In 2024, the Linux and open-source software landscape has experienced notable advancements intertwined with pressing challenges, capturing the attention and efforts of developers, businesses, and security experts alike. This year has witnessed a transformation in business attitudes toward
The return of Gozi malware during the Black Friday shopping frenzy on November 29th, 2024, highlighted a significant issue in online security as consumers swarmed online stores to secure the best deals. Cyber criminals leveraged this chaotic environment, resulting in a surge of Gozi malware
SonarSource SA, operating under the name Sonar, has recently signed an agreement to acquire Tidelift Inc., a company specializing in the management of open-source components. This acquisition will significantly enhance Sonar's ability to secure software supply chains by integrating Tidelift's
Ivanti has announced a significant patch update addressing 11 vulnerabilities across its product range, including five critical-severity issues that could potentially expose users to severe security risks. The most notable security flaw identified was CVE-2024-11639 – an authentication bypass in
A staggering 97% of the top 100 U.S. banks faced substantial risks due to third-party data breaches in 2024, as reported by SecurityScorecard. This alarming statistic underscores significant vulnerabilities in their supply chains, primarily driven by the increasing reliance on third-party vendors
The emergence of BreakingWAF, a significant vulnerability affecting Web Application Firewalls (WAFs) from renowned providers such as Akamai, Cloudflare, and Imperva, has sent shockwaves through the cybersecurity community. This formidable flaw poses a grave threat, especially to around 40% of
