Finding Vulnerabilities in Open Source Projects
February 2 2022The Open Source Security Foundation announced $10 million in funding from a pool of tech and financial companies, including $5 million from Microsoft and Google, to find...
Read moreS3 Ep66: Cybercrime busts, wormable Windows, and the crisis of featuritis [Podcast + Transcript]
January 20 2022Latest epsiode - listen now!
Read moreWormable Windows HTTP hole – what you need to know
January 12 2022One bug in the January 2022 Patch Tuesday list is getting lots of attention: "HTTP Protocol Stack Remote Code Execution Vulnerability".
Read moreMicrosoft Patch Tuesday, December 2021 Edition
December 14 2021Microsoft, Adobe, and Google all issued security updates to their products today. The Microsoft patches include six previously disclosed security flaws, and one that that is already being actively...
Read moreIt was a zero-day bug until Patch Tuesday, now there's an anyone-can-use-it exploit. Don't be the one who hasn't patched.
Read moreIs Microsoft Stealing People’s Bookmarks?
November 17 2021I received email from two people who told me that Microsoft Edge enabled synching without warning or consent, which means that Microsoft sucked up all of their bookmarks. Of...
Read moreThe clock stopped long ago on Windows 7, except for those who paid for overtime. But there won't be any double overtime!
Read moreS3 Ep57: Europol v. Ransomware, Shrootless bug, and Linux browser flamewars [Podcast]
November 4 2021Latest episode - listen now!
Read moreS3 Ep57: Europol v. Ransomware, Shrootless bug, and Linux browser flamewars [Podcast]
November 4 2021Latest episode - listen now!
Read moreWe'd have called this bug "SHROOTMORE", but naming it wasn't our call.
Read more
Recent Comments