CISA Flags 2-Year-Old Oracle WebLogic Vulnerability as Actively Exploited

CISA added Oracle WebLogic flaw CVE-2024-21182 to its KEV catalog, giving federal agencies until June 4 to patch exposed ...
iteuropa

Dynatrace can now reduce developer debugging times by up to 95%

Observability platform Dynatrace has made its Live Debugger generally available to developers, service providers and enterprises. First promoted at its partner and customer event in Las Vegas earlier ...
GitHub

Duplicate __debug_package causes problems for spec files directly using %debug_package

The change introduced in /usr/lib/rpm/macros in 1a9803d started causing the rpminspect test suite to fail for the debuginfo package tests. Looking in to it, I found that the duplicate __debug_package ...
The Hacker News

Malicious NPM Packages Exfiltrate Hundreds of Developer SSH Keys via GitHub

Two malicious packages discovered on the npm package registry have been found to leverage GitHub to store Base64-encrypted SSH keys stolen from developer systems on which they were installed. Software ...
ZDNet

CIQ, Oracle, and SUSE unite behind OpenELA to take on Red Hat Enterprise Linux

When Mike McGrath, Red Hat's Red Hat Core Platforms vice president, announced that Red Hat was putting new restrictions on who could access Red Hat Enterprise Linux (RHEL)'s code, other Linux ...
The Hacker News

Researchers Uncover 3 PyPI Packages Spreading Malware to Developer Systems

A threat actor by the name Lolip0p has uploaded three rogue packages to the Python Package Index (PyPI) repository that are designed to drop malware on compromised developer systems. The modules come ...
Neowin

Developer claims that Windows Package Manager copied AppGet

Keivan Beigi, the developer behind AppGet, is claiming that Microsoft has copied his idea. He claims that Microsoft was originally planning to hire him, but he suddenly never heard back. At Build ...