Ubuntu Linux users can now grab some free security help to make keeping up with patches and maintenance easier, data scientists express open-source security concerns, and Chainguard has launched the first Linux OS developed for supply chain security.
Sens. Gary Peters, D-Mich., and Rob Portman, R-Ohio, introduced the legislation that seeks to address open source software risks in government. The proposed Bill, S. 4913, now awaits action by the Committee on Homeland Security and Governmental Affairs.
As the open-source model continues to prove its sustainability in the enterprise, the software community is ramping up its security mindedness. That concern was evident in recent weeks as leading Linux groups led the way for better code security.
Canonical and Microsoft reached a new agreement to make their two cloud platforms play nicer together. Meanwhile, Microsoft apologized to open-source software devs. But no apology was rendered for BitLocker locking out Linux users. Get caught up on the latest OSS news.
As criminal activity on the internet continues to accelerate, bug hunting for cash has begun to attract more and more security researchers. In its latest annual report, bug bounty platform Intigriti revealed that the number of analysts signing up for its services has increased 43% from April 2021 to...
LF built the Summit as an umbrella for the open-source projects and technologies that are fundamental across software and other industries. It highlighted those that are poised for growth and widespread use.
Digital devices and home networks of corporate executives, board members and high-value employees with access to financial, confidential and proprietary information are ripe targets for malicious actors, according to a study released Tuesday by a cybersecurity services firm. The connected home is a ...
New research from Atlas VPN shows that cloud-native exploits on major cloud service providers (CSPs) declined during the first four months of 2022. Cloud-native exploits dropped by 25%, from 71 exploits in the first four months of 2021 to 53 exploits in the first four months of this year.
Government organizations and educational institutions, in particular, are increasingly in hackers’ crosshairs as severe web vulnerabilities spiral upward. Remote code execution (RCE), cross-site scripting (XSS), and SQL injection (SQLi) are all top software offenders. All three increase or hov...
The security and operations analytics SaaS company hopes to disrupt legacy security ops with an artificial intelligence-driven approach to security operations built into its Resolution Intelligence platform.
The Linux Foundation and the Open Source Software Security Foundation brought together over 90 executives from 37 companies and government leaders from the NSC, ONCD, CISA, NIST, DOE, and OMB to reach a consensus on key actions to take to improve the resiliency and security of open-source software.
Without a detailed accounting of open-source code running within their software, companies have no way to monitor software policies, licenses, vulnerabilities, and versions. That means IT departments are clueless about the overall health of the open-source components they use.
Computer security only happens when software is kept up to date. That should be a basic tenet for business users and IT departments. Apparently, it isn’t. At least for some Linux users who ignore installing patches, critical or otherwise.
In this edition of the latest open-source industry news: Linux Foundation partners add free security classes; Appwrite garners seed money and hands-on community members; Ubuntu's pending new arrival; new releases from Deepin and Modicia.