No doubt the designers/testers who would have caught this bug were LR'd.
https://arstechnica.com/information-technology/2020/12/wormable-zero-click-vulnerability-in-cisco-jabber-gets-patched-a-second-time/
No doubt the designers/testers who would have caught this bug were LR'd.
https://arstechnica.com/information-technology/2020/12/wormable-zero-click-vulnerability-in-cisco-jabber-gets-patched-a-second-time/
Maybe we need another 5 hours of mandatory security “white belt” training?
For the team leads and architects of Jabber, they need to be at the brown or black belt security level. The people doing the code reviews should be at least a blue belt.
Maybe we need another 5 hours of mandatory security “white belt” training?
Because security quality is so high otherwise...