Challenges in Open Source Application Security – Shubhra Kar – ASW #163

Open Source is the new mainstream of software development. However not much attention is paid on security in the upstream

Read more

Deceptive Diffs From Subversive Submitters – ASW #148

We start with the article about “Researchers Secretly Tried To Add Vulnerabilities to Linux Kernel, Ended Up Getting Banned” and

Read more

BBPLR, API Security Trends, Memory Unsafety, & Patching 0-Days – ASW #139

Funding bounties or finding bugs, how should we invest? Talks from Enigma Conference on memory unsafety and 0-days. Coming trends

Read more

Atheris Python Fuzzer, Bronze Bit Attack, & FireEye Highlights – ASW #134

FireEye shares supply chain subterfuge, researchers show repeated mistakes in TCP/IP stacks, Google open sources Python fuzzing, Cisco and Microsoft

Read more