A security researcher has published a zero-day flaw in a commonly-used virtual machine management system without notifying the vendor, justifying it with a scathing critique of the infosecurity industry.
Tag Archives: full disclosure
Microsoft swings punch at Google – accuses Project Zero of a “Gotcha!”
Two days! Two measly days! Google is back in the firing line, this time directly from Microsoft, over its “Project Zero” full-disclosure process…
SSCC 180 – Surely zero-days come from cybercrooks, not from Silicon Valley? [PODCAST]
Enjoy the first 2015 episode of our popular weekly security podcast. In this episode: zero-day politics, leaky security features, Bitcoin news, and a shout out to our New Year #sophospuzzle winners!
Zero-day in Windows 8.1 disclosed by Google
A new zero day vulnerability has been disclosed in Microsoft Windows 8.1. Who is behind releasing the attack code behind this flaw? Google. 
SSCC 168 – Amaze your friends by ruining all their USB drives! [PODCAST]
Here’s the latest Chet Chat security podcast for your listening pleasure. Sophos experts Chester Wisniewski and Paul Ducklin take apart the latest computer security stories to turn them into news you can use.
SSCC 159 – What can we learn from the “honeybot”? [PODCAST]
For your listening pleasure! Here’s this week’s episode of the Sophos Security Chet Chat podcast…