Security researchers who find a flaw in software normally privately inform the developers of it in the hope of prompting a fix, but now a mathematical trick can let them apply public pressure without releasing dangerous details of the bug

Technology



17 January 2023

Software bugs can be exploited to steal people’s data

vchal/Getty Images/iStockphoto

A method to mathematically prove that a hacker has found a software bug, without revealing details of how the exploit works, could prevent companies from ignoring security vulnerabilities.

It is generally considered good practice for security researchers and ethical hackers who find a bug to disclose it to the software’s creator before going public, ensuring there is time to fix it. Many companies have launched bounty programmes that reward those who discover flaws in their systems to incentivise reporting and improve security. …

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *