Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mstdn.social/users/schmidt_fu/statuses/113921982356333959">Florian Schmidt (schmidt_fu@mstdn.social)'s status on Friday, 31-Jan-2025 17:26:28 JST</a><a href="https://mstdn.social/@schmidt_fu" title="schmidt_fu@mstdn.social"><img src="https://gnusocial.jp/avatar/15506-48-20221101101148.webp" width="48" height="48" alt="Florian Schmidt" style="position: absolute; left: 0; top: 0;">Florian Schmidt</a></section><article><p>Not the biggest question right now, for sure, but one that still has worldwide effects:<br>With the ongoing <a href="https://mstdn.social/tags/BrainDrain" rel="tag">#BrainDrain</a> (aka <a href="https://mstdn.social/tags/layoffs" rel="tag">#layoffs</a>) and meddling in US institutions, how will software security analysis be affected? Can <a href="https://mstdn.social/tags/NVD" rel="tag">#NVD</a> still be trusted with being the main source of <a href="https://mstdn.social/tags/CVEs" rel="tag">#CVEs</a> in many popular tools?<br>Should e.g. Europe build up own capacities in vulnerability analysis and set up own databases? Are there existing solutions already?<br><a href="https://mstdn.social/tags/infosec" rel="tag">#infosec</a> <a href="https://mstdn.social/tags/cybersecurity" rel="tag">#cybersecurity</a> <a href="https://mstdn.social/tags/threatmodeling" rel="tag">#threatmodeling</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4482564#notice-8776098">In conversation</a><time datetime="2025-01-31T17:26:28+09:00" title="Friday, 31-Jan-2025 17:26:28 JST">about 7 days ago</time> <span>from <span><a href="https://mstdn.social/@schmidt_fu/113921982356333959" rel="external" title="Sent from mstdn.social via ActivityPub">mstdn.social</a></span></span><a href="https://mstdn.social/@schmidt_fu/113921982356333959">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Florian Schmidt (schmidt_fu@mstdn.social)'s status on Friday, 31-Jan-2025 17:26:28 JST Florian Schmidt
Not the biggest question right now, for sure, but one that still has worldwide effects:
With the ongoing #BrainDrain (aka #layoffs) and meddling in US institutions, how will software security analysis be affected? Can #NVD still be trusted with being the main source of #CVEs in many popular tools?
Should e.g. Europe build up own capacities in vulnerability analysis and set up own databases? Are there existing solutions already?
#infosec #cybersecurity #threatmodeling
In conversationabout 7 days ago from mstdn.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice