/me pulls out his crystal ball...
Anyone who subscribes to full disclosure security mailing lists for more than 2 years will likely have noticed the frequency or rate of security risks (exploited holes, bugs found, and risks exposed) seem to be cyclic in nature.
Several years ago, I noticed one trend:
The two months leading up to DefCon we seem to see a large deal of traffic on the lists which address issues with remote exploits to service which lead to priv. escalation, runing arb. code, buffer overruns found and exploited, and other interesting discussions.
Many of the issues become topics at DC by speakers, but what is the chain of events? Do bug become exploits through exposure of discussion at DC, or do discussions at DC become popular as a result of exploits and found bugs?
]:>
We are now at about the two month mark before the con begins. Will history repeat itself as seen during the previous years?
Other ideas which have been provided for the cause to this cyclic effect on lists include:
Over summer, many students do not attend classes, and have more free time to hammer on various things.
There is no cyclic effect, people are just more conscious of security issues as DC gets closer
Do you have other ideas on this?
Anyone who subscribes to full disclosure security mailing lists for more than 2 years will likely have noticed the frequency or rate of security risks (exploited holes, bugs found, and risks exposed) seem to be cyclic in nature.
Several years ago, I noticed one trend:
The two months leading up to DefCon we seem to see a large deal of traffic on the lists which address issues with remote exploits to service which lead to priv. escalation, runing arb. code, buffer overruns found and exploited, and other interesting discussions.
Many of the issues become topics at DC by speakers, but what is the chain of events? Do bug become exploits through exposure of discussion at DC, or do discussions at DC become popular as a result of exploits and found bugs?
]:>
We are now at about the two month mark before the con begins. Will history repeat itself as seen during the previous years?
Other ideas which have been provided for the cause to this cyclic effect on lists include:
Over summer, many students do not attend classes, and have more free time to hammer on various things.
There is no cyclic effect, people are just more conscious of security issues as DC gets closer
Do you have other ideas on this?
Comment