Fifty-two percent of 172 widely deployed critical open-source projects had memory-unsafe code or were not written in programming languages that curb memory-related errors.
The New York Times confirmed its GitHub repository was breached in January following the leak of its internal source code and data as part of a 273 GB archive on the 4chan message board, reports BleepingComputer.
Cassie has a long history of successfully managing a variety of security programs. Today, she leads supply chain efforts for a very large product company. We will tackle topics such as software supply chain management, SBOMs, third-party supply chain challenges, asset management, and more!
This segment is sponsored by Eclypsium. Visit https://secu...
Online developer community Stack Overflow has been leveraged to facilitate the distribution of a malicious Python Package Index package containing cryptocurrency-stealing malware, reports The Hacker News.
San Francisco-based c/side has emerged from stealth mode with $1.7 million in funding to develop cybersecurity solutions targeting vulnerabilities in third-party scripts used within web browsers, reports Tech Funding News.
The Open Source Security Foundation has unveiled the new Siren threat intelligence sharing list that seeks to facilitate real-time information sharing regarding security flaws impacting open source projects, reports The Register.