Get to know the BSIMM — a crowd-sourced guidebook for your journey to better software securityIf you want to build better, more secure software, and you should, BSIMM is the report you should read and the club you should join.Jan 14Jan 14
Cybersecurity experts join the 2025 guessing gameA range of cybersecurity experts weigh in on what is the best and worst we can expect in the coming year.Jan 7Jan 7
Published inNerd For TechControl systems exposure puts critical infrastructure at riskIndustrial control systems run most of the nation’s critical infrastructure. Too many of them are vulnerable to hackers.Dec 16, 2024Dec 16, 2024
Published inNerd For TechBoth good and bad guys showing that LLMs aren’t ready for prime timeLarge language models—the brains behind artificial intelligence—keep getting better, but still need lots of improvement,Dec 9, 2024Dec 9, 2024
Published inNerd For TechThese software packages contain “presents” you don’t want to openMalicious hackers, instead of waiting for software developers to make mistakes, are trying to trick them into downloading mistakes.Dec 2, 2024Dec 2, 2024
Published inNerd For TechAre there too many “top software vulnerabilities” lists? Or are they the wrong lists?Are there too many lists of top software vulnerabilities? Maybe. Or maybe the lists should be about how to build more secure code.Nov 25, 2024Nov 25, 2024
Report: Building trust into software takes a team of testsA new report documents the benefits of multiple software security testing toolsNov 12, 2024Nov 12, 2024
Will AI be good for democracy? That depends on the humans in chargeArtificial intelligence is invading every element of our lives, including our system of government. That will likely be both good and bad.Nov 4, 2024Nov 4, 2024
Published inNerd For TechZero-day software defects are leading to many very bad daysZero-day software vulnerabilities are among the most dangerous, because there is no patch for them. And they are increasing.Oct 28, 2024Oct 28, 2024
Published inNerd For TechResearcher finds government cybersecurity is still porousDespite catastrophic breaches of government, cybersecurity hasn’t improved as much as it could, or shouldOct 21, 2024Oct 21, 2024