Perspectives on XSS Vulnerabilities with RunSafe’s CTO

October 11, 2024

XSS vulnerabilities are a 30-year-old security flaw that won’t go away. Recently, CISA and the FBI sounded the alarm on cross-site scripting – but why now? And could AI make the problem even worse?

Shane Fry, CTO at RunSafe Security, and industry experts weighed in on the issue in CSO Magazine. Read the article here.

Key Takeaways:

CISA and FBI have issued an alert urging tech manufacturers to address cross-site scripting (XSS) vulnerabilities, a persistent web security issue that has plagued the industry for nearly 30 years.
XSS vulnerabilities continue to be a problem due to human error, prioritization of functionality over security, coding complexity, and the use of older frameworks lacking built-in protections.
AI models trained on existing code repositories may inadvertently perpetuate and spread XSS vulnerabilities in newly generated code, potentially exacerbating the problem in future software development.

RunSafe CTO Discusses The Spacecraft Cybersecurity Act

Oct 11, 2024

Shane Fry, CTO at RunSafe Security, joined the Federal News Network on The Space Hour podcast to discuss The Spacecraft Cybersecurity Act and what spacecraft manufacturers can do to build cyber protections in during the manufacturing stage. "A lot of software running...

RunSafe CEO on Proposed Ban on Vehicle Software Originating within China or Russia

Oct 2, 2024

The Biden Administration has proposed two rules that would ban new vehicle software originating within China or Russia as well as imports and sales of vehicles with automated driving hardware created in China or Russia. RunSafe Founder & CEO Joseph M. Saunders...

RunSafe Expert Insights on China’s Salt Typhoon Attack

Sep 26, 2024

The recent Salt Typhoon attack highlights how China-linked hackers have breached U.S. broadband networks, exposing critical infrastructure and OT environments to significant risks. Doug Britton, CSO of RunSafe Security, explores the attack's impact on OT networks,...