Software Integrity

Archive for the 'Ethical Hacking' Category


Hackers target cryptocurrency exchange, new Spectre vulnerabilities, and healthier healthcare

Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup. Watch the episode below:   What’s in this week’s Security Mashup, you ask? Cryptocurrency exchange Bancor gets targeted by hackers and loses $23.5 million, two new subvariants of Spectre vulnerabilities have been discovered, […]

Continue Reading...

Posted in Blockchain Security, Ethical Hacking, Medical Device Security, Security Standards and Compliance, Weekly Security Mashup


Lifeforms descend on Leipzig for #34C3 – Chaos Communication Congress

It was the night before the 34th Chaos Communication Congress (CCC, #34c3 or Congress), and we had already been travelling for most of the day. A bus from Belfast to Dublin, a flight from Dublin to Berlin, and finally a train from Berlin to Leipzig. We were exhausted. But there are such things as rituals […]

Continue Reading...

Posted in Ethical Hacking, Security Conference or Event


Synopsys launches the Fault Injection Podcast

Fault Injection is a podcast from Synopsys that digs into software quality and security issues. Hosts Chris Clark, Principal Security Engineer at Synopsys, and Robert Vamosi, CISSP and Security Strategist at Synopsys, provide a forum for industry experts to talk about software security topics and their intersection with specific verticals such as medical, automotive, and […]

Continue Reading...

Posted in Application Security, Ethical Hacking, Network Security, Software Security Testing, Web Application Security


Responsible disclosure on a timetable

In response to its haphazard patch release cycle in the late 1990s, Microsoft launched an every second-Tuesday-of-the-month “Patch Tuesday” program in 2004. Last week, on February 14 to be exact, Microsoft abruptly canceled its current monthly set of patches and said that its slate of new patches would return on March 14. The problem is […]

Continue Reading...

Posted in Ethical Hacking, Healthcare Security, Vulnerability Assessment


5 security industry buzzwords we love to hate

Computing security is an interesting space. One of the main aspects that makes it interesting is that there are many security terms that are ambiguous. With some words, we have no idea why we’ve come to use them! While these buzzwords aren’t going away any time soon, here is a list of buzzwords that most of the […]

Continue Reading...

Posted in Cloud Security, Ethical Hacking, Software Security Testing


How to respond to application security incidents

Application security incidents cause serious disruption and scrutiny for any company. Fingers will be pointed, blame will be cast, and heads will roll. But right now all that matters is how you respond. Security incidents are also far more common than you think. To illustrate this point, set up a baseline CentOS VM and give […]

Continue Reading...

Posted in Application Security, Ethical Hacking, Static Analysis (SAST)


The 2016 Pwnie Award nominees announced

On Monday the Tenth Annual The Pwnie Awards nominations were announced in 16 categories. The awards, literally a spray-painted My Little Pony, are given out each year at the Black Hat USA conference will take place on Aug 3rd, 2016 in Las Vegas. The awards are “judged by a panel of respected security researchers – […]

Continue Reading...

Posted in Ethical Hacking, Security Conference or Event


Russian bug bounty program to target government software

In a bid to harden government software in Russia, the government is discussing a possible bug bounty program. Deputy Communications Minister Aleksei Sokolov said the Russian government is considering what would be one of the first government-run bug bounties. The program would first apply to government-approved software and might expand beyond that. The Russian news […]

Continue Reading...

Posted in Ethical Hacking, Government Security, Vulnerability Assessment