[NCSC-FI News] Google to create security team for open source projects

Google announced on Thursday that it is creating a new “Open Source Maintenance Crew” tasked with improving the security of critical open source projects
Google also unveiled two other projects Google Cloud Dataset from Open Source Insights designed to help developers better understand the structure and security of the software they use
“This dataset provides access to critical software supply chain information for developers, maintainers and consumers of open-source software, ” Google explained in a blog post
also: https://blog.google/technology/safety-security/shared-success-in-building-a-safer-open-source-community/

Source: Read More (NCSC-FI daily news followup)

You might be interested in …

[HackerNews] Beastmode DDoS Botnet Exploiting New TOTOLINK Bugs to Enslave More Routers

All posts, HackerNews

A variant of the Mirai botnet called Beastmode has been observed adopting newly disclosed vulnerabilities in TOTOLINK routers between February and March 2022 to infect unpatched devices and expand its reach potentially. “The Beastmode (aka B3astmode) Mirai-based DDoS campaign has aggressively updated its arsenal of exploits,” Fortinet’s FortiGuard Labs Research team┬ásaid. “Five new exploits were […]

Read More

[ZDNet] Ransomware: Patient data could be ‘abused’ after health service attack, warns Irish government

All posts, ZDNet

The Irish health authorities have warned that medical information might be abused by attackers as disruption continues to cripple some of the country’s key services. Source: Read More (Latest topics for ZDNet in Security)

Read More

[HackerNews] Researchers Demonstrate New Side-Channel Attack on Homomorphic Encryption

All posts, HackerNews

A group of academics from the North Carolina State University and Dokuz Eylul University have demonstrated what they say is the “first side-channel attack” on homomorphic encryption that could be exploited to leak data as the encryption process is underway. “Basically, by monitoring power consumption in a device that is encoding data for homomorphic encryption, […]

Read More