Month of bugs

From Wikipedia, the free encyclopedia
  (Redirected from Month of Bugs)
Jump to: navigation, search

A Month of Bugs is a strategy used by security researchers to draw attention to the lax security procedures of commercial software corporations.

Researchers have started such a projects for software products where they believe corporations have shown themselves to be unresponsive and uncooperative to security alerts, and responsible disclosure isn't working properly - and then find and disclose one security vulnerability each day for one month.

Examples[edit]

The original "Month of Bugs" was the Month of Browser Bugs (MoBB) run by security researcher HD Moore.[1]

Subsequent similar projects include:

See also[edit]

References[edit]

  1. ^ Kerner, Sean Michael (5 July 2006). "The Month of The Browser Bugs Begins". InternetNews.com. QuinStreet Inc. Retrieved 22 October 2010. 
  2. ^ Mogull, Rich (6 November 2006). "Learn from 'Month of Kernel Bugs'". Gartner archive. Gartner Inc. Retrieved 22 October 2010. 
  3. ^ Naraine, Ryan (1 November 2006). "Month of Kernel Bugs Launches with Apple Wi-Fi Exploit". eWeek. Ziff Davis Enterprise Holdings Inc. Retrieved 22 October 2010. 
  4. ^ Evers, Joris (2 November 2006). "Apple wireless flaw revealed". ZDNet. CBS Interactive. Retrieved 22 October 2010. 
  5. ^ McMillan, Robert (20 December 2006). "Apple Bug-Hunt Begins". PC World. PCWorld Communications, Inc. Retrieved 22 October 2010. 
  6. ^ Leyden, John (20 December 2006). "Month of Apple bugs planned for January". The Register. The Register. Retrieved 22 October 2010. 
  7. ^ Naraine, Ryan (19 December 2006). "Coming in January: Month of Apple Bugs". eWeek Security Watch. Ziff Davis Enterprise Holdings Inc. Retrieved 22 October 2010. 
  8. ^ Prince, Brian (3 March 2007). "Month of PHP Bugs Begins". eWeek. Ziff Davis Enterprise Holdings Inc. Retrieved 22 October 2010. 
  9. ^ Naraine, Ryan (1 March 2007). "Flaw trifecta kicks off Month of PHP bugs". ZDNet. CBS Interactive. Retrieved 22 October 2007. 
  10. ^ Naraine, Ryan (4 May 2007). "Controversial 'month of bugs' getting security results". ZDNet. CBS Interactive. Retrieved 22 October 2010. 

Further reading[edit]

External links[edit]