First Report from the Cyber Safety Review Board
Luta Security CEO's blog post about the CSRB's first report - Review of the December 2021 Log4j Event.
top of page
Search
Luta Security Comms Team
- Dec 14, 2021
- 3 min
Vulnerability Disclosure Programs Done the Right Way
Third-party vulnerability disclosure and bug bounty programs should never be the main path to discovering software insecurities.
174 views
Katie Moussouris
- Nov 4, 2021
- 2 min
Vulnerability Management Process Problems Don’t Resolve on Their Own
Luta Security response to CISA's BOD 22-01
183 views
Katie Moussouris
- Apr 21, 2021
- 7 min
New Clubhouse Security Vulnerabilities Could Happen to Any Growing Unicorn
Luta's CEO hacked the Clubhouse app; vulns fixed now
3,926 views
-
- Dec 17, 2020
- 3 min
2021 New Year’s Resolutions for VDPs & Bug Bounties
Many of us kick off each new year enthusiastically brimming with more resolutions than a DNS server. We may resolve to get stronger, so...
235 views0 comments
-
- Dec 16, 2020
- 4 min
FTC’s Settlement with Zoom
In November 2020, the Federal Trade Commission (FTC) announced a settlement with Zoom to reconcile the allegations that the company...
92 views0 comments
-
- Sep 2, 2020
- 3 min
Who’s in the BBQ pit with USG?
CISA and OMB published instructions for federal agencies on vuln disclosure programs. Sadly, the marching orders are all out of whack.
364 views
bottom of page