Security News > 2017 > April > Organizations are not effectively dealing with open source security threats (Help Net Security)
2017-04-20 13:00
Black Duck conducts hundreds of open source code audits annually, primarily related to Merger & Acquisition transactions. Its Center for Open Source Research & Innovation (COSRI) analyzed 1,071 applications audited during 2016 and found both high levels of open source usage – 96% of the apps contained open source – and significant risk to open source security vulnerabilities – more than 60% of the apps contained open source security vulnerabilities. Notably, audit results of applications … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/SNeAaJqxMsA/
Related news
- Open source maintainers: Key to software health and security (source)
- Suricata: Open-source network analysis and threat detection (source)
- Obsidian Security Warns of Rising SaaS Threats to Enterprises (source)
- How open source SIEM and XDR tackle evolving threats (source)
- Eliminating AI Deepfake Threats: Is Your Identity Security AI-Proof? (source)
- Osmedeus: Open-source workflow engine for offensive security (source)
- AWS security essentials for managing compliance, data protection, and threat detection (source)
- Am I Isolated: Open-source container security benchmark (source)
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)
- Privileged Accounts, Hidden Threats: Why Privileged Access Security Must Be a Top Priority (source)