Supply chain security startup Socket Inc. announced today that it has raised $40 million in new funding to fuel its mission to modernize security for open-source software and expand its team across ...

The DHS and CISA booth at the 2019 RSA conference in San Francisco. (Scoop News Group photo) The Cybersecurity and Infrastructure Security Agency (CISA) and other federal agencies released guidance ...

Get the latest federal technology news delivered to your inbox. The Cybersecurity and Infrastructure Security Agency published a new roadmap Tuesday that the nation's cyber defense agency will use to ...

Hidden dependencies, social engineering attacks, and the complexity of foundation models can all contribute tothe insecure use of open-source software in 2025. Open-source software is common ...

Earlier this year, a Microsoft developer realized that someone had inserted a backdoor into the code of open source utility XZ Utils, which is used in virtually all Linux operating systems. The ...

Companies are treating these repositories like content delivery networks - now the Linux Foundation and colleagues are saying ...

Open source security incidents aren't going away. The reliance on open source software (OSS) increases year-over-year, with more than 95% of all software, including open source, in some capacity. From ...

There's a false sense of security around open source code, according to Trustwave researchers Brandon Myers and Assi Barak. Their deeper point was that open source code is prone to vulnerabilities ...

Can open source software be regulated? Should it be regulated? And if so, will it lead to enhanced security? In mid-September, two government's approaches to securing open source software were on ...

A reflection of the Department of Homeland Security logo in the eyeglasses of a cybersecurity analyst (Mark J. Terrill/AP/File) There’s no question that open-source software is central to the ...