The Zero Day Initiative has found a worrying trend that is increasingly affecting the software segment, and that is that, as we can read in wired, after 17 years and more than 10,000 reports of security vulnerabilitiesmore and more developers are deploying security patches that they do not appear to correctly address the reported vulnerability.
Specifically, members of the Zero Day Initiative explain that in recent years, the quality of the patches has been reduced, to the point that on several occasions they and the affected company find themselves stuck in a loop of reporting a vulnerability, patch it, and report a way to bypass the patch, something that ends up with another patch over and over again without fixing the original problem.
According to the Google Project Zero team, at least half of the vulnerabilities used to hack end users are variants of supposedly patched issuesso the extent of the problem is the least worrying.
The Zero Day Initiative has a plan to put pressure on software developers, so that in one way or another the quality of the software patches that reach our computers can be improved.
End of Article. Tell us something in the Comments!
Jordi Bercial
Avid technology and electronics enthusiast. I’ve been messing around with computer components almost since I could walk. I started working at Geeknetic after winning a contest on their forum about writing hardware articles. Drift, mechanics and photography lover. Feel free to leave a comment on my articles if you have any questions.
Add Comment