National Cyber Director Harry Coker Jr., speaks at CyberTalks in Washington, D.C., on Oct. 30, 2024. (Scoop News Group photo) | CyberScoop
Sen. Gary Peters, D-Mich., speaks during a Senate Homeland Security and Governmental Affairs Committee hearing on March 25, 2021 on Capitol Hill in Washington, D.C. (Photo by Astrid Riecken/Getty Images) | CyberScoop
A laptop user typing at their keyboard. (Getty Images) | CyberScoop
Read the full report here Read the fact sheet here Today, the Office of the National Cyber Director released a new Technical Report titled “Back to the Building Blocks: A Path Toward Secure and Measurable Software.” This report builds upon the President’s National Cybersecurity Strategy, addressing the technical community to tackle undiscovered vulnerabilities that malicious…| The White House
What if we could eliminate an entire class of vulnerabilities before they ever happened? Since 2004, the Microsoft Security Response Centre (MSRC) has triaged every reported Microsoft security vulnerability. From all that triage one astonishing fact sticks out: as Matt Miller discussed in his 2019 presentation at BlueHat IL, the majority of vulnerabilities fixed and with a CVE assigned are caused by developers inadvertently inserting memory corruption bugs into their C and C++ code.| msrc.microsoft.com