Firefox 3 Suffers Its First Flaw
News According to Tipping Point's Zero Day Initiative, the vulnerability, which it rates as critical, was reported within the first five hours of Firefox 3's release. Although the Zero Day Initiative team does not offer specifics until the vendor has a...
[June 19, 2008, 8:15]
TippingPoint Goes Public With Zero Day Flaws
News TippingPoint has celebrated the one-year anniversary of its Zero Day Initiative bug bounty programme by putting more pressure on software makers to fix bugs. The intrusion prevention product vendor, a division of 3Com, said this week it would begin...
[September 1, 2006, 15:45]
Symantec Flaw Found By TippingPoint Bounty Hunters
News TippingPoint, a subsidiary of 3Com, announced the first fruits of its Zero Day Initiative (ZDI) on Thursday. A security flaw in Veritas's NetBackup application has been found and patched through an initiative run by TippingPoint that pays security...
[October 14, 2005, 18:10]
TippingPoint To Offer Bug Bounty
News The payments are being offered under TippingPoint's new "Zero Day Initiative". Bugs can be reported to TippingPoint through the Zero Day Initiative Web site. Those who report flaws to TippingPoint will get credit for their discovery and can keep...
[July 25, 2005, 15:05]
Apple Fixes QuickTime Vulnerability
News Apple credits bug hunter Dino Dai Zovi and the TippingPoint Zero Day Initiative for reporting the issue. Dai Zovi subsequently submitted the bug to TippingPoint, which sweetened the competition by offering a $10,000 bounty through its Zero Day...
[May 2, 2007, 9:10]
IDefense Ups Ante For Bounty Hunters
News TippingPoint, part of 3Com, announced its Zero Day Initiative on Monday and will celebrate the launch Wednesday at the Black Hat security conference in Las Vegas. Delalleau welcomes TippingPoint's Zero Day Initiative as competition for the iDefense...
[July 27, 2005, 9:50]
Understanding ZDI: Separating Fact From Fiction
White Papers TippingPoint's Zero Day Initiative (ZDI) program has been in operation since August 15, 2005. Recently, concerns have resurfaced over whether or not 'Paid for' security research is in the best interest of the industry - citing that information...
[February 29, 2008, 0:02]
Apple Bug Fixer May Extend Project
News MOAB has now finished, but Fuller is keen to expand the MOAB Fixes initiative into a project similar to the Zero-day Emergency Response Team (ZERT). While Fuller and the MOAB Fixes group maintain that a vendor-supplied update is always preferable...
[February 2, 2007, 11:50]
MacBook Hacked In Security Contest
News TippingPoint runs the Zero Day Initiative bug bounty programme. Macaulay, a software engineer, was able to hack into a MacBook through a zero-day security hole in Apple's Safari browser. If it is an actual zero-day in Safari that's fine with us...
[April 23, 2007, 10:31]
Advocating Electronic Responsibility
News With its Zero Day Initiative (ZDI), TippingPoint (a division of 3Com) hopes to create a legitimate market for responsibly reporting vulnerabilities by offering compensation for the information. In a nutshell, ZDI wants researchers to register with...
[August 8, 2005, 12:10]
Mozilla Users Urged To Upgrade
News The vulnerabilities were discovered by Mozilla researchers, including Bernd Mielke, Alden D'Souza and Martijn Wargers, as well as by 3Com researchers working on the TippingPoint Zero Day Initiative. This initiative encourages "responsible...
[April 19, 2006, 15:35]
Mac Security Concerns Grow
News This initiative first made public three of the exploits in Apple's new security update. At the CanSecWest security conference in Vancouver, Canada, software engineer Shane Macaulay hacked into a MacBook through a zero-day security hole in Apple's...
[May 1, 2007, 10:50]
Microsoft Eyes New Turf To Conquer
News Muglia previously ran the company's Personal Services Group, which is building back-end infrastructure for the MSN Internet service and for the .Net Web services initiative, which is still under development.
[February 15, 2002, 6:31]
Apple Releases QuickTime Security Update
News Apple credits security researcher Dino Dai Zovi, working with TippingPoint and the Zero Day Initiative, for his help in resolving this issue. Apple released a security update for QuickTime 7.1.6 on Tuesday, further removing a vulnerability first...
[May 30, 2007, 13:41]
IDefense Offers Bounty For Vista And IE7 Flaws
News Our policy is to credit security researchers who report vulnerabilities to us in a responsible manner," the company said in a statement.iDefense's VCP, like TippingPoint's Zero Day Initiative, is designed to reward exclusive disclosure of...
[January 11, 2007, 15:44]
Security Researcher Demands Money From Sun, Nokia
News Through its Zero Day Initiative, TippingPoint offers a bounty and awards programme to researchers who report bugs to the company, while VeriSign's iDefense Vulnerability Contributor Program offers up to $15,000 (£7,900) for "well-researched, high...
[August 12, 2008, 17:25]
The Man Who Transformed Internet Security
Comment Another option was to sell the vulnerability to a third party such as TippingPoint's Zero Day Initiative. Security researcher Dan Kaminsky still won't comment on the specific nature of a flaw within the Domain Name System, for fear criminal hackers...
[July 16, 2008, 15:19]
Apple Patches OS X
News Over the past few weeks, bug hunters, as part of an initiative called the Month of the Kernel Bugs, have published details on several new vulnerabilities in Mac OS X. Apple on Tuesday released a security update for Mac OS X to repair 31...
[November 29, 2006, 7:25]
Intel: Sentient Mobile Devices Will Understand Users
News Chien highlighted several research projects, including an initiative known as 'everyday sensing and perception', or ESP, which began in the fourth quarter of 2007. The mobile devices of tomorrow will be smaller, yet equipped with more powerful...
[August 20, 2008, 11:46]
The Virtual Way To Defeat Real Monsters
Leader Yet the company is missing one of the most important and pressing opportunities that virtualisation affords — our best chance to regain the initiative in the war against malware. The moment an attack succeeds, it is detected and analysed — meaning...
[October 18, 2005, 13:55]
