open source vulnerabilities Archives

New Wave of Self-Replicating NPM Malware Exposes Critical Gaps in Software Supply Chain Security

Alan Shimel | September 19, 2025 | AI-driven malware, cryptographic checks NPM, dependency scanning, developer security hygiene, Node.js security, NPM worm malware, open source package manager risks, open source vulnerabilities, SBOM best practices, signed package publishing, software bill of materials, software supply chain attacks 2025, supply chain security, typosquatting attacks, zero-trust build environments

The Shai-Hulud NPM worm highlights rising open-source supply chain threats. Secure builds with SBOMs, MFA, signed packages, and zero-trust defenses ...

Security Boulevard

Open Source Security Incidents and How Organizations Can Respond

rezilion | July 19, 2023 | open source, open source risk, Open Source Security, open source vulnerabilities, Uncategorized

Attacks that leverage vulnerabilities in open source software are on the rise. How security teams respond to these incidents is key to what impact they will ultimately have. Oftentimes the attacks stemming ...

Rezilion

Security Teams Need to Address One of the Biggest Software Supply Chain Risks: Open Source

rezilion | July 17, 2023 | open source, open source risk, Open Source Security, open source vulnerabilities, rsa, software supply chain, software supply chain risk, Uncategorized

One of the biggest threats to software supply chain security is open source software applications and components. Many enterprises and small businesses have come to rely on open source solutions, and they ...

Rezilion

Where is Your Risk? Vulnerabilities in Open Source Software

rezilion | January 17, 2023 | dynamic sbom, Log4Shell, open source vulnerabilities, SBOM, software bill of materials, Uncategorized, Vulnerability Management

The first post of this series on the software-related risks organizations are facing looked at vulnerabilities introduced in development. In this post we look at the risks of open source vulnerabilities. Organizations ...

Rezilion

open source vulnerabilities

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On