SiliconANGLE

New repository aims to illuminate open-source package vulnerabilities and malicious code

The Open Source Security Foundation today launched its Malicious Packages Repository, an open-source system for collecting and publishing cross-ecosystem reports of malicious packages. Claimed to be ...
VentureBeat

Google has quietly launched a GitHub competitor, Cloud Source Repositories

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More Google hasn’t announced it yet, but the company earlier this year started ...
HotHardware

Massive Phishing Campaign Bombards Open Source Repositories With Over 144K Packages

Joint research conducted by cybersecurity firms Checkmarx and Illustria has revealed a massive phishing campaign that flooded open source repositories with over 144,000 packages. Unlike many other ...
SiliconANGLE

Fortinet identifies thousands of malicious software packages exploiting open-source repositories

A new report out today from Fortinet Inc.’s FortiGuard Labs highlights a growing wave of malicious software packages exploiting system vulnerabilities. Based on data collected since November 2024, the ...