Techly NewsGet the app

Get the latest tech news

OpenSSF warns of Open Source Social Engineering Threats


What are the trust best practices? We honestly don't know yet. But, if we're to trust our open source projects, we must figure it out.

Jia Tan, the mysterious hacker who became a top XZ programmer and maintainer, before inserting a backdoor in the code, had spent years establishing his project credibility before making his move. Chris Hughes, chief security advisor at Endor Labs, told me, he “suspects that many of these are already underway and may have already been successful but haven’t been exposed or identified yet.” As Jim Zemlin, the Linux Foundation ‘s executive director, said at the Open Source Summit North America in Seattle, we’ve been making progress with security.

Get the Android app

Or read this on r/technology

Read more on:

Photo of open source

open source

Photo of openssf

openssf

Related news:

News photo

Oolite: An open source open-world space opera

News photo

Open source versus Microsoft: The new rebellion begins

News photo

Open source versus Microsoft: The new rebellion begins

« Singapore infosec boss warns China/West tech split will be bad for interoperability
TSMC Cuts Chip Market Outlook as Consumer Weakness Persists »