Security News

Facebook on Monday announced the open source availability of Fizz, a TLS library written in C++ 14 that includes the new generation of Transport Layer Security (TLS 1.3). read more

Duo Security published technical research and methodology detailing how to identify automated Twitter accounts, known as bots, at a mass scale. Using machine learning algorithms to identify bot...

Duo Security has created open source tools and disclosed techniques that can be useful in identifying automated Twitter accounts, which are often used for malicious purposes. read more

Recently discovered cyber attacks targeting iPhone users have been using an open source mobile device management (MDM) system to control enrolled devices, Talos reports. read more

Synopsys's Steve Giguere Talks Crowdsourcing, Code Quality, DevSecOps ChallengesOpen source software components may be free, but that doesn't automatically make them safe to use. "There can be...

An exploit allows attackers to remotely overwrite archive files with their own content, and from there pivot to achieving remote command execution on the machine.

Expert Says Virtual Currency Systems Leak Useful Data To Track CriminalsExperts have long warned that bitcoin is not as private as it appears. The very design of bitcoin, as well as some other...

FireEye has released GeoLogonalyzer, an open source tool that can help organizations detect malicious logins based on geolocation and other data. Many organizations need to allow their employees...

The number of open source components in the codebase of proprietary applications keeps rising and with it the risk of those apps being compromised by attackers leveraging vulnerabilities in them,...

Open source vulnerabilities will often get disclosed earlier than those in managed software, but its up to IT to apply the patches.