The problem of buggy software components

By Bob Tarzey, Quocirca. This article first appeared on http://www.computerweekly.com/blogs/quocirca-insights/. What do Heartbleed, Shellshock and Poodle all have in common? Well apart from being software vulnerabilities discovered in 2014, they were all found in pre-built software components, used by developers to speed-up the development of their own bespoke programs. Heartbleed was in OpenSSL (an open [...]