SEARCH
U.S. Cyber Command is Making Foreign Malware Tools Public
A group within the U.S. Cyber Command is now contributing malware samples to VirusTotal, part of a broader strategy to put pressure on foreign adversaries.
Google Expands Automated OSS-Fuzz Program
Google's OSS-Fuzz open source fuzzing project has identified more than 9,000 bugs in less than two years and is now expanding.
NIST Looking at AI to Calculate Bug Severity
IBM has been touting the potential of using Watson to help security analysts analyze large volumes of security data and make security decisions. The National Institutes of Standards and Technology may be considering using AI to help determine the severity of software vulnerabilities.
Apache Warns of Critical Flaw in Struts 2 Framework
There is a serious flaw in the file upload component in the Struts 2.3.x framework that can lead to remote code execution on vulnerable apps.
Crypto Implementation Flaws Found in Popular Solid-State Drives
Researchers at Radboud University have uncovered a number of serious weaknesses in self-encrypting solid-state drives.