The Parallax

JANUARY 30, 2018

During a month that’s seen Android malware new and old plague the world’s most popular mobile operating system, Google says its Play Store is becoming more civilized and less like the Wild West. You have a lower probability of being infected by malware from Play than being hit by lightning,” Ahn says. READ MORE ON ANDROID SECURITY.

Malware 184

Malware Open Source Operating System Mobile 184

Tenable

MARCH 14, 2025

Meanwhile, Tenable did a deep dive on DeepSeeks malware-creation capabilities. And get the latest on vulnerability prioritization; CIS Benchmarks and open source software risks. government sent this week via an advisory to cybersecurity teams, especially those at critical infrastructure organizations.

Infrastructure 73

Infrastructure Artificial Inteligence Open Source Malware 73

TechCrunch

NOVEMBER 29, 2022

Previously he was staff software engineer and lead for Google’s Open Source Security Team (GOSST). SolarWinds and Log4j have made software supply chain security issues a topic of intense interest and scrutiny for businesses and governments alike. Open source package repository attacks.

Software 225

Software Open Source PHP Malware 225

TechCrunch

JULY 27, 2022

Ax Sharma is a security researcher and reporter. His areas of interest include open source software security, malware analysis, data breaches, and scam investigations. Needless to say, the sabotaged versions of node-ipc — now effectively malware — were taken down from the npm registry. Contributor.

Development 281

Development Open Source Malware Software 281

O'Reilly Media - Ideas

NOVEMBER 5, 2024

It has many problems, security not being the least of them—but it’s bound to improve. Google is open-sourcing SynthID, a system for watermarking text so AI-generated documents can be traced to the LLM that generated them. Unlike many of Mistral’s previous small models, these are not open source. on benchmarks.

Artificial Inteligence 107

Artificial Inteligence Trends Software Review Open Source 107

Tenable

MAY 16, 2024

One of the most common cryptomining threats for cloud environments is the Kinsing malware. Kinsing is a notorious malware family active for several years, primarily targeting Linux-based cloud infrastructure. The Kinsing malware uses different locations to stay undetected and hides itself as a system file.

Malware 128

Malware Cloud Open Source Systems Administration 128

Aqua Security

AUGUST 17, 2020

We have some exciting news about two new features in Tracee , Aqua’s open source container and system tracing utility. Tracee can provide user s with timely insights that previously required special knowledge and tools.?.

Malware 134

Malware Open Source Analysis Tools 134

Xebia

JUNE 12, 2020

But what does that mean in terms of security? The post A Review of Open Source Software Supply Chain Attacks appeared first on Xebia Blog. Likely, a lot of the code you run is not code you wrote. I’ll provide […].

Software Review 130

Software Review Open Source Software Malware 130

Tenable

FEBRUARY 2, 2024

CISA is calling on router makers to improve security, because attackers like Volt Typhoon compromise routers to breach critical infrastructure systems. And a cyber expert calls on universities to beef up security instruction in computer science programs. Meanwhile, data breaches hit an all-time high in the U.S. So said the U.S.

Infrastructure 127

Infrastructure Open Source Software Review ChatGPT 127

Lacework

DECEMBER 6, 2022

And the majority of this activity has been linked to the same python malware dubbed AndroxGh0st with at least one incident tied to an actor known as Xcatze. Note : Laravel is an open source PHP framework and the Laravel.env file is often targeted for its various configuration data including AWS, SendGrid and Twilio.

Malware 145

Malware AWS Windows PHP 145

CTOvision

JULY 29, 2015

Emerging Threats - now part of Proofpoint - is a world-leading provider of open source and commercial threat and malware intelligence. Founded in 2003 as a cyber security research community, Emerging Threats has become a de facto standard in network-based malware threat detection.

Open Source 97

Open Source Malware Education Analysis 97

CIO

MARCH 15, 2023

In today’s cybersecurity environment—with new types of incidents and threat vectors constantly emerging—organizations can’t afford to sit back and wait to be attacked. Going on the offensive with cybersecurity involves taking extra steps to preemptively identify weaknesses before bad actors can take advantage of them.

Firewall 146

Firewall eBook Network Malware 146

The Parallax

JANUARY 22, 2018

Its success was predicated not on “zero-day” vulnerabilities or new forms of malicious software, but rather on older, known malware delivered via an all-too-familiar method: phishing. The malware included hacked versions of end-to-end encrypted communication apps Signal and WhatsApp.

