Security Alerts & News
by Tymoteusz A. Góral

#1103 Researchers add software bugs to reduce the number of… software bugs
Researchers are adding bugs to experimental software code in order to ultimately wind up with programs that have fewer vulnerabilities.

The idea is to insert a known quantity of vulnerabilities into code, then see how many of them are discovered by bug-finding tools.

By analyzing the reasons bugs escape detection, developers can create more effective bug-finders, according to researchers at New York University in collaboration with others from MIT’s Lincoln Laboratory and Northeastern University.

They created large-scale automated vulnerability addition (LAVA), which is a low-cost technique that adds the vulnerabilities. “The only way to evaluate a bug finder is to control the number of bugs in a program, which is exactly what we do with LAVA,” says Brendan Dolan-Gavitt, a computer science and engineering professor at NYU’s Tandon School of Engineering.
Read more
#1104 Facebook Messenger end-to-end encryption not on by default
#1103 Researchers add software bugs to reduce the number of… software bugs
#1102 Stress-reducing MDM tips for businesses managing Apple devices
#1101 Antivirus software is 'increasingly useless' and may make your computer less safe
#1100 Cyber spies are still using these old Windows flaws to target their victims
#1099 Privacy Shield data pact gets European approval
#1098 Putin is literally breaking the internet
#1097 Best practices for managing the security of BYOD smartphones and tablets
#1096 CryptXXX, Cryptobit ransomware spreading through campaign
#1095 Google is experimenting with post-quantum cryptography
#1094 Google fixes high-risk Android vulnerabilities in July update
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12