open source security | Security Magazine

Items Tagged with 'open source security'

ARTICLES

Can developers reduce open source cybersecurity risk?

October 24, 2022

State of the Software Supply Chain Report from Sonatype found legacy open source downloads leading to cybersecurity vulnerability exploitation.

4 things CISOs need to know about software supply chain security

Kim Lewandowski

October 14, 2022

Cybersecurity leadership needs to understand the security challenges of open source code to tackle software supply chain security threats.

Open source software security act introduced

Security Staff

September 28, 2022

Legislation seeking to address open source software security risks in the federal government has been introduced.

Modernizing application security to retool DevSecOps

Jeff Williams

June 1, 2022

Application security remains a wide attack vector for cybercriminals, but cybersecurity leaders can use tools to better detect vulnerabilities in their applications and software supply chains.

Musk’s Twitter takeover and its security implications

Maria Henriquez

April 27, 2022

Much of the focus around Elon Musks’ Twitter takeover has centered around how he will treat free speech on the platform. But, two of his promises may have bigger implications for cybersecurity.

How to manage the endemic nature of open-source software

Lesson from Log4J: Security vulnerabilities are not just high-profile events like the recently identified Log4J exploit, but rather an ongoing threat on many fronts that need constant attention.

Mike O'Malley

February 24, 2022

Why is open-source software risky, and how can security organizations protect against open-source exploits?

CISOs to developers: Changing the way organizations look at authorization policy

Torin Sandall

September 23, 2021

The open-source and developer community has adopted Open Policy Agent (OPA) as the de facto standard for authorization. There are three critical ways OPA can help organizations solve for authorization:

Let’s help developers address open source software security

Chris Eng

September 2, 2021

By staying on top of open source trends, scanning frequently and working with security counterparts to get the information needed, developers can fix more third-party library flaws faster to develop more secure applications in the future.

Researchers at Illinois Tech aim to unveil anonymous online extremists using ML and OSINT software

August 3, 2021

Two Illinois Institute of Technology graduate students have published research examining whether extremists can be identified through their anonymous online posts.

CERT/CC releases information on vulnerabilities affecting open-source TCP/IP stacks

December 9, 2020

The CERT Coordination Center (CERT/CC) has released information on 33 vulnerabilities, known as AMNESIA:33, affecting multiple embedded open-source Transmission Control Protocol/Internet Protocol (TCP/IP) stacks. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

More Articles Tagged with 'open source security'

ON DEMAND: Business-impacting events such as severe weather, man-made disasters, and supply chain disruption are increasing in frequency and making impacts around the globe.

Within the healthcare security sector, as well as countless other sectors where security reflects a broad patient, customer, and employee pool, building a diverse and inclusive security team starts with focusing on diversity, equity, and inclusion (DEI) as any other business strategy.