Malware 170

Malware Spyware Mobile Government 170

Palo Alto Networks

JUNE 7, 2021

The Unit 42 cybersecurity consulting group published research on the first known malware targeting Windows containers, which was discovered by Unit 42 researcher Daniel Prizmant and named Siloscape. Diagram of Windows container (source: Microsoft). Diagram of Kubernetes cluster (source: Kubernetes).

Malware 98

Malware Windows Software Review Open Source 98

Tenable

MAY 24, 2024

Plus, open source developers have a new platform to share threat intelligence. government is urging water plants to boost their cybersecurity in accordance with federal law, as hackers increasingly target these critical infrastructure organizations. Check out the EPA’s call for water plants to beef up their cyber defenses.

Open Source 63

Open Source Malware Software Guidelines 63

Tenable

AUGUST 25, 2023

Plus, why security leaders are prioritizing security prevention tools. Oh, and the White House wants your input on open source security. Time to start prepping for the quantum computing threat? CISA thinks so. Also, find out why ransomware attacks surged in July. And much more! 1 – The quantum computers are coming!

Malware 98

Malware Artificial Inteligence Open Source Artificial Intelligence 98

Palo Alto Networks

FEBRUARY 1, 2024

{{interview_audio_title}} 00:00 00:00 Volume Slider 10s 10s 10s 10s Seek Slider “AI’s Impact in Cybersecurity” is a blog series based on interviews with a variety of experts at Palo Alto Networks and Unit 42, with roles in AI research, product management, consulting, engineering and more.

Generative AI 125

Generative AI Artificial Inteligence Artificial Intelligence Social 125

Ivanti

SEPTEMBER 13, 2024

Legacy cybersecurity systems – many designed over a decade ago – fail to account for the new breed of attacker capabilities and vulnerabilities – nor for the reliance on human configuration that is the Achilles heel of so much software. Cybersecurity & Infrastructure Security Agency (CISA).

Weak Development Team 124

Weak Development Team Artificial Inteligence Software Review Firewall 124

O'Reilly Media - Ideas

APRIL 1, 2025

In addition to almost daily announcements about AI, a lot has been going on in programming, in security, in operations (which usually doesnt merit its own topic), and even in quantum computing. Like the rest of the OLMo family, its completely open: source code, training data, evals, intermediate checkpoints, and training recipes.

Trends 97

Trends Open Source Software Review Malware 97

Aqua Security

JANUARY 11, 2023

According to an article in Security Magazine , 98% of organizations have been negatively impacted by a cybersecurity breach in their supply chain. These findings show a significant threat and a disconnect between a business’s need for security and DevOps's need for agility and speed.

Software Review 97

Software Review Malware Open Source DevOps 97

O'Reilly Media - Ideas

FEBRUARY 4, 2025

Skys performance is similar to OpenAI o1-preview, and its fully open: Training data, weights, code, and infrastructure are all open source. 4M is an open source framework for training multimodal AI models. Fast-LLM is an open source library for training large language models. 32B-Instruct.

Artificial Inteligence 77

Artificial Inteligence Trends Software Review Open Source 77

Aqua Security

APRIL 21, 2022

Today, cloud native platforms are increasingly using eBPF-based security technology. Tracee is an open source runtime security and forensics tool for Linux that is powered by eBPF and is more optimized for secure tracing.

Linux 142

Linux Malware Open Source Analysis 142

O'Reilly Media - Ideas

MARCH 4, 2025

Codename Goose is a new open source framework for developing agentic AI applications. It uses Anthropics Model Context Protocol for communicating with systems that have data, and can discover new data sources on the fly. OCR4all provides free and open source optical character recognition software. 14B-Instruct-1M.

Artificial Inteligence 63

Artificial Inteligence Trends Open Source Linux 63

The Parallax

DECEMBER 6, 2019

The vulnerabilities, discovered by Ilja van Sprundel and Joseph Tartaro at security research company IOActive , and by Andrea Barisani at antivirus company F-Secure , affect a wide range of bootloaders, including Das U-Boot , Coreboot , Grub , Seabios , CFE , iPXE , and TianoCore , they disclosed at PacSec 2019 here in November.

Weak Development Team 48

Weak Development Team Software Review Hardware Windows 48

Aqua Security

SEPTEMBER 9, 2022

This blog was co-authored by Itamar Maouda Two years ago, the NSA (the United States' National Security Agency) revealed that Drovorub, an advanced Russian malware created by the GRU 85th GTsSS team, had been discovered targeting Linux systems. It has an advanced kernel rootkit that hooks several kernel functions.

