Communications of the ACM

Fifty Years of Open Source Software Supply-Chain Security

An open source software supply-chain vulnerability is an exploitable weakness in trusted software caused by a third-party, ...
Developer Tech

XZ attack reveals unlearned open-source security lessons

The XZ attack is a backdoor that reminds us our biggest open-source security threats are from decades of unlearned lessons.

Your passkeys could be vulnerable to attack, and everyone - including you - must act

When a clickjack attack managed to hijack a passkey authentication ceremony, were password managers really to blame? ZDNET's investigation reveals a more complicated answer.
Te Pūnaha Matatini

The ecosystem of software

The software ecosystem is a complex system, and this complexity is a byproduct of evolution, collaboration and innovation.

WatchGuard warns of critical vulnerability in Firebox firewalls

WatchGuard has released security updates to address a remote code execution vulnerability impacting the company's Firebox ...

Microsoft lifts Windows 11 update block after face detection fix

Microsoft has removed a compatibility hold that prevented devices with integrated cameras from installing Windows 11 24H2 due ...
CSO Online

WatchGuard patches ‘critical’ VPN flaw in firewalls that could lead to compromise

WatchGuard has patched a dangerous branch office and mobile VPN configuration vulnerability affecting nearly three dozen ...
Bay News 9

St. Pete City Council approves extra funding for Tropicana Field repair

ST. PETERSBURG, Fla. — UPDATE: The St. Pete City Council unanimously agreed Thursday to spend more money on repairs to Tropicana Field. They have signed off on nearly $1 million of work, with most of ...