Connect with us
Research from a pair of bug bounty hunters has led to the discovery of a high-impact web security vulnerability in popular dashboard tool Grafana. The cross-site request forgery (CSRF) vulnerability...
The Open Source Security Foundation (OpenSSF) has launched a project to improve the security of the open source software ecosystem, backed by a $5 million investment from Microsoft...
An open source fuzzing tool developed by researchers at the Software Reliability Group of Imperial College London aims to solve some of the thorny problems of testing network...
An uninitialized memory leak vulnerability in the H2O HTTP server project has been patched. In a technical write-up published on January 31, independent security researcher Emil Lerner said...
The maintainers of APKLeaks have patched a critical vulnerability that could be exploited for the remote execution of arbitrary code. Created by Indonesia-based security engineer Dwi Siswanto, APKLeaks is...
The European Commission (EC) has launched a bug bounty program for open source projects that underpin its public services. Bug bounty hunters will be offered up to €5,000...
Vulnerabilities in CMS platform Umbraco could allow an attacker to takeover a user’s account, researchers warn. Umbraco is a free and popular open source content management system (CMS)...
Security researchers have a new open source phishing email analysis tool at their disposal that automates the entire analysis process. Based on incident response platform TheHive, observable analysis...
A White House summit focused on open source security has emphasized the need for greater collaboration between tech giants, open source volunteers, and the US federal...
The Apache Software Foundation (ASF) has warned that its efforts to respond rapidly to security vulnerabilities are being undermined by organizations running end-of-life versions of Apache...
Recent Comments