Tags vulnerability disclosure

The Pentagon may require vendors certify their software is free of known flaws. Experts are split.

by Suzanne Smalley

The debate is over whether the provision is unrealistic or if it's a game changing move to cut down on software vulnerabilities.

CISA advisory panel wants agency to act on election disinformation, multifactor authentication

by Tim Starks

CISA's director has 90 days to respond to the suggestions.

Project Zero researchers see promising trends in vulnerability fixes

by AJ Vicens

Data from the Google-based team seems to reflect an industry getting faster at fixing bugs and deploying patches.

DHS establishes its own bug bounty program, offering outsiders $500 to $5K for discovering flaws

by Tim Starks

DHS follows in the footsteps of bug bounty initiatives for federal agencies that began in 2016.

CISA tells agencies to fix hundreds of software flaws, prep for future vulnerabilities

by Tim Starks

CISA wants agencies to tackle nearly 300 flaws in all, ranging from within two weeks to six months.

BlackBerry's popular operating system for medical devices affected by critical vulnerabilities, drawing fed warnings

by Sean Lyngaas

The disclosure expands the number of devices that could be at risk due to the "BadAlloc" flaw.

TwitterFacebookLinkedInRedditGmail