Dark Reading

How Hackers Infiltrate Open Source Projects

The open source software that the vast majority of organizations include in their critical applications is vulnerable to exploitation from threat actors taking part in its creation. That's the message ...
Computer Weekly

More social engineering attacks on open source projects observed

The Open Source Security Foundation (OpenSSF) and the OpenJS Foundation, which back multiple JavaScript-based open source software (OSS) projects, have warned that the attempted social engineering ...