open source Archives - Help Net Security

open source

Kali Linux 2022.2 released: Desktop enhancements, tweaks for the terminal, new tools, and more!

May 17, 2022

Offensive Security has released Kali Linux 2022.2, the latest version of its popular penetration testing and digital forensics platform. Cosmetic changes Kali Linux 2022.2 …

A 10-point plan to improve the security of open source software

May 13, 2022

The Linux Foundation and the Open Source Software Security Foundation, with input provided by executives from 37 companies and many U.S. government leaders, delivered a …

Nimbuspwn bugs allow attackers to gain root privileges on some Linux machines (CVE-2022-29799, CVE-2022-29800)

April 27, 2022

Microsoft has unearthed two security vulnerabilities (CVE-2022-29799, CVE-2022-29800) in the networkd-dispatcher daemon that may be exploited by attackers to gain root on many …

Principles for Kubernetes security and good hygiene

April 26, 2022

Traditional methods of software security are not a good fit for Kubernetes: a renewed set of security implementations are required to make it less vulnerable. What’s …

Ubuntu 22.04 LTS released, delivers enterprise-grade security

April 21, 2022

Canonical Ubuntu 22.04 LTS is now generally available, featuring significant leaps forward in cloud confidential computing, real-time kernel for industrial applications, and …

The state of open-source software supply chain security in 2022

April 21, 2022

In this video for Help Net Security, Donald Fischer, CEO at Tidelift, talks about the state of open-source software supply chain security in 2022. Open source is the modern …

Challenges development teams face when building applications with open source

April 20, 2022

Tidelift released a report providing critical insights into the state and practice of open source software supply chain management. This comprehensive study of nearly 700 …

81% of codebases contain known open source vulnerabilities

April 19, 2022

Synopsys released a report which examines the results of more than 2,400 audits of commercial and proprietary codebases from merger and acquisition transactions, and …

The state of open source security in 2022

April 13, 2022

In this video for Help Net Security, Kurt Seifried, Chief Blockchain Officer and Director of Special Projects at Cloud Security Alliance, talks about the state of open source …

What you need to look out for when installing packages from public repositories

April 5, 2022

In this Help Net Security video, Ax Sharma, Senior Security Researcher at Sonatype, talks about the risks posed by malicious open source packages. Malicious packages can harm …

Cloud-native adoption shifts security responsibility across teams

March 28, 2022

Styra released a research report which explores how in sync, or misaligned, IT leaders and developers are when it comes to cloud-native technology use and security during …

The Linux Foundation’s Census of OSS app libraries helps prioritize security work

March 3, 2022

The Linux Foundation announced the final release of “Census II of Free and Open Source Software – Application Libraries,” which identifies more than one thousand of the …

open source

Kali Linux 2022.2 released: Desktop enhancements, tweaks for the terminal, new tools, and more!

A 10-point plan to improve the security of open source software

Nimbuspwn bugs allow attackers to gain root privileges on some Linux machines (CVE-2022-29799, CVE-2022-29800)

Principles for Kubernetes security and good hygiene

Ubuntu 22.04 LTS released, delivers enterprise-grade security

The state of open-source software supply chain security in 2022

Challenges development teams face when building applications with open source

81% of codebases contain known open source vulnerabilities

The state of open source security in 2022

What you need to look out for when installing packages from public repositories

Cloud-native adoption shifts security responsibility across teams

The Linux Foundation’s Census of OSS app libraries helps prioritize security work

Don't miss

You should be able to trust organizations that handle your personal data

3 key elements to protect a Kubernetes cluster

Ransomware still winning: Average ransom demand jumped by 45%

Two business-grade Netgear VPN routers have security vulnerabilities that can’t be fixed

How to ensure that the smart home doesn’t jeopardize data privacy?