- Chrissy Teigen draws the ire of QAnon fans for criticizing conspiracy 6 Years Ago
- This Twitch streamer was shocked to discover a fan made videos of all her sneezes Today 9:28 AM
- ‘Rick and Morty’ episode title reveal highlights how dumb episode title reveals are Today 9:27 AM
- Ajit Pai is unhappy states are bucking his agency’s net neutrality repeal Today 9:04 AM
- Paul Rudd’s appearance on ‘Hot Ones’ becomes an instantly iconic meme Today 8:23 AM
- Network of fake news sites in Michigan appears to be right-wing propaganda effort Today 6:30 AM
- ‘BoJack Horseman’ hints at a brutal reckoning in its final season Today 5:30 AM
- How to stream Barcelona vs. Slavia Praha in the Champions League Today 2:00 AM
- How to stream Chelsea vs. Ajax in the Champions League Today 1:00 AM
- People are using #WheresLindsey to criticize Graham over Trump ‘lynching’ defense Tuesday 8:22 PM
- 2 Proud Boys sentenced to 4 years in prison for attacking antifa protesters Tuesday 7:20 PM
- Paul Joseph Watson is very upset by bartender serving beer with her butt Tuesday 6:24 PM
- Twitter developing a policy to combat deepfakes Tuesday 5:28 PM
- The Nate Diaz vs. Jorge Masvidal bout at UFC 244 is perfect for NYC and its fight mecca Tuesday 5:27 PM
- Alexis Bledel named most dangerous online celebrity Tuesday 5:02 PM
Facebook, Google pledge $3.9 million for open-source initiative
The Internet security initiative has garnered support from Facebook, Amazon, Cisco, Dell, and Google.
Some of the biggest names in the tech industry have have each pledged $100,000 per year over the next three years to fund open-source projects essential to Internet security in a program called the “Core Infrastructure Initiative” that will deliver at least $3.9 million in support.
The effort is being coordinated by the Linux Foundation, which itself supports the open-source Linux operating system, and has garnered support from Facebook, Amazon, Cisco, Dell, Google, IBM, Intel, Microsoft, and VMWare, among others.
Heartbleed, one of the worst security flaws to ever hit the Internet, began when a small, overworked team of mostly volunteers on the OpenSSL Software Foundation let a simple, devastating mistake pass for over two years.
Open-source software means, in theory, that anyone can look at the code under a program’s hood to check for errors or problems. Too often, however, it means that tiny groups of volunteers are stuck with crucial work that the rest of the Internet depends upon but largely ignores.
“Heartbleed is further evidence that we don’t have our house in order when it comes to Internet security,” Edward Felten, a computer security expert at Princeton University, told the New York Times when the bug was discovered.
Since then, there has been a push to get the world’s biggest tech firms to offer “real no-strings attached-funding,” as Johns Hopkins University Research Professor and Cryptographer Matthew Green wrote, to open-source projects like OpenSSL so that the volunteers would be able to do their job well.
“This is not just about the money, but the forum,” Jim Zemlin, executive director of the Linux Foundation, told the Times on Wednesday. “Instead of responding to a crisis retroactively, this is an opportunity to identify crucial open-source projects in advance. Right now, nobody is having that conversation, and it’s an important conversation to have.”
The OpenSSL project has received about $17,000 in donations, mostly from individuals, since Heartbleed was discovered.
Patrick Howell O'Neill is a notable cybersecurity reporter whose work has focused on the dark net, national security, and law enforcement. A former senior writer at the Daily Dot, O'Neill joined CyberScoop in October 2016. I am a cybersecurity journalist at CyberScoop. I cover the security industry, national security and law enforcement.