Morningstar

Aqua Security Launches Trivy Partner Connect to Expand Open Source Security Scanning Ecosystem | Morningstar

This new initiative expands the commercial ecosystem around Trivy, the world’s most popular open source vulnerability and misconfiguration scanner. The first two partners to join the program are Echo ...
Dark Reading

Malicious Open Source Packages Spike 188% YoY

Due to automation and a high-reward, low-risk threat environment, open source malware increased 188% year over year in the second quarter of this year. Supply-chain security vendor Sonatype today ...
Infosecurity-magazine.com

Over 200 Malicious Open Source Packages Traced to Lazarus Campaign

North Korean threat actors have distributed over 200 malicious open source packages, in an audacious new cyber-espionage campaign, according to Sonatype. The security vendor blocked 234 unique npm and ...
Dark Reading

DARPA: Closing the Open Source Security Gap With AI

Open source components continue to cause huge problems for security practitioners, and AIxCC was created to determine whether automation could help close the gap. At DEF CON 33, DARPA announced the ...

5 open-source privacy apps for Android that actually deserve your attention

Android privacy risks from daily hacks demand vigilance. Install these 5 open-source apps to stay protected from trackers, ...
ZDNet

Linux will be unstoppable in 2026 - but one open-source legend may not survive

The Linux desktop will continue to grow. Linux and open-source security will both improve. Firefox is in deep, deep trouble. Clearly, AI will play a larger role in Linux and open source next year, but ...