Some big names in software have been offering bounties to researchers who find security vulnerabilities in their programs, while other big software makers forego the tactic. Mozilla, PayPal and Google have shelled out a lot of cash for bugs, while Microsoft, Apple and Adobe prefer not to pay for such discoveries. Do the bug bounty programs make the Internet any more secure, asks Kim Zetter at Wired.
Manufacturing plants and critical infrastructure facilities may have received a rude awakening last week when researchers released exploit modules after finding major security flaws in industrial
There is a widening gap between the quality standards that businesses apply to the software they develop in-house and the software they get from other providers. Seventy percent of companies conduct