RealNews

Leaked Bug Alerts Cause a Stir

Riley Hassell was mortified this week when details from a confidential bug report he had written mysteriously showed up on a popular security mailing list. Hassell, a security researcher for eEye Digital Security, had explained in writing a flaw he discovered in widely used Internet software from Sun Microsystems. The problem was so severe that Hassell had agreed to keep his advisory secret for several weeks until Sun and other vendors could create fixes for the affected applications. But an anonymous person using the e-mail account Hack4life@hushmail.com apparently thought the information shouldn’t be kept under wraps. On Sunday, Hack4life posted an advisory containing the bug’s specifics to the Full-Disclosure security mailing list. Hack4life also posted a warning about a separate security flaw discovered by researchers at MIT that wasn’t supposed to be published until June. Full Story

OODA Analyst

OODA Analyst

OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.