focuses on streamlining content creation and enhancing the user interface across both desktop and mobile platforms. By removing technical barriers for emoji management and reorganizing core navigation, the platform aims to create a more intuitive experience for community interaction and personal expression. These changes signify a push toward visual consistency and greater flexibility in how users present themselves across different server environments. ### Streamlined Emoji Creation * A new integrated editing screen allows users to crop and resize large images directly during the upload process, eliminating the need for third-party photo editors. * The Emoji Picker now includes an "Add Emoji" shortcut for users with server permissions, allowing them to upload and assign icons to specific servers without leaving the chat interface. * Discord has automated the technical requirements for emoji uploads, removing the need for users to manually adjust files to specific resolutions (128x128), file types (PNG), or size limits before importing. ### Desktop Navigation and Utility * The desktop Settings menu is undergoing a visual refresh and reorganization to improve discoverability and match the platform's modern design language. * Voice channels on desktop now feature an active timer, providing a visible indicator of how long a specific call has been in progress. * The "More" section at the bottom of the Settings list serves as the new hub for accessing the Changelog and other platform documentation. ### Personalization and Mobile Features * Users can now set Nameplates on a per-server basis, allowing for professional appearances in some communities while maintaining more casual aesthetics in others. * The Discord Shop is now fully functional on mobile devices, enabling users to purchase and send gifts, Avatar Decorations, and bundles directly from tablets or phones. * Enhanced tools within the Family Center provide parents and guardians with updated oversight features to better monitor and engage with their teens' digital experiences. Server administrators and active users should take advantage of the new emoji upload tools to refresh their custom icons with less effort, while multi-community users can leverage the per-server Nameplates to better tailor their digital identity to different social contexts.

asset-managementmobile-developmentreal-time-communicationimage-processing+3
kakao

YEYE is Watching – (opens in new tab)

Kakao developed YEYE, a dedicated Attack Surface Management (ASM) system, to proactively identify and manage the organization's vast digital footprint, including IPs, domains, and open ports. By integrating automated scanning with a human-led Daily Security Review (DSR) process, the platform transforms raw asset data into actionable security intelligence. This holistic approach ensures that potential entry points are identified and secured before they can be exploited by external threats. ## The YEYE Asset Management Framework * Defines attack surfaces broadly to include every external-facing digital asset, such as subdomains, API endpoints, and mobile APKs. * Categorizes assets using a standardized taxonomy based on scope (In/Out/Undefined), type (Domain/IP/Service), and identification status (Known/Unknown/3rd Party). * Implements a labeling system that converts diverse data formats from multiple sources into a simplified, unified structure for better visibility. * Establishes multi-dimensional relationships between assets, CVEs, certificates, and departments, allowing teams to instantly identify which business unit is responsible for a newly discovered vulnerability. ## Daily Security Review (DSR) * Operates on the principle that "security is a process, not a product," bridging the gap between automated detection and manual remediation. * Utilizes a rotating group system where security engineers review external feeds, public vulnerability news, and YEYE alerts every morning. * Focuses on detecting "shadow IT" or assets deployed without formal security reviews to ensure all external touchpoints are accounted for. ## Scalable and Efficient Scanning Architecture * Resolved internal network bandwidth bottlenecks by adopting a hybrid infrastructure that leverages public cloud resources for high-concurrency scanning tasks. * Developed a custom distributed scanning structure using schedulers and queues to manage multiple independent workers, overcoming the limitations of single-process open-source scanners. * Optimized infrastructure costs by identifying the "sweet spot" in server specifications, favoring the horizontal expansion of medium-spec servers over expensive, high-performance hardware. * Mitigates service impact and false alarms by using fixed IPs and custom User-Agent (UA) strings, allowing service owners to distinguish YEYE’s security probes from actual malicious traffic. To effectively manage a growing attack surface, organizations should combine automated asset discovery with a structured manual review process. Prioritizing data standardization and relationship mapping between assets and vulnerabilities is essential for rapid incident response and long-term infrastructure hardening.

asset-managementnetwork-securitycloud-securityattack-surface-management+3