Some big names in software have been offering bounties to researchers who find security vulnerabilities in their programs, while other big software makers forego the tactic. Mozilla, PayPal and Google have shelled out a lot of cash for bugs, while Microsoft, Apple and Adobe prefer not to pay for such discoveries. Do the bug bounty programs make the Internet any more secure, asks Kim Zetter at Wired.
Theo de Raadt, the founder and leader of the OpenBSD project personally believes that the now-defunct Network Security Technology (NetSec) company did attempt to write backdoors in the BSD code base.
Continuous testing during a project's development is the most important indicator of whether you will deliver a relatively bug-free, quality product. Even post-deployment, periodic testing is
When it comes to dealing with software, sometimes breaking the rules makes sense. For example, forget the idea that software must always be financed from the capital expenditures budget rather
Although most companies still rely on vendor-created software to develop key internal systems, a growing number of organizations are branching out into the world of open-source, where the
Citing compatibility and security concerns, some IT professionals plan to delay upgrading their users to Microsoft Vista. The results, detailed in a survey by Zoomerang for security vendor Bit9,
If you've discovered code that creates a security vulnerability in Microsoft's newest operating system Vista, you could be rewarded with some big bucks. VeriSign iDefense Labs is launching another
Oracle is taking a page from the book of Microsoft, issuing its first-ever "Critical Patch Update Pre-Release Announcement." The alert maps out what the vendor is doing in terms of fixes which are
Symantec is still spending some time looking at the upcoming Vista system, identifying some bugs and security issues. This week it's focused on relating how the Microsoft OS has some security