Collaborate Disseminate
Google has integrated OSV-SCALIBR features into OSV-Scanner, its free vulnerability scanner for open source developers.
The post Google Releases Major Update for Open Source Vulnerability Scanner appeared first on SecurityWeek.
Continue reading Google Releases Major Update for Open Source Vulnerability Scanner
Static Application Security Testing (SAST) found favor among security teams as an easy way to deploy security testing without really engaging developers. With the ability to analyze source code early in the software delivery lifecycle, SAST solutions o… Continue reading The rise of DAST 2.0 in 2025
The tj-actions/changed-files GitHub Action, which is used in 23,000 repositories, has been targeted in a supply chain attack.
The post Popular GitHub Action Targeted in Supply Chain Attack appeared first on SecurityWeek.
Continue reading Popular GitHub Action Targeted in Supply Chain Attack
The financing was provided by S Capital and investor Mike Moritz, S32, Glilot Capital Partners, and several angel investors.
The post Sola Security Deposits Hefty $30M Seed Funding appeared first on SecurityWeek.
Continue reading Sola Security Deposits Hefty $30M Seed Funding
The Open Source Security Foundation (OpenSSF) has created a structured set of security requirements for open source projects.
The post OpenSSF Releases Security Baseline for Open Source Projects appeared first on SecurityWeek.
Continue reading OpenSSF Releases Security Baseline for Open Source Projects
San Francisco startup secures $8.5 million in seed funding led by Valley Capital Partners to tackle browser-based malware attacks.
The post MirrorTab Raises $8.5M Seed Round to Take on Browser-Based Attacks appeared first on SecurityWeek.
Continue reading MirrorTab Raises $8.5M Seed Round to Take on Browser-Based Attacks
San Francisco application security startup raises $100 million in a Series D funding round led by Menlo Ventures.
The post Semgrep Raises $100M for AI-Powered Code Security Platform appeared first on SecurityWeek.
Continue reading Semgrep Raises $100M for AI-Powered Code Security Platform
With each passing year, social engineering attacks are becoming bigger and bolder thanks to rapid advancements in artificial intelligence.
The post How Agentic AI will be Weaponized for Social Engineering Attacks appeared first on SecurityWeek.
Continue reading How Agentic AI will be Weaponized for Social Engineering Attacks
150 abandoned Amazon S3 buckets could have been leveraged to deliver malware or backdoors to governments and Fortune companies.
The post Abandoned Amazon S3 Buckets Enabled Attacks Against Governments, Big Firms appeared first on SecurityWeek.
Continue reading Abandoned Amazon S3 Buckets Enabled Attacks Against Governments, Big Firms
Oligo Security has raised $50 million in Series B funding for its application detection and response (ADR) platform.
The post Oligo Raises $50M to Tackle Application Detection and Response appeared first on SecurityWeek.
Continue reading Oligo Raises $50M to Tackle Application Detection and Response