That breach boom is likely convincing companies to shore up software vulnerabilities in their inhouse-coded applications.
One excuse that the company might offer: more software security vulnerabilities were made public in the last six months than ever before.
Proper disclosure ethics have dogged software vendors vulnerabilities for years.
The report also ranked software companies according to their record of patching known security vulnerabilities in the software they sell.
Conduct regular risk assessments to reveal hardware, software and individual site vulnerabilities.
Bad software leads to security vulnerabilities that vandals and thieves exploit, and wastes hours of productive time as techies desperately fix bugs in the code.
When the industry's ever-larger ranks of independent researchers find exploitable vulnerabilities in software, they're forced to price their discoveries on an ad hoc basis with no sense of fair market value.
Russian security firm Kaspersky reported in its third quarter analysis of security threats that Java was exploited in fully 56% of all known attacks that took advantage of vulnerabilities in software.
FORBES: Forget Oracle's Latest Java Patch. Just Kill The Program In Your Browser For Good
Demanding fewer bugs in government-bought software could reduce the vulnerabilities that have allowed hackers to breach agencies and companies without requiring any new monitoring or information sharing system that might affect privacy.
FORBES: President Obama's Cybersecurity Executive Order Scores Much Better Than CISPA On Privacy
Almost all of the machines ran outdated software with critical security vulnerabilities, and 98% contained data that the company or individual who set up the machine for users had intended to delete but could still be extracted from the machine.
FORBES: Researchers Find Amazon Cloud Servers Teeming With Backdoors And Other People's Data
And while many viruses exploit well-known holes in Microsoft software, Scob aims at vulnerabilities no one had detected before.
Goldsmith and Rauch say that FIX is just one of several protocols in use with exploitable vulnerabilities known to software developers and banks.
Aziz says some banks with a better understanding of Brownian motion and the vulnerabilities of the software planned correctly, and they are doing well now.
In the eyes of some security professionals, Immunity and Netragard themselves are far from saintly: Neither company reports all of its vulnerabilities to the software's manufacturer upon acquiring them, since doing so would devalue the bugs they purchase.
Tridium has stated that they are testing a software update that will resolve these vulnerabilities.
Vupen is just one of a number of companies that have created controversy in the security community by profiting from zero-day exploits rather than working with software firms to fix the hackable vulnerabilities they use.
FORBES: Government-Funded Hackers Say They've Already Defeated Windows 8's New Security Measures
Its reputation has also been damaged by a proliferation of viruses which exploit vulnerabilities in the firm's software, run on most of the world's computers.
Google is releasing a software development kit for native applications, which could potentially introduce security vulnerabilities.
FORBES: Is Google's Chromebook The Death Knell For Antivirus?
Most software companies have learned to grudgingly cooperate with researchers who expose security vulnerabilities in their products.
FORBES: Google Puts $20,000 Bounty On Chrome In Hacking Contest
In other words, the vulnerabilities they buy often stay vulnerable, and so do the software's users.
Last year saw a steady stream of attacks that exploited Java vulnerabilities, allowing miscreants to surreptitiously install keyloggers and other malicious software when unwitting people browsed compromised websites.
Microsoft often takes the rap for security vulnerabilities from critics who say the company fails to properly test its software.
Now they have revealed dozens of vulnerabilities in the supervisory, control and data acquisition (SCADA) software that much national infrastructure and manufacturing industry depends upon.
FORBES: Increased Computerization Means Increased Vulnerability
Because updates for Java software are installed on demand rather than automatically, there is a longer shelf-life for vulnerabilities.
FORBES: Apple's iTunes, QuickTime, High On Cyber Security Vulnerability List, Kasperky Lab Says
Just as important, the platform will host exploits only for known vulnerabilities, not so-called zero day exploits--new attacks for which software companies haven't yet issued fixes.
The vulnerabilities fixed by other patches are found in a variety of Windows programs including the Office software suite and the Internet Explorer browser.
Businesses with broader network concerns can look to platforms from SMB-focused companies such as Check Point Software, Trend Micro and Imperva, which offers a free, downloadable tool that scans databases for security vulnerabilities.
FORBES: Why Investing In Online Security Makes Sense For Small To Medium-Size Businesses
应用推荐