Month of bugs

From Wikipedia, the free encyclopedia
  (Redirected from Month of Bugs)
Jump to: navigation, search

A Month of Bugs is a strategy used by security researchers to draw attention to the lax security procedures of commercial software corporations.

Researchers have started such a projects for software products where they believe corporations have shown themselves to be unresponsive and uncooperative to security alerts, and responsible disclosure isn't working properly—and then find and disclose one security vulnerability each day for one month.

Examples[edit]

The original "Month of Bugs" was the Month of Browser Bugs (MoBB) run by security researcher HD Moore.[1]

Subsequent similar projects include:

See also[edit]

References[edit]

  1. ^ Kerner, Sean Michael (5 July 2006). "The Month of The Browser Bugs Begins". InternetNews.com. QuinStreet Inc. Retrieved 22 October 2010. 
  2. ^ Mogull, Rich (6 November 2006). "Learn from 'Month of Kernel Bugs'". Gartner archive. Gartner Inc. Retrieved 22 October 2010. 
  3. ^ Naraine, Ryan (1 November 2006). "Month of Kernel Bugs Launches with Apple Wi-Fi Exploit". eWeek. Ziff Davis Enterprise Holdings Inc. Retrieved 22 October 2010. 
  4. ^ Evers, Joris (2 November 2006). "Apple wireless flaw revealed". ZDNet. CBS Interactive. Retrieved 22 October 2010. 
  5. ^ McMillan, Robert (20 December 2006). "Apple Bug-Hunt Begins". PC World. PCWorld Communications, Inc. Retrieved 22 October 2010. 
  6. ^ Leyden, John (20 December 2006). "Month of Apple bugs planned for January". The Register. The Register. Retrieved 22 October 2010. 
  7. ^ Naraine, Ryan (19 December 2006). "Coming in January: Month of Apple Bugs". eWeek Security Watch. Ziff Davis Enterprise Holdings Inc. Retrieved 22 October 2010. 
  8. ^ Prince, Brian (3 March 2007). "Month of PHP Bugs Begins". eWeek. Ziff Davis Enterprise Holdings Inc. Retrieved 22 October 2010. 
  9. ^ Naraine, Ryan (1 March 2007). "Flaw trifecta kicks off Month of PHP bugs". ZDNet. CBS Interactive. Retrieved 22 October 2007. 
  10. ^ Naraine, Ryan (4 May 2007). "Controversial 'month of bugs' getting security results". ZDNet. CBS Interactive. Retrieved 22 October 2010. 

Further reading[edit]

External links[edit]