Nature

Secure Software Execution and Code Reuse Attacks

Secure software execution has become a critical concern as modern computing systems, ranging from embedded devices to enterprise platforms, face increasingly sophisticated adversaries. Recent studies ...
Design News

Why Embedded Teams Still Struggle with Code Reuse (& How to Fix It)

If you talk to almost any embedded team, they’ll tell you they want more code reuse. Reusable drivers. Reusable middleware. Reusable services. Reusable “platforms.” But when you look at most real ...
EurekAlert!

Connect and corrupt: C++ coroutines prone to code-reuse attack despite CFI

A code-reuse attack named Coroutine Frame-Oriented Programming (CFOP) is capable of exploiting C++ coroutines across three major compilers, namely Clang/LLVM, GCC and MSVC. CFOP even succeeds in ...
Infosecurity-magazine.com

Malicious VS Code Extensions Exploit Name Reuse Loophole

A new campaign involving malicious Visual Studio Code (VS Code) extensions has exposed a loophole in the VS Code Marketplace that allows threat actors to reuse names of previously removed packages.
TechCrunch

Report: AI coding assistants aren’t a panacea

As they gain in popularity, AI coding assistants such as GitHub Copilot may appear to be boosting productivity. But in reality, they could be causing overall code quality to decline. That’s the ...