Dark Reading

How Hackers Infiltrate Open Source Projects

The open source software that the vast majority of organizations include in their critical applications is vulnerable to exploitation from threat actors taking part in its creation. That's the message ...
Krebs on Security

18 Popular Code Packages Hacked, Rigged to Steal Crypto

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...
Reuters

Open source groups say more software projects may have been targeted for sabotage

WASHINGTON, April 15 (Reuters) - The recent attempt by an unknown actor to sabotage a widely used software program may have been one of several attempts to subvert key pieces of digital infrastructure ...
TechCrunch

Protestware on the rise: Why developers are sabotaging their own code

If combating attacks and hijackings of legitimate software on open source registries like npm weren’t challenging enough, app makers are increasingly experiencing the consequences of software ...
Bleeping Computer

Lapsus$ hackers leak 37GB of Microsoft's alleged source code

The Lapsus$ hacking group claims to have leaked the source code for Bing, Cortana, and other projects stolen from Microsoft's internal Azure DevOps server. Early Sunday morning, the Lapsus$ gang ...
ZDNet

IBM donates code to open-source project

IBM has donated source code to an open-source project in an effort to create more sophisticated development tools for building graphical interfaces. Software consortium Eclipse on Tuesday announced ...
ZDNet

Microsoft airs tools' source code online

Microsoft published the code for one of its products on an open-source software development Web site late Monday, departing from its hard-line stance against making the underlying components of its ...