miniblog.

← Back to all posts

Mar 18, 2016 at 09:21

It's becoming sufficiently difficult to get a CVE ID assigned that security researchers are discussing alternatives:

CVE woes lead some to seek alternatives

A recent discussion of problems with the Common Vulnerabilities and Exposures (CVE) system for [...]

May 22, 2022 at 04:06

Shopify is funding PL researchers to look at Ruby!

Shopify Invests in Research for Ruby at Scale - Shopify

Shopify is investing on Ruby on Rails at scale by funding high-profile academics to focus their work towards Ruby and the needs of the Ruby community.

Mar 6, 2019 at 20:39

A new speculative execution vulnerability in CPUs: https://www.theregister.co.uk/2019/03/05/spoiler_intel_processor_flaw/ Attacks only get sophisticated over time, and this is a great example of other researchers finding similar issues. This vulnerability is independent of Spectre.

Jan 17, 2019 at 19:53

Building a bug bounty system that attracts talented researchers, how much they earn, and how many bugs they find:

On Bounties and Boffins

Trying to make a living as a programmer participating in bug bounties is the same as convincing yourself that you’re good enough at Texas Hold ‘Em to quit your job. There’s data to back this up in Fixing a Hole: The Labor Market for Bugs, a chapter in New Solutions for Cybersecurity, by Ryan Ellis, […]

Years

All posts7,577 202650 2025120 2024144 2023245 2022384 2021345 2020378 2019736 2018657 2017885 2016922 2015650 20141,323 2013470 2012137 201159 201063 20099

RSS Feed About Random

Related Posts