Software firms' tepid approach to increasing the focus on security in the application development process has failed to staunch the flow of reports of new software flaws, but a global vulnerability purchasing program could help, argued a report published on Dec. 18 by security-information firm NSS Labs.

eWeek - Robert Lemos December 19, 2013