PC World

Open-source software projects need to improve vulnerability-handling practices, researchers say

Many open-source software developers need to improve the way in which they handle vulnerability reports, according to researchers from security firm Rapid7, who recently found and reported ...
MarketWatch

Hikvision earns ISO/IEC 29147 and ISO/IEC 30111 certification for vulnerability management

The MarketWatch News Department was not involved in the creation of this content. HANGZHOU, China, Jan. 30, 2026 /PRNewswire/ -- Hikvision announced it has been awarded ISO/IEC 29147:2018 and ISO/IEC ...
Krebs on Security

The Case for a Compulsory Bug Bounty

Security experts have long opined that one way to make software more secure is to hold software makers liable for vulnerabilities in their products. This idea is often dismissed as unrealistic and one ...
William & Mary

Atwater: Handling Vulnerability

Professor Peter Atwater, author of The Confidence Map: Charting a Path From Chaos to Clarity, offers tips on how to navigate vulnerability — for yourself and for others. Also available in printable ...
Security Boulevard

Common ecommerce security vulnerabilities and testing strategies

Ecommerce platforms represent one of the most consistently targeted areas of the modern digital estate. They process payment ...
Dark Reading

Inside The Vulnerability Disclosure Ecosystem

A new National Telecommunications and Information Administration (NTIA)-led study of how security researchers and software vendors handle and view vulnerability disclosure provides rare insight into ...
Ars Technica

Critical vulnerabilities in Exim threaten over 250k email servers worldwide

Thousands of servers running the Exim mail transfer agent are vulnerable to potential attacks that exploit critical vulnerabilities, allowing remote execution of malicious code with little or no user ...