SecurityWeek

From Open Source to OpenAI: The Evolution of Third-Party Risk

Software supply chain attacks are evolving as open source and AI-generated code introduce new third-party risks. Learn how visibility and shift-left security reduce exposure.
SiliconANGLE

Sonar acquires open-source security specialist Tidelift

SonarSource SA, which does business as Sonar, said today that it has signed a definitive agreement to acquire Tidelift Inc., a provider of services to manage open-source components. Terms weren’t ...
The Journal

Report Highlights Security Concerns of Open Source AI

A new report, "The State of Enterprise Open Source AI," from Anaconda and ETR, suggests the open source movement might be susceptible to some inherent cybersecurity drawbacks, such as use of possibly ...
Virtualization Review

The Security Imperative of Open-Source AI, with Recommendations

The exploding field of generative AI has evolved from its research roots to for-profit initiatives that big investors like Microsoft are capitalizing on by passing costs on to customers through all ...
GovInfoSecurity

Echo Secures $35M to Tackle Cloud Vulnerabilities With AI

Cloud security startup Echo has closed a $35 million Series A funding round to boost development of its AI-native OS. The ...
Wired

Security Researchers Warn a Widely Used Open Source Tool Poses a 'Persistent' Risk to the US

Since Russian troops invaded Ukraine more than three years ago, Russian technology companies and executives have been widely sanctioned for supporting the Kremlin. That includes Vladimir Kiriyenko, ...
LinuxInsider

Open Source Security at Risk From Poor Oversight

Open-source software has become a prime target in the escalating wave of cybersecurity threats. As attacks grow more sophisticated, the open-source community is racing to close critical security gaps ...
Semiconductor Engineering

Security Concerns Weigh Down Open-Source EDA

Open-source EDA tools are free, readily available, and growing in numbers, but many chipmakers are wary of using them due to security concerns. On the plus side, proponents say these tools can help ...
Infosecurity-magazine.com

Security Risks Persist in Open Source Ecosystem

Significant security risks continue to be prevalent in open source software practices, a new report by the Linux Foundation, OpenSSF and Harvard University has found. The CENSUS III project was based ...
TechCrunch

Linux Foundation report highlights the true state of open source libraries in production apps

There are many metrics to track the prevalence of open source components, such as GitHub stars and downloads, but they don’t paint the full picture of how they’re being used in production codebases.
Campus Technology

Report Highlights Security Risks of Open Source AI

A new report, "The State of Enterprise Open Source AI," from Anaconda and ETR, surveyed 100 IT decision-makers on the key trends shaping enterprise AI and open source adoption while also underscoring ...