Hacker News new | ask | show | jobs
by joecasson 4024 days ago
Even if it's the only one they've admitted to, I think it's readily known that Microsoft has numerous zero-days (discovered or not) in their software. Combine that with their prevalence in Enterprise businesses, they're going to be a logical starting point for any top tier blackhat org.
2 comments
yunong 4024 days ago
"I think it's readily known that Microsoft has numerous zero-days (discovered or not) in their software."

This is true for every single piece of software ever written. Msft is no different in this regard.

link
ryanlol 4023 days ago
I don't think it's fair to say "every single piece of software", as the claim that it's impossible to write secure software is just a myth. It's not very hard to write a secure "hello world".

Then there's also Coq and such.

Of course, usually the amount of vulnerabilities exponentially correlates to the size of the codebase.

link
ryanlol 4024 days ago
Every OS that people actually use has boatloads of unpatched security issues.
link