May 21, 2024 at 08:06AM File Integrity Monitoring (FIM) is crucial for IT security control, ensuring the integrity of files and system configurations. Compliance with cybersecurity standards is essential for businesses, and Wazuh offers an open source FIM capability, enabling real-time monitoring and detection of unauthorized file changes, aiding in meeting regulatory compliance and enhancing … Read more
May 20, 2024 at 07:14PM The Open Source Security Foundation (OpenSSF) launches OpenSSF Siren, aiming to share threat intelligence and fill the gap between open-source and enterprise communities. It seeks to provide real-time security warnings, community-driven knowledge base, and encourage sign-ups from FOSS developers and security teams. The initiative focuses on sharing attack tactics and … Read more
May 3, 2024 at 01:36PM Varun Badhwar, CEO at Endor Labs, predicts that software supply chain vulnerabilities will become a major cybersecurity threat, with a vast majority of enterprise code derived from untrusted sources. He emphasizes the need for proper documentation, automation, and a thorough reevaluation of open-source risks. Badhwar predicts a lengthy process in … Read more
April 29, 2024 at 05:15PM A high-severity vulnerability (CVE-2024-27322) in R programming language’s deserialization process poses a threat to organizations using the language. Attackers could execute arbitrary code through specially crafted RDS files or packages, affecting sectors such as finance, healthcare, and AI. The issue has been addressed in R version 4.4.0, but organizations are … Read more
April 24, 2024 at 05:27PM Attacks like those experienced by SolarWinds and CodeCov show that adversaries can employ social engineering to execute supply chain attacks, as demonstrated by the backdoor introduction in the XZ Utils open source utility. This incident, along with warnings from the Open Source Security Foundation, highlights the need for vigilance in … Read more
April 12, 2024 at 11:39AM XZ Utils backdoor test files were found in liblzma-sys, impacting version 0.3.2, but have since been removed in version 0.3.3. The backdoor allowed remote code execution through SSH and was attributed to a social engineering campaign targeting open-source projects. Multiple organizations have warned of the sophisticated methods used and emphasized … Read more
April 1, 2024 at 05:20PM A backdoor was discovered in the open-source compression library xz, posing a significant security threat. Luckily caught in time, the incident has raised concerns about future safeguards. The complex and stealthy attack on the software has sparked speculation about the motives and sophistication of the perpetrator. The hunt for the … Read more
March 28, 2024 at 02:04PM PyPI, the Python Package Index, has suspended user registrations and new project creation due to an ongoing malware campaign. Threat actors are uploading fake packages to compromise developers, with the latest report from Checkmarx revealing 365 malicious entries and an info-stealer payload. This emphasizes the importance of rigorously verifying open-source … Read more
March 27, 2024 at 04:43PM Thousands of companies are at risk due to a critical remote-code-execution bug, named ShadowRay (CVE-2023-48022), in the Ray open-source AI framework. Exploited for seven months, it compromises sensitive data and facilitates cryptocurrency mining. Although fixes for other flaws are available, the vulnerability remains, leading to significant breaches and data leaks. … Read more
March 26, 2024 at 04:42PM Binarly, a Los Angeles startup, secured $10.5 million in venture capital funding led by Two Bear Capital. Their AI-powered solution, the Binarly Transparency Platform, automates discovery of security vulnerabilities in firmware and software supply chain. Founded by NVIDIA alum Alex Matrosov, the company aims to capitalize on global software supply … Read more