why do security vulnerabilities have names and logos


That's a good question!

The first big vuln with a name and logo was heartbleed. This made it easier to sell to news media, which in turn made patching easier to sell to executives.

The name and the logo make the vulnerability seem serious. Unfortunately, after the first one that does this, now managers won't authorize a maintenance window for any bug that doesn't.

So now every bug needs marketing.

Sign in to participate in the conversation

A silly domain for test deploys, now has a mastodon instance. A place for memes as shitty as the name. Zero bullshit tolerated.