Google Sees Drop in Memory Safety Bugs in Android as Code Matures

September 26, 2024 at 09:19AM Google’s secure-by-design approach to code development has led to a significant reduction in memory safety vulnerabilities in Android and Chrome. The adoption of memory-safe programming languages like Rust has resulted in a decrease in memory safety bugs in Android, reducing the overall security risk to users. This proactive approach marks … Read more

Google’s Shift to Rust Programming Cuts Android Memory Vulnerabilities by 52%

September 25, 2024 at 01:18PM Google’s shift to memory-safe languages like Rust has reduced memory-safe vulnerabilities in Android from 76% to 24% in six years. Prioritizing secure coding for new features makes codebases safer and cost-effective. The decrease in vulnerabilities is due to the decay of new code’s vulnerabilities and advancements in vulnerability combat. Google … Read more

Google says replacing C/C++ in firmware with Rust is easy

September 6, 2024 at 05:48PM Google is advocating for the use of the Rust programming language to replace legacy C and C++ code in firmware, aiming to enhance security and reduce vulnerabilities. Despite resistance from some developers, Google and the US government are promoting the adoption of Rust for secure and reliable software development, leveraging … Read more

Memory Safety is Key to Preventing Hardware Hacks

August 9, 2024 at 08:33AM The 2018 Spectre and Meltdown vulnerabilities exposed computer memory as a target for hackers to inject code and steal data. To address this, Microsoft is transitioning system applications to the Rust programming language for memory safety, while chip makers established the CHERI Alliance to create secure hardware architecture. Challenges include … Read more

Hamas-Linked APT Wields New SysJoker Backdoor Against Israel

November 27, 2023 at 12:48PM Palestinian militant group Hamas is using a revamped version of the SysJoker backdoor to target Israel, according to researchers from Check Point. The new variant, written in the Rust programming language, maintains similar functionality but has been completely rewritten. The group is also using OneDrive for command-and-control server URLs. The … Read more