8 months on, US says Log4Shell will be around for “a decade or longer”
When it comes to cybersecurity, ask not what everyone else can do for you… Continue reading 8 months on, US says Log4Shell will be around for “a decade or longer”
Category Archives: Security.txt
Does Your Organization Have a Security.txt File?
It happens all the time: Organizations get hacked because there isn’t an obvious way for security researchers to let them know about security vulnerabilities or data leaks. Or maybe it isn’t entirely clear who should get the report when remote access to an organization’s internal network is being sold in the cybercrime underground.
In a bid to minimize these scenarios, a growing number of major companies are adopting “Security.txt,” a proposed new Internet standard that helps organizations describe their vulnerability disclosure practices and preferences. Continue reading Does Your Organization Have a Security.txt File?
S3 Ep50: Two 0-days plus another 0-day plus a fast food bug [Podcast]
Bugs! So many bugs! Latest episode – listen now… Continue reading S3 Ep50: Two 0-days plus another 0-day plus a fast food bug [Podcast]
Serious Security: How to make sure you don’t miss bug reports!
Hey, let’s create a text file that lists our security contacts! We’ll call it… security DOT txt. Continue reading Serious Security: How to make sure you don’t miss bug reports!
News in brief: Linux advice for Equifax; fired over phish; Security.txt standard proposed
Your daily round-up of some of the other stories in the news Continue reading News in brief: Linux advice for Equifax; fired over phish; Security.txt standard proposed