Through the Looking Glass: How Open Source Projects See Vulnerability Disclosure | allinfosecnews.com

April 3, 2024, 5:42 p.m. | Black Hat

Black Hat www.youtube.com

A security researcher submits their vulnerability report to an open source project (when they can find a confidential way to do so!). That launches several events in the affected project. In this talk, Marta will explain the reasons behind typical reactions. The main part will focus on common myths, misunderstandings, and communication errors that arise in these situations. The goal is to foster a better understanding between security researchers and project teams....

By: Marta Rybczynska

Full Abstract and Presentation Materials: …

can confidential disclosure events find focus glass looking glass main myths open source project projects report researcher security security researcher vulnerability vulnerability disclosure

More from www.youtube.com / Black Hat

Black Hat Asia 2024 Highlights 2 weeks, 3 days ago | www.youtube.com

asia black hat black hat asia black hat asia 2024

Startup Spotlight Competition at Black Hat 1 month ago | www.youtube.com

bhusa blackhat cybersecurity infosec +1

Locknote: Conclusions and Key Takeaways from Day 2 1 month, 3 weeks ago | www.youtube.com

black hat black hat europe board board members +15

Locknote: Conclusions and Key Takeaways from Day 1 1 month, 3 weeks ago | www.youtube.com

black hat black hat europe board board members +16

Keynote: My Lessons from the Uber Case 1 month, 3 weeks ago | www.youtube.com

addition best practices case convicted +16

Keynote: Industrialising Cyber Defence in an Asymmetric World 1 month, 3 weeks ago | www.youtube.com

adversaries challenge cyber cyber defence +10

The Black Hat Europe Network Operations Center (NOC) Report 1 month, 3 weeks ago | www.youtube.com

back black hat black hat europe center +14

My Invisible Adversary: Burnout 1 month, 3 weeks ago | www.youtube.com

adversary attackers attacks burnout +11

The Magnetic Pull of Mutable Protection: Worked Examples in Cryptographic Agility 1 month, 3 weeks ago | www.youtube.com

analysis ask bad codeql +10

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com