SecurityWeek

From Open Source to OpenAI: The Evolution of Third-Party Risk

Software supply chain attacks are evolving as open source and AI-generated code introduce new third-party risks. Learn how ...
SDxCentral

In Open Source Software, Security Still Needs Attention

There's a false sense of security around open source code, according to Trustwave researchers Brandon Myers and Assi Barak. Their deeper point was that open source code is prone to vulnerabilities ...
Dark Reading

Vulnerability Scanning Triples, Leading to Two-Thirds Fewer Flaws

Companies have increased the cadence of application-security testing — with triple the number of applications scanned and 20 times more scans per application — compared to a decade ago, according to ...
Bleeping Computer

Enhancing your DevSecOps with Wazuh, the open source XDR platform

DevSecOps, short for Development, Security, and Operations, is a methodology that integrates security practices into software Development Operations (DevOps). It emphasizes that security should be a ...
VentureBeat

How open-source LLMs enable security teams to stay ahead of evolving threats

Open-source large language models (LLMs) continue to revolutionize the cybersecurity landscape, serving as a strong catalyst for increasing innovation and enabling startups and established vendors ...
LinuxInsider

Is a Security Baseline Enough for Open-Source Software?

In February, The Linux Foundation’s Open Source Security Foundation (OpenSSF) initiated the Open Source Project Security Baseline (OSPS Baseline) to establish minimum security requirements for ...