Don't miss our upcoming Network Computing virtual event on Connectivity Solutions - Secure Your Complementary Seat Now!
Researchers with Symantec's advanced threat team poked through Vista's new network stack in several recent builds of the still-under-construction operating system, and found several bugs -- some of which have been fixed, including a few in Monday's release -- as well as broader evidence that the rewrite of the networking code could easily lead to problems.
"New code, whether it's been rewritten or added, needs to go through an aging process," said Oliver Friedrichs, the senior director of Symantec's security response group. "Virgin code is likely to contain more bugs and flaws. And that's particularly true in a network stack, which is one of the most complex pieces of code in an operating system."
In a just-released paper, two of Friedrich's researchers, Tim Newsham and Jim Hoagland, detailed research that began with a September 2005 build of Vista and wrapped up with May's public Beta 2.
Among Newsham's and Hoagland's conclusions: "The amount of new code present in Windows Vista provides many opportunities for new defects."
"It's true that some of the things we found were 'low-hanging fruit,' and that some are getting fixed in later builds," said Friedrichs. "But that begs the question of what else is in there?"
With the move to the cloud, CISOs must shift priorities from operating security programs to overseeing (monitoring and auditing) outsourced cybersecurity programs.
2022 was a boon year for IT salaries. 2023 came in like a beast with layoffs, raise freezes, and ChatGPT, but that beast has few teeth.
Age is only a number. Don't let a high number cancel your career.
