Content Paint
Search
Sign in
Membership

Security

Security  | Oct 13, 2023
A free new repository offers intel on malicious open source
Open Source Security Foundation's (OpenSSF) new Malicious Packages Repository

OpenSSF's new Malicious Packages Repository is free to use in and available in OSV format.

Open Source  | Oct 12, 2023
CRA(P): Will Europe throw the open source baby out with the bathwater?
CRA(P): Will Europe throw the open source baby out with the bathwater?

"The major concerns are that the responsibility for compliance would fall on the wrong parties..."

 |  Software  | Oct 11, 2023
Patch Tuesday is 20: Curl fix lands, Skype’s under attack and there’s a wormable pre-auth RCE in the mix
Patch Tuesday is 20: Curl fix lands, Skype’s under attack and there’s a wormable pre-auth RCE in the mix

A CVSS 9.8, pre-auth RCE that lets an attacker execute arbitrary code without user interaction is wormable on systems where Message Queuing is enabled.

Security  | Oct 10, 2023
Most of the internet exposed to HTTP/2 zero day, as hyperscalers report record DDoS attacks
Most of the internet exposed to HTTP/2 zero day, as hyperscalers report record DDoS attacks

"Any enterprise or individual that is serving an HTTP-based workload to the Internet may be at risk from this attack"

Security  | Oct 09, 2023
"The worst security flaw in a long time" is about to land. With 20 billion curl installations, be worried
"The worst security flaw in a long time" is about to land. With 20 billion curl installations, be worried

Could a pending curl vulnerability be the next Log4j?

Security  | Oct 06, 2023
The MGM hack: A $100m hit
mgm hack $100 million

"The Company currently believes that its cybersecurity insurance will be sufficient to cover the financial impact to its business as a result of the operational disruption..."

Security  | Oct 05, 2023
The State Department is running 27,000 end-of-life systems but its CIO has been hamstrung...
The State Department is running 27,000 end-of-life systems but its CIO has been hamstrung...

Two new women in charge as CIO and CISO aim to stop the rot

 |  Security  | Oct 04, 2023
Bad Behaviour and Dirty Downloads: 2.1 billion OSS packages with known vulns downloaded this year.
Bad Behaviour and Dirty Downloads: 2.1 billion OSS packages with known vulns downloaded this year.

Strikingly, only 11% of open source projects are ‘actively maintained'. Should you be worried? Well, probably, yes.

 |  Security  | Oct 03, 2023
Buffer overflow bug gives root on potentially millions of Linux boxes
Buffer overflow bug gives root on potentially millions of Linux boxes

Do you, or do you not, need to get your knickers in a twist? Well, that depends on your risk tolerance..

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.