Ars Technica

Microsoft launches “fuzzing-as-a-service” to help developers find security bugs

At Microsoft’s Ignite conference in Atlanta yesterday, the company announced the availability of a new cloud-based service for developers that will allow them to test application binaries for security ...
Dark Reading

Google Open Sources AI-Boosted Fuzzing Framework

Google has released its fuzzing framework as an open source resource to help developers and researchers improve how they find software vulnerabilities. The framework, which automates manual aspects of ...

Claude Mythos found decade-old Firefox bugs that years of fuzzing missed

There's a 15-year-old bug hiding in Firefox's element – one of the most boring tags in HTML. It survived over a decade of ...
Threat Post

Using Fuzzing to Mine for Zero-Days

Infosec Insider Derek Manky discusses how new technologies and economic models are facilitating fuzzing in today’s security landscape. Fuzzing is a term that sounds hard to take seriously. But it ...
CSOonline

Google offers free access to fuzzing framework

Fuzzing can be a valuable tool for ferreting out zero-day vulnerabilities in software. In hopes of encouraging its use by developers and researchers, Google announced Wednesday it’s now offering free ...
ZDNet

OpenVPN taken to task after audit ignores remote code execution flaws

A researcher has revealed four dangerous bugs, among others, in OpenVPN which two recent audits of the virtual private network's code failed to find. According to security expert Guido Vranken, he ...
InfoWorld

Google’s OSS-Fuzz extends fuzzing to Java apps

Google’s open source fuzz testing project draws on Code Intelligence’s Jazzer to add support for Java and other JVM languages. Google’s open source fuzz-testing service, OSS-Fuzz, now supports ...