🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

11am today at #ICSE2025: Rust provides memory safety to low-level code, but in practice Rust libraries link to unsafe C. Ian McCormack, Joshua Sunshine, and I used dynamic analysis to find 46 cases where the C code broke Rust's memory rules, causing undefined behavior.

Europe’s choice is clear. To put science at the heart of its economy. To become the home of scientific freedom and collaboration. And to welcome talent from all over the world. I’m glad to present the first elements of our Choose Europe Initiative ↓ x.com/i/broadcasts/1…

The ERC welcomes the offer of substantial additional budget from the European Commission for the development of a new ERC funding instrument offering larger, longer-term grants, as announced by President Ursula von der Leyen at the Sorbonne this morning. europa.eu/!NTYTTV

Thrilled to announce my new Project Zero blog post is LIVE! 🎉 I detail my knowledge-driven fuzzing process to find sandbox escape vulnerabilities in CoreAudio on MacOS. I'll talk about this and the exploitation process next week offensivecon! googleprojectzero.blogspot.com/2025/05/breaki…

Great news! The Pwnie awards nominations are now open! pwnies.com/nominations/

First time at #VUSec / #AMSec in Amsterdam. What a nice building!

A Basic Guide to Fuzzing with AFL++ Unicorn Mode #FuzzingGuide #AFLUnicornMode #EmbeddedSystems #Security #BugHunting medium.com/@cy1337/a-basi…

We're excited to announce two keynote speakers for the #FUZZING'25 workshop (part of ISSTA Conference at Trondheim, Norway): [*] Will Wilson, CEO and Co-Founder of Antithesis [*] Miryung Kim, Professor and Vice Chair of Graduate Studies at UCLA Computer Science conf.researchr.org/home/issta-202…

We also have an excellent program of research talks and *fuzzing nuggets*. Detailed schedule coming soon. conf.researchr.org/home/issta-202…

Are you interested in serving on the Program Committee for ISSTA Conference 2026? Please let us know by filling out this form: forms.gle/MaXAKysfMSdqTg…

📢 FUZZING NEWS! For many years Caroline Lemieux and I got asked whether JQF/Zest mutations always preserve input structure. THEY DON'T! There's sometimes a disruptive "havoc" effect. BeDivFuzz (Hoang Lam Nguyen) and Zeugma (Jonathan Bell) do a much better job avoiding it. But WAIT....

... does it really matter in practice? Perhaps the havoc effect is benign, or maybe even a good thing?! Our students Ao Li Vasu Vikram Madonna Huang studied this all in great depth! Read more in our upcoming ACM TOSEM paper on the "Havoc Paradox". 📄 dl.acm.org/doi/pdf/10.114…

If one knows the input language of the system to be tested, one can generate inputs in a very efficient manner. In GDBMiner, the GNU debugger (GDB) is used to extract precise input grammars from any recursive descent parser that can be traced via GDB: drops.dagstuhl.de/entities/docum…

Association for Computing Machinery Council has reaffirmed yesterday that all ACM publications and related research artifacts in the ACM Digital Library (ACM Digital Library) will be fully openly available after 1-1-2026. Computing science material of the highest quality freely available to all! #OpenAccess

Thrilled to share a recent opinion piece at the IEEE Security and Privacy (Vol. 23, Issue 3). Basically a long-term perspective on the field meant for both researchers and practitioners. 📝 ieeexplore.ieee.org/stamp/stamp.js…

📣 Are you interested in serving on the Program Committee for ISSTA 2026? Please let us know by filling out this form: forms.gle/MaXAKysfMSdqTg…