Security News > 2017 > April > Organizations are not effectively dealing with open source security threats (Help Net Security)
2017-04-20 13:00
Black Duck conducts hundreds of open source code audits annually, primarily related to Merger & Acquisition transactions. Its Center for Open Source Research & Innovation (COSRI) analyzed 1,071 applications audited during 2016 and found both high levels of open source usage – 96% of the apps contained open source – and significant risk to open source security vulnerabilities – more than 60% of the apps contained open source security vulnerabilities. Notably, audit results of applications … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/SNeAaJqxMsA/
Related news
- Inconsistent security strategies fuel third-party threats (source)
- Orbit: Open-source Nuclei security scanning and automation platform (source)
- Kunai: Open-source threat hunting tool for Linux (source)
- Misconfig Mapper: Open-source tool to uncover security misconfigurations (source)
- OSPS Baseline: Practical security best practices for open source software projects (source)
- AI threats and workforce shortages put pressure on security leaders (source)
- Hetty: Open-source HTTP toolkit for security research (source)
- NetBird: Open-source network security (source)
- IntelMQ: Open-source tool for collecting and processing security feeds (source)
- 5 Identity Threat Detection & Response Must-Haves for Super SaaS Security (source)