If you aren't yet a Premium subscriber, you missed yesterday's analysis about new Webex vulnerabilities and what you should do about it. Go to our Premium page and sign up, subscription plans start at $10/month with multiple newsletters and corporate plans available. Premium subscribers get an additional Thursday newsletter, usually with a single analysis topic.
I am glad to promote one woman’s efforts to highlight female coders and their contributions to our industry. Check out graphics engineer Stephanie Hurlburt’s Twitter feed for some of the stories.
Finally, my favorite year-end security report today is “The State of Open Source Security,” the results of a survey of 500 open source users combined with internal data from Snyk and scanning various GitHub repositories. Sadly, almost half of the code maintainers never audit their code, and less than 17 percent feel they have high security knowledge. Code vulnerabilities are on the rise for open source projects but not for Red Hat Linux. Last year, two-thirds of Red Hat vulnerabilities were fixed within a day of public disclosure.
-- David Strom, editor of Inside Security