In 2011, Marc Andreessen wrote an article in the Wall Street Journal that included the now-famous phrase “software is eating the world.” Eight years on, that statement rings truer than ever. It’s not a stretch to say that software is eating the cybersecurity world as well. The fallout from not integrating security early in the … continue reading
Static code analysis is usually thought of in terms of preventing vulnerabilities from existing in code. And, it’s thought of in terms of things like memory leaks and tainted data. But as businesses become more reliant than ever on software to drive their revenues, it is important to think about the damage these vulnerabilities can … continue reading
Rogue Wave wants to make it even easier to find vulnerabilities on the fly with the release of Klocwork 2017. Klockwork is the company’s static code-analysis tool. The latest release introduces SmartRank, a defect-recommendation engine. “We knew our users were struggling with too many issues and no way to prioritize them,” said Walter Capitani, Klocwork … continue reading
ZeroStack announced its road map and the first suite of AI capabilities today as part of its efforts to disrupt the economics of the cloud. ZeroStack, a self-driving private cloud company, has a cloud platform that leverages self-healing software and algorithms developed from millions of datagrams, according to a company announcement. This “disruption” means businesses … continue reading
A newly launched company, Bugsee, wants to help developers build and maintain bug-free apps. As part of its launch, it announced a bug reporting and crash analytics tool for mobile app developers that captures video of user interactions so developers can see what leads to bugs or crashes. “We think of Bugsee as the flight … continue reading
Google made headlines last year, and not always for good reasons. In addition to the company’s updates to the Android operating system, it also faced articles detailing the many vulnerabilities plaguing the OS. As a result, one report has found Android to be the most vulnerable product of 2016. (Related: Google previews new Android Internet … continue reading
Google wants to help ensure open-source projects are stable, secure and reliable. According to the company, open-source software is the backbone of many solutions available on the Internet today, and any problems with it could be catastrophic. The company announced the release of OSS-Fuzz, a continuous fuzzing solution for open-source software. OSS-Fuzz is a program … continue reading
Microsoft is developing a new way for developers to find bugs before they release their software into production. The company announced the preview of its new cloud-based bug detector, dubbed Project Springfield, at its Microsoft Ignite conference. The system searches and detects bugs before a developer’s software is released in order to save time and … continue reading
It has been one year since Google added Android Security to its vulnerability rewards program. Since then, the company has received more than 250 vulnerability reports, paid more than US$550,000 to 82 individuals, and paid 15 researchers $10,000 or more. The company is now updating its Android rewards program to entice even more security researchers … continue reading
Shares of Alphabet, Google’s holding company, opened nearly three percent higher today, pushing it past Apple. This makes Alphabet the most valuable public company, according to a report by CNBC. Alphabet has a market cap of US$547.1 billion, which is higher than Apple’s $529.3 billion. The last time Google was more valuable than Apple was … continue reading
A team of researchers is looking to put an end to the industry’s longstanding software security problem. As part of a five-year, US$10 million grant from the National Science Foundation (NSF), computer scientists from MIT, Princeton, the University of Pennsylvania and Yale are coming together to develop integrated tools that exterminate software bugs. “In our … continue reading
StackEngine has announced a new end-to-end container application-management solution. The Container Application Center for Docker is designed to help enterprises transition from the costs and inefficiencies of virtualization to containerization, according to the company. It features VMware-like control and security; Docker-enabled freedom, flow and collaboration; and container-native enterprise heterogeneity and security. (Related: Container Summit: Melding … continue reading
