Challenges in Open Source Application Security – Shubhra Kar – ASW #163

Open Source is the new mainstream of software development. However not much attention is paid on security in the upstream

Read more

Deceptive Diffs From Subversive Submitters – ASW #148

We start with the article about “Researchers Secretly Tried To Add Vulnerabilities to Linux Kernel, Ended Up Getting Banned” and

Read more

BBPLR, API Security Trends, Memory Unsafety, & Patching 0-Days – ASW #139

Funding bounties or finding bugs, how should we invest? Talks from Enigma Conference on memory unsafety and 0-days. Coming trends

Read more

Atheris Python Fuzzer, Bronze Bit Attack, & FireEye Highlights – ASW #134

FireEye shares supply chain subterfuge, researchers show repeated mistakes in TCP/IP stacks, Google open sources Python fuzzing, Cisco and Microsoft

Read more

Kubernetes Security in an Ever Changing Ecosystem

As the cloud has conquered the world, along with the adoption of Kubernetes and other cloud-native technologies. This trend is

Read more