Dark Reading

Can a Programming Language Reduce Vulnerabilities?

When Microsoft wanted to rewrite a security-critical network processing agent to eliminate memory-safety vulnerabilities causing recurring headaches for the Microsoft Security Response Center (MSRC), ...

39C3: Multiple vulnerabilities in GnuPG and other cryptographic tools

Security researchers have found various security-relevant errors in GnuPG and similar programs. Many of the vulnerabilities ...
Washington Technology

Security agencies release Top 25 programming errors

A coalition of government, academic and private-sector security organizations today released an updated version of their Top 25 list of programming errors considered to be responsible for the majority ...
Network World

Security Experts ID Top 25 Programming Errors

A group of security experts and luminaries have created a list of the 25 most significant programming errors that can lead to serious software vulnerabilities. Top 25 software screw-ups Through an ...
Dark Reading

25 Most Dangerous Programming Errors Exposed

Experts from more than 30 U.S. and international cybersecurity organizations plan to disclose the 25 most dangerous programming errors on Monday, at a media event in Washington, D.C. The CWE/SANS Top ...
InfoWorld

Data breaches exploit configuration errors, not software vulnerabilities

Verizon study didn't detect a single data breach in 2009 that exploited a patchable vulnerability, which calls patching practices into question Hackers appear to be increasingly counting on ...
Infosecurity-magazine.com

How Useful Is MITRE's '25 Most Dangerous Software Errors' List?

In late 2019, the US industry non-profit MITRE Corporation updated what has become possibly the most famous software security issue ranking in computing, the Common Weakness Enumeration (CWE) Top 25 ...