Dark Reading

The US government aims to support open source projects, while the European Union seeks to make open source projects liable for their software. Which approach will lead to more security?…

Responsible disclosure must strike a balance between the immediate need to protect users and the broader security implications for the entire community….

Updated cybersecurity regulations herald a new era of transparency and accountability in the face of escalating industry vulnerabilities….

…

…

What application security posture management does, it does well. But you’ll still need to fill in some holes, especially concerning API security….

The nature of cloud environments means security and technical teams need a different mindset to understand and manage their new attack surface….

The GitLab code hijacks computer resources to mine Dero cryptocurrency as part of a larger cryptomining operation….

Pakistani threat group Transparent Tribe targets military and diplomatic personnel in India and Pakistan with romance-themed lures in the latest spyware campaign….

The global infosec community needs to help African nations defend against growing threats. …

The maintainers of the widely used library recently patched multiple memory corruption vulnerabilities that attackers could have abused to, ahem, curse targets with malicious code and escalate privileges….

Escalating incursions into military base infrastructure, telecom networks, utilities, and more signal that Beijing is laying the groundwork for mass disruption….

Dark Reading News Desk: CrowdStrike’s Adam Meyers talks China, Iran, Russia, and more in this expert dive into the current APT threat actor landscape….

…

Five critical bugs, zero-days exploited in the wild, Exchange Server, and more headline Microsoft’s September 2023 Patch Tuesday release. Here’s what to patch now….

…