Linux 139

Linux Malware Open Source Operating System 139

O'Reilly Media - Ideas

OCTOBER 8, 2024

In August 2024, we asked our customers to tell us about security: their role in security, their certifications, their concerns, and what their companies are doing to address those concerns. We had 1,322 complete responses, of which 419 (32%—roughly one-third) are members of a security team. are managers, 7.2% That gives us 27.9%

Security 124

Security Weak Development Team Software Review Training 124

Infinidat

APRIL 17, 2025

The solutions that were developed, extended, and/or accelerated together with these award winners are among the most interesting and noteworthy IT solutions on the market today for high-end enterprises spanning cyber security, containerization, next-generation data protection, system integration, and virtualization.

Technical Review 91

Technical Review Storage Enterprise Fractional CTO 91

CIO

MARCH 9, 2023

It’s completely intuitive, allows me to perform most tasks in less than 3 clicks, has all the functions that I need to perform banking on-the-go, is constantly updated with new features, comes with great performance and stability and most of all is very secure.

Weak Development Team 147

Weak Development Team Technical Review Software Review Open Source 147

Lacework

APRIL 26, 2022

Supply chain security is at the front of every CISOs mind. In a world where systems are interconnected, the Cloud is expanding seemingly without limits, and open source is everywhere, we are left to figure out how to secure an environment where so much is out of our control.

Software Review 98

Software Review Backup Systems Review SDLC 98

Tenable

DECEMBER 8, 2023

Meanwhile, the OpenSSF published 10 key principles for secure software development. Plus, malware used in fake browser-update attacks ballooned in Q3. Cybersecurity and Infrastructure Security Agency (CISA) issued a clarion call for software makers to use so-called “memory safe” programming languages. And much more!

Software Review 73

Software Review Software Malware Software Development 73

CIO

JULY 17, 2023

However, this shift requires a thorough understanding of the security implications and how a business can protect its data and applications. As with all technology introductions, it’s important to have clear security policies, tools, processes, and training. Watch on-demand here. How is the cloud being attacked and why?

Cloud 148

Cloud How To Open Source Malware 148

Palo Alto Networks

DECEMBER 29, 2022

While it might seem counterintuitive to revisit last week’s newspaper for valuable information, “Those who cannot remember the past are condemned to repeat it.” Stepping back to recollect the security events from the recent past is particularly important, as the risk of repeating past mistakes is particularly high. Beginning on Jan.

Malware 84

Malware Linux Telecommunications Government 84

O'Reilly Media - Ideas

APRIL 16, 2024

ArsTechnica , Bruce Schneier , and other sources have good discussions of the attack and its implications. The malware was introduced into xz Utils by one of its maintainers, an entity named Jia Tan. Over two years, Jia Tan gradually added compromised source files to xz Utils. Everyone is responsible for security.

Malware 122

Malware Open Source Linux Social 122

CIO

AUGUST 25, 2022

This raises new questions about managing and operating these devices in a consistent, reliable, and secure manner. After all, you wouldn’t want your haptic glove to misbehave in the metaverse or your autonomous vehicle sensors to be hijacked by malware. Secure code for the edge. Operating Systems for the edge.

CTO 148

CTO 3D Linux Open Source 148

Tenable

APRIL 19, 2024

Check out recommendations for securing AI systems from the Five Eyes cybersecurity agencies. Meanwhile, a new open-source tool aims to simplify SBOM usage. Check out the AI security recommendations jointly published this week by cybersecurity agencies from the Five Eyes countries: Australia, Canada, New Zealand, the U.K.

Artificial Inteligence 79

Artificial Inteligence Trends Analysis Technical Advisors 79

CIO

JUNE 13, 2024

Not instant perfection The NIPRGPT experiment is an opportunity to conduct real-world testing, measuring generative AI’s computational efficiency, resource utilization, and security compliance to understand its practical applications. For now, AFRL is experimenting with self-hosted open-source LLMs in a controlled environment.

Generative AI 179

Generative AI Testing Artificial Inteligence Artificial Intelligence 179

Tenable

SEPTEMBER 29, 2023

After double-digit growth in the past two years, cybersecurity budgets expanded more modestly in 2023. 1 - Cybersecurity budgets grow, but less than in years past Cybersecurity teams on average saw an increase in their 2023 budgets, but the bump was much smaller than in previous years, as organizations across the board reined in IT spending.

Budget 85

Budget Hardware Weak Development Team Software Review 85