Netflix it the latest company taking its bug bounty payouts public with Bugcrowd. But there’s more to fixing security vulnerabilities than simply doling out cash.

Eighty-four percent of software buyers include security requirements in new vendor contracts.

IBM partnered with Cloudflare to offer cloud-based security services.

The company says the average customer detects upwards of 9,000 high- or critical-severity vulnerabilities every month.

The updates also support containerized workloads.

The company is providing security patches.

The bugs could have allowed hackers to attack enterprise servers.

These CPU security bugs have been around for 20 years, says AWS.

Company notes complexity remains the enemy of security.

Some organizations are taking the forklift approach too literally.

By 2020 at least half of the integrated risk management products on the market will be SaaS.

Security and familiarity were cited as tipping the choice in favor of VMs.

Black Duck’s security technology automates the detection of vulnerabilities in open source software.

Soon-to-be-announced partners include “major players” in mobile networking and next-gen firewalls.

Projects are the latest attempts by vendors to ease container management.

Containers are not inherently unsecure, but they are often deployed in an unsecure manner.

As nation-states attack civilians, someone needs to draw the line, Brad Smith says.

Legacy security products are not keeping up.

Cleaning up after future Dirty COWs.

Some of its customers include TransUnion, Starbucks, Hanes, and Hilton.

Security vulnerabilities can't hold back developers working on open source code.

One got fixed in 2011, however.

Time to get serious, researchers say at Black Hat.

Black Duck's technology scans a software repository, checking for license-compliance issues and known vulnerabilities.