Computerworld

Extra ‘&’ in Microsoft development code gave hackers IE exploit

Microsoft yesterday confirmed that a single superfluous character in its own development code is responsible for the bug that has let hackers exploit Internet Explorer (IE) since early July. A pair of ...
CSOonline

Gen AI is transforming vulnerability hunting for pen-testers and attackers alike

“These tools can assist in code analysis, pattern recognition, and even automating parts of the exploit development process,” she told CSO via email after speaking at the DefCamp conference in ...
Bleeping Computer

Why a secure software development life cycle is critical for manufacturers

For all the scary talk about cyberattacks from vendors and industry experts, relatively few attacks are actually devastating. But the Jaguar Land Rover (JLR) attack was. The JLR breach wasn’t some ...
Morningstar

SK Shieldus' EQST Brings Practical Chrome V8 Exploit Training to Black Hat USA 2025

Two-day hands-on course offers a rare opportunity for beginners to build real browser exploits from scratch using V8 vulnerabilities. The two-day course, scheduled for August 4–5, is part of Black Hat ...
Bleeping Computer

Latest Software Development Life Cycle news

Recent supply-chain breaches show how attackers exploit development tools, compromised credentials, and malicious NPM packages to infiltrate manufacturing and production environments. Acronis explains ...