Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

UK Considers Voluntary Software Disclosure

January 25, 2024
Reading Time: 3 mins read
in News

The U.K. government is contemplating the implementation of voluntary rules urging software vendors to responsibly disclose vulnerabilities in their systems. This initiative follows criticisms over the government’s management of legacy infrastructure. Respondents to a call for comments emphasized the need for government intervention to encourage software vendors to disclose vulnerability details promptly. The report revealed concerns about the systemic risk from vulnerabilities and malware in open-source software components and suggested that government guidance on vulnerability disclosure, a software bill of materials, certifications, and regulations could enhance transparency and cybersecurity.

Approximately 200 stakeholders participated in the call for comments, with respondents highlighting the fear of penalization and reputational damage as deterrents for businesses in reporting software vulnerabilities. The report emphasized that 80% of respondents agreed that more efforts should be made to ensure organizations disclose information quickly to prevent the spread of infection. Challenges associated with software security include risks from open-source software components, difficulties in obtaining adequate funding during the development cycle, and the use of unmonitored third-party open-source libraries. The U.K. government plans to publish voluntary practices for vendors, building on existing standards, to establish baseline expectations for software security.

The respondents recommended government guidance on a software bill of materials, certifications for software vendors and developers, and regulations mandating minimum standards of transparency. The proposed voluntary rules aim to improve the country’s cyber resiliency by setting baseline expectations for software security. The U.K. Department for Science, Innovation, and Technology led the consultation, and the government’s efforts to enhance cyber resiliency come amid pressure to address issues with legacy infrastructure in public offices. The release date for the software vulnerability management rules is unclear, but the government plans to involve software vendors, users, and agencies in developing cybersecurity guardrails and procurement processes.

 

Reference:
  • Government response to the call for views on software resilience and security for businesses and organisations

 

Tags: Cyber NewsCyber News 2024CybersecurityGovernmentJanuary 2024United KingdomVulnerabilities
ADVERTISEMENT

Related Posts

AT&T Agrees to $177M Breach Settlement

AT&T Agrees to $177M Breach Settlement

July 8, 2025
AT&T Agrees to $177M Breach Settlement

Alleged Hafnium Hacker Arrested in Italy

July 8, 2025
AT&T Agrees to $177M Breach Settlement

Parrot OS 6.4 Adds New Hacking Tools

July 8, 2025
Insider Arrested in Brazil PIX System Hack

Insider Arrested in Brazil PIX System Hack

July 7, 2025
Insider Arrested in Brazil PIX System Hack

EU Plans Quantum Secure Network by 2030

July 7, 2025
Insider Arrested in Brazil PIX System Hack

Prime Day Scams Use 1000 Fake Amazon Sites

July 7, 2025

Latest Alerts

New Ransomware BERT Targets ESXi Systems

NordDragonScan Malware Steals Windows Data

AMOS Mac Stealer Adds Persistent Backdoor

APT36 Targets Indian Defense Linux Systems

hpingbot Botnet Uses Pastebin C2 Channel

Hackers Abuse Driver Signing For Malware

Subscribe to our newsletter

    Latest Incidents

    French Chip Firm Semco Hacked During IPO

    Louis Vuitton Korea Hit By Cyberattack

    Virginia School District Hit By Cyberattack

    Ransomware Attack Causes Outage at Ingram

    Call of Duty Players Hacked on Game Pass

    RansomHub Claims Theft of Coppell City Data

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial