Software supply chain attacks are evolving as open source and AI-generated code introduce new third-party risks. Learn how visibility and shift-left security reduce exposure.

Since Russian troops invaded Ukraine more than three years ago, Russian technology companies and executives have been widely sanctioned for supporting the Kremlin. That includes Vladimir Kiriyenko, ...

Open source AI is gaining momentum across major players. DeepSeek recently announced plans to share parts of its model architecture and code with the community. Alibaba followed suit with the release ...

Open-source software has become a prime target in the escalating wave of cybersecurity threats. As attacks grow more sophisticated, the open-source community is racing to close critical security gaps ...

There's a false sense of security around open source code, according to Trustwave researchers Brandon Myers and Assi Barak. Their deeper point was that open source code is prone to vulnerabilities ...

Cybersecurity professionals are quick to see the risks associated with open source — a developer may unknowingly insert buggy open source code into an enterprise application, which could make the ...

As software supply chains grow increasingly interconnected, security threats continue to evolve. While common risks like third-party vulnerabilities and dependency issues are well-known, less-common ...

Unresolved security debt is leaving organizations at greater risk of security breaches as fix times grow longer and the software ecosystem increasingly complexifies. Organizations are taking longer to ...

The U.S. Department of Justice and Google have concluded a two-week hearing that addressed Google's monopoly in online advertising technology. Closing arguments are set for mid-November. The ruling is ...

If a powerful technology poses significant risks to business and society, should it ever be freely available? Many argue that AI falls into this category. Some even warn of existential threats. Since ...

The Open Source Security Foundation (OpenSSF) has claimed a “significant milestone” after releasing a new set of best practices designed to improve the security posture of open source projects. The ...

Headlines today obsess over tariffs squeezing margins for medical device manufacturers (MDMs). But while tariffs can shave profits, insecure software can obliterate them—and result in patient safety ...