Collaborate Disseminate
The volunteers that maintain open-source software have always been knocked around by the tech community. The Jia Tan hack made it all so much worse.
The post Zero trust: How the ‘Jia Tan’ hack complicated open-source software appeared first on CyberScoop.
Continue reading Zero trust: How the ‘Jia Tan’ hack complicated open-source software
IntelOwl is an open-source solution designed for large-scale threat intelligence management. It integrates numerous online analyzers and advanced malware analysis tools, providing comprehensive insights in one platform. “In late 2019, I faced a s… Continue reading IntelOwl: Open-source threat intelligence management
Scout Suite is an open-source, multi-cloud security auditing tool designed to assess the security posture of cloud environments. By leveraging the APIs provided by cloud vendors, Scout Suite collects and organizes configuration data, making it easier t… Continue reading Scout Suite: Open-source cloud security auditing tool
The Biden administration is looking to understand just how widespread open-source software is in critical infrastructure.
The post White House to study open source software in critical infrastructure appeared first on CyberScoop.
Continue reading White House to study open source software in critical infrastructure
runZero published new research on Secure Shell (SSH) exposures and unveiled a corresponding open-source tool, SSHamble. This tool helps security teams validate SSH implementations by testing for uncommon but dangerous misconfigurations and software bug… Continue reading SSHamble: Open-source security testing of SSH services
Two cross-site scripting vulnerabilities (CVE-2024-42009, CVE-2024-42008) affecting Roundcube could be exploited by attackers to steal users’ emails and contacts, email password, and send emails from their account. About the vulnerabilities Round… Continue reading Roundcube flaws allow easy email account compromise (CVE-2024-42009, CVE-2024-42008)
RustScan is an open-source port scanner designed for speed and versatility. It combines a sleek interface with the power to adapt and improve over time. With RustScan’s Adaptive Learning, the tool continually optimizes its performance, making it … Continue reading RustScan: Open-source port scanner
MISP is an open-source threat intelligence and sharing platform for collecting, storing, distributing, and sharing cybersecurity indicators and threats related to incident and malware analysis. MISP is designed by and for cybersecurity, ICT professiona… Continue reading MISP: Open-source threat intelligence and sharing platform
Software supply chain security startup Chainguard raises a $140 million Series C round that values the company at $1.2 billion.
The post Chainguard Raises $140 Million, Expands Tech to Secure AI Workloads appeared first on SecurityWeek.
Continue reading Chainguard Raises $140 Million, Expands Tech to Secure AI Workloads
BIND (Berkeley Internet Name Domain) is an open-source DNS software system with an authoritative server, a recursive resolver, and related utilities. BIND 9.20, a stable branch suitable for production use, has been released. According to the current so… Continue reading BIND 9.20 released: Enhanced DNSSEC support, application infrastructure improvements