Archive

Open source software is now the foundation for the vast majority of applications across all industries, however many of those industries are struggling to manage open source risk. Organizations, regardless of industry, must do a better job maintaining open source components given their critical natu...

Two things to avoid in online discussions are politics and religion. Open source technology may be an explosive third topic that software developers should be wary of subjecting to a virtual debate. Automattic CEO Matt Mullenweg and Ruby on Rails creator and Basecamp cofounder David Heinemeier Hanss...

It would have been reasonable for those attending Josh Bressers' session at CypherCon -- myself included -- to expect a presentation by a cryptocurrency expert. It was billed as a talk about plumbing the depths of the bitcoin blockchain. When Bressers admitted that his material grew out of a hobby, ...

As if e-commerce companies didn't have enough problems with transacting securely and defending against things like fraud, another avalanche of security problems -- like cryptojacking, the act of illegally mining cryptocurrency on your end servers -- has begun. We've also seen a rise in digital credi...

Developers of U.S.-based Elementary OS recently released the community's annual major update, Juno 5. What makes this distro so nontraditional is its own desktop interface, called "Pantheon." This desktop interface is somewhat of a hybrid, inspired by Apple's Debian Ubuntu-based OS X. It combines so...

Independent software vendors, along with Internet of Things and cloud vendors, are involved in a market transformation that is making them look more alike. The similarities are evident in the way they approach software security initiatives, according to a report from Synopsys. Synopsys has released ...

Crate.io has introduced a commercial Machine Data Platform, along with a new version of its open source SQL database for the Internet of Things and machine data. The company also announced an US$11 M Series A funding round. The Machine Data Platform is Crate.io's first major commercial venture follo...

Black Duck by Synopsys has released the 2018 Open Source Security and Risk Analysis report, which details new concerns about software vulnerabilities amid a surge in the use of open source components in both proprietary and open source software. The report provides an in-depth look at the state of o...

The Online Trust Alliance on Tuesday released its 2017 Online Trust Audit & Honor Roll. Among its findings: Consumer services sites have the best combined security and privacy practices. FDIC 100 banks and U.S. government sites are the least trustworthy. The number of websites that qualified for...

Black Duck Software has released its 2017 Open Source Security and Risk Analysis, detailing significant cross-industry risks related to open source vulnerabilities and license compliance challenges. Black Duck conducted audits of more than 1,071 open source applications for the study last year. Ther...

Amazon last week announced that it had reversed a previous decision to drop support for local encryption on version 5 of its Fire tablet operating system. The disclosure came one day after the company joined 14 others to support Apple in its fight against the FBI, which wants the company to create a...

A report released Tuesday on the DROWN vulnerability raises concerns about possible attacks that could expose encrypted communications. DROWN is a serious vulnerability that affects HTTPS and other services using SSL version 2, according to the team of security researchers who compiled the report. T...

Walmart on Tuesday announced that it has posted the code for its OneOps cloud application life cycle management platform on GitHub. The company developed the OneOps platform for building and launching cloud-based applications across varied storage environments that change frequently. It lets e-comme...

The Linux Foundation last week announced it was teaming up with a group of high-tech and financial giants on a project to advance the blockchain technology made famous by bitcoin virtual currency. IBM, Cisco and Intel have agreed to collaborate with financial institutions including startup R3 CEV, t...