Security news that informs and inspires

Archive

6 results for tag Software Security:

Decipher Podcast: David Brumley

David Brumley of Carnegie Mellon University and ForAllSecure joins Dennis Fisher to talk about securing the software supply chain.

Podcast, Software Security

Older Bugs in Software Add to Security Debt

In the rush to fix newer vulnerabilities, the older ones are left unaddressed. The resulting security debt increases the organization's risk of a breach, Veracode warned.

Application Security, Appdev, Appsec, Software Security, Software Development

Being on the Latest Windows Version Can Thwart Zero Days

Zero day vulnerabilities exploited in the wild is never good news, but if the user's machine is running the latest version of the operating system, the chances are good that the attack won't be successful against that machine, according to a Microsoft security engineer.

Microsoft, Vulnerability, Windows, Software Security

GitHub Brings Automated Fixes With Dependabot

GitHub rolled out several new features designed to help developers write secure code at its recent GitHub Satellite conference last week in Berlin.

Software Security, Appsec, Microsoft

Open Source Software Needs Funding, Not Bug Bounty Programs

Bug bounty programs fill a need, but the European Union's offer to pay bug bounties for vulnerabilities in open source forgets one thing: projects don't need more flaws. Open source projects need people to fix the flaws.

Software Security, Open Source, Bug Bounty