Security news that informs and inspires

Archive

15 results for tag Open Source:

SSH-Snake Tool Used in Data Exfiltration Attacks

A new threat actor is finding success in relying on open-source software (OSS) security tools and a networking mapping tool called SSH-Snake in its campaigns.

Open Source

Carefully Crafted Campaign Led to XZ Utils Backdoor

The person or people that implanted malicious code into XZ Utils put time and effort into building trust in the open source software ecosystem.

Open Source

Red Hat, CISA Warn of XZ Utils Backdoor

The malicious code (which is being tracked as CVE-2024-3094) is embedded in XZ Utils versions 5.6.0 and 5.6.1, and may allow unauthorized access to impacted systems.

Open Source

Tech Leaders, Federal Officials Seek a Way Forward for Open Source Security

White House officials and leaders from Apple, Google, GitHub, and other companies met to discuss ways to improve the security of open source projects critical to national security.

Open Source, Log4j

Securing the Open Source Software Supply Chain

Improving the security of the open source software supply chain will require better understanding of dependencies, and cooperation from developers and users.

Open Source, Supply Chain