A hacker inserted malware in Axios, an open-source web tool downloaded tens of millions of times weekly, in a widespread hack ...

Malware in open source software is no longer a fringe threat--it's accelerating at an unprecedented rate. In 2025 alone, more than ...

The full breadth of this incident is still unclear, but given the popularity of the compromised package, we expect it will ...

A new hacking group has been rampaging the Internet in a persistent campaign that spreads a self-propagating and never-before ...

The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.

A growing body of academic research warns that AI-assisted “vibe coding,” where language models assemble software from ...

Over the last decade, enterprises have transformed the way they build software. What used to be mostly proprietary code is now dominated by open-source components. In many cases, more than 80% of an ...

Minimus, the leader in hardened container images and secure container software, today announced the Minimus Open Source ...

The Office of the National Cyber Director wants software providers to "contribute back to the security of the open source software they depend upon." The federal government wants public input on how ...

"I wasn’t expecting that things would break so fast." The post OpenClaw Bots Are a Security Disaster appeared first on ...

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...

Vibe coding may be easier than taking a class, but it has some unseen downsides that might eventually build up into major ...