Open
-
Blog
The open source industry is booming as firms invest billions in ecosystem each year
The open source software industry is booming, according to recent analysis, with organizations now investing around $7.7 billion in the ecosystem each year. Researchers from GitHub, the Linux Foundation, and the Laboratory for Innovation Science at Harvard (LISH) found the median investment in open source now stands at $520,600 on a business-by-business basis. This isn’t all direct funding, however, with…
Read More » -
Blog
Run.ai software will be made open source in wake of Nvidia acquisition
Run:ai has confirmed its acquisition by Nvidia has been successful, adding that the chip giant plans to make its AI optimization tools open source so it can work across a wider variety of systems beyond Nvidia’s own GPUs. Founded in 2018, Run:ai develops software to help support AI infrastructure, building a platform on Kubernetes, the orchestration layer for much of…
Read More » -
Blog
Hackers exploit Four-Faith router flaw to open reverse shells
Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells back to the attackers. The malicious activity was discovered by VulnCheck, who informed Four-Faith about the active exploitation on December 20, 2024. However, it is unclear if security updates for the vulnerability are currently available. “We notified Four-Faith and our…
Read More » -
Blog
AI ‘slop security reports’ are driving open source maintainers mad
Open source project maintainers are drowning in a sea of AI-generated ‘slop security reports’, according to security report triage worker Seth Larson. Larson said he’s witnessed an increase in poor-quality reports that are wasting maintainers’ time and contributing to burnout. “Recently I’ve noticed an uptick in extremely low-quality, spammy, and LLM-hallucinated security reports to open source projects. The issue is…
Read More » -
Blog
Want to Contribute to Open Source Software? Here’s How to Get Started
Did you know you can contribute to many open-source projects without being an expert on GitHub, Git, or coding? Whether or not you’re an experienced programmer, you can learn how to use the most popular source code host in the world in just a few short steps. What Is Git and What Is GitHub? Git is the world’s leading version…
Read More » -
Blog
Open source malware surged by 156% in 2024
The growth of open source malware has continued apace in 2024, according to new research, with cyber criminals taking advantage of the proliferation of open source software. A report from software supply chain management firm Sonatype found there was a 156% increase in malicious packages identified on open source repositories over the past year. Sonatype has identified 778,529 malicious open…
Read More » -
Blog
How to open Photos in Windows (9 ways)
Navigating through your digital photos should be one of the easiest things to do. Fortunately, the Photos app in Windows 10 and Windows 11 is designed to make that happen. It doesn’t matter if you want to see, organize, or edit your pictures, you can do it with this app’s user-friendly interface and handy tools. If you’ve ever found yourself…
Read More » -
Blog
The open source community relies on a loyal army of committed developers – but their security practices are putting the whole ecosystem at risk
Insufficient security on individual developer accounts maintaining some of the most popular packages poses a significant threat to the open source community and beyond, according to a report from the Linux Foundation. The Linux Foundation Census is the third report of its kind looking into the widespread use of free and open source software (FOSS), aggregating data from over 12…
Read More » -
Blog
A security researcher stumbled upon 600,000 sensitive files left in the open by data broker
A large database containing sensitive information collected by a data broker was left in a publicly accessible cloud container without basic protections, a security researcher has revealed. Jeremiah Fowler recently discovered a non-password protected database that held more than 600,000 records belonging to SL Data Services (Propertyrec). SL Data Services is a background check company that offers a range of…
Read More » -
Blog
/cdn.vox-cdn.com/uploads/chorus_asset/file/23951561/VRG_Illo_STK179_L_Normand_SundarPichai_Neutral.jpg)
DOJ says Google must sell Chrome to crack open its search monopoly
The Department of Justice says that Google must divest the Chrome web browser to restore competition to the online search market, and it left the door open to requiring the company to spin out Android, too. The filing includes a broad range of requirements the DOJ hopes the court will impose on Google — from restricting the company from entering…
Read More »