Security News

Hackers 'mainlining' vulns into projects – report Use of vulnerable open source components has doubled over the last year despite their role in the high profile Equifax mega-breach.…

After developing it internally for over 10 years, the National Cybersecurity Agency of France (ANSSI) has decided to open source CLIP OS, a Linux-based operating system developed “to meet the...

Chris Eng of CA Veracode on Best PracticesOpen source and third-party components help developers build and deploy applications faster. But with increased speed comes greater risks, says Chris Eng...

Widespread use of unpatched open source code in popular Android apps is causing significant security vulnerabilities, warns the non-profit American Consumer Institute Center for Citizen Research...

Google last week took the wraps off Tink, an open source, multi-language, cross-platform cryptographic library designed to help simplify common encryption operations. Under development for the...

Open source trusted execution component expected this fall At some point this fall, a team of researchers from MIT's CSAIL and UC Berkeley's EECS aim to deliver an initial version of an open...

A newly discovered Mirai variant has been created using an open-source project that makes the process of cross compilation very easy, Symantec reports. read more

Mirai-powered botnet targets the Internet of Things (IoT) via an open source project named Aboriginal Linux.

In this podcast recorded at Black Hat USA 2018, Azi Cohen, General Manager at WhiteSource, talks about open source lifecycle management. WhiteSource manages open source license compliance and...

Cyber security and risk mitigation company NCC Group has released a new open source tool designed to make it easier for penetration testers and others to perform DNS rebinding attacks. read more