Archived Articles

Back to Vendor Listings

MIT Researchers Uncover Security Flaws in C and C++ Software

MIT researchers have produced a new paper that uncovers security flaws in C and C++ software, generated by compiler optimizations that discard ambiguous code or code, which produce undefined behavior. Some of that code includes security-relevant checks and the paper includes examples of null pointer checks and pointer overflow checks that the GCC compiler optimizes away, leaving…

Wormiversary!

November 2, 2013 is the 25th anniversary of the Morris Worm. In the intervening years, we have not solved the problems of buffer overflows, reusable single-factor credentials, peer-to-peer trust or password reuse. What then have we learned from this incident? 1. Access to some files should be restricted. No more world-readable password files. Shadow files in…

Two Secure Email Systems Shut Down in the Wake of Snowden Affair Announce Formation of Dark Mail Alliance

Two secure email services, Lavabit and Silent Circle, on Wednesday announced the formation of the Dark Mail Alliance. The announcement at the Inbox Love email conference in Mountain View, California, follows the shuttering of the services in August. At that time Lavabit founder Ladar Levison said he was forced to close after pressure was exerted to hand over…

FirstNet Board Chooses Virginia for HQ, Boulder for Technical Center

Speaking at the Michigan Cybersecurity Summit on October 25, Thomas MacLellan, Director, Homeland Security and Public Safety Division, National Governors Association (NGA) Center for Best Practices, called FirstNet  the “largest network deployment in US history.” FirstNet was established by The Middle Class Tax Relief and Job Creation Act of 2012 as the First Responder Network…