Hackers have compromised dozens of popular open source packages in an ongoing supply chain attack

The attacks are part of a wider campaign known as Mini Shai-Hulud, which has already compromised several open source projects and, in turn, developers and companies that use them.

Microsoft’s open source tools were hacked to steal passwords of AI developers

Microsoft shut down dozens of GitHub code repositories for Azure and AI coding tools after a reported hack.

Open-source security is a mess - IBM and Red Hat bet $5 billion and 20,000 engineers can fix it

Open-source security is a mess - IBM and Red Hat bet $5 billion and 20,000 engineers can fix it ...
New Scientist

Flood of AI 'garbage' is pushing open-source developers to the limit

The modern world depends on open-source software maintained by volunteers, but the added demands of checking and fixing ...
CNBC

Mythos was the critical trigger for IBM's open-source cybersecurity push, Krishna says

IBM and Red Hat are investing $5 billion into a new cybersecurity push to address vulnerabilities in open-source software. CEO Arvind Krishna said the launch of Anthropic's Mythos was the "critical ...