Charlie Miller on Mac OS X, Pwn2Own and Writing Exploits
The following is the full transcript of a live Threatpost chat with Charlie Miller, a vulnerability researcher at Independent Security Evaluators. During this session, Miller discussed his approach...
View ArticleGoogle Researcher Says Adobe Downplays Security Holes
Adobe released its August software patches on Tuesday and immediately found itself in hot water with Google researcher Tavis Ormandy, who claims the firm is downplaying the extent of security flaws in...
View ArticleAdobe Says ‘We Didn’t Hide Vulnerabilities’ In Latest Patch
Adobe took pains to defuse a dispute between the company and famed Google security researcher Tavis Ormandy, posting more information about the holes fixed with a patch for its Flash Player software....
View ArticlePodcast: Culture of Lax Security Prevails Among Medical Device Makers
Podcast and Downloads kevin_fu_-_med_devices.mp3 You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly. The news...
View ArticleTop Web Browsers Vulnerable To Rogue Download Vulnerability
Security researcher and Google employee Michal Zalewski is warning of a potentially serious security hole that affects the three major Web browsers, Internet Explorer, Firefox and Google's Chrome...
View ArticleMozilla, Blackberry Join Forces To Advance Peach Fuzzer
Mozilla and Blackberry have announced a new collaboration project; the two companies will begin working in tandem to more fully flesh out Peach – a free software fuzzing application first developed...
View ArticleICU Project Overflow Vulnerabilities Patched
Buffer and integer overflow vulnerabilities have been patched in the ICU Project ICU4C library, used in hundreds of open source and enterprise software packages.
View ArticleMicrosoft Unveils Cloud-Based Fuzz-Testing Service
Microsoft announced a cloud-based fuzz testing service called Project Springfield that identifies software bugs in applications that could turn into vulnerabilities.
View ArticleGoogle Debuts Continuous Fuzzer for Open Source Software
A new Google program OSS-Fuzz is aimed at continuously fuzzing open source software and has already detected over 150 bugs.
View ArticleThreatpost News Wrap, December 8, 2016
Mike Mimoso and Chris Brook discuss the news of the week, including the latest Linux bug, Sony closing backdoors in cameras, and Google's new open source fuzzer.
View Article
More Pages to Explore .....