Wired

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

A so-called software supply chain attack, in which hackers corrupt a legitimate piece of software to hide their own malicious code, was once a relatively rare event but one that haunted the ...
Forbes

Source Code Is Not The Product: Why Commercial Open Source Works

Commercial open source is often framed in the wrong way. On one side, you have people who treat open source as a moral commitment that becomes compromised the moment money enters the picture. On the ...
Bleeping Computer

Trellix source code breach claimed by RansomHouse hackers

The attack on the Trellix source code repository disclosed last week has been claimed by the RansomHouse threat group, which leaked a small set of images as proof of the intrusion. Yesterday, the ...
InfoWorld

The best new features in Python 3.15

Highlights of Python 3.15, now available in beta, include lazy imports, faster JITs, better error messages, and smarter profiling. The first full beta of Python 3.15 ...
Infosecurity-magazine.com

Trellix Reveals Unauthorized Access to Source Code

A leading US cybersecurity vendor has been breached by threat actors who managed to access its source code, it has been revealed. Privately held firm Trellix disclosed the incident on May 4, claiming ...
New Scientist

Backlash builds over NHS plan to hide source code from AI hacking risk

A decision by NHS England to withdraw open-source code created with UK taxpayer funds because of the risk posed by computer-hacking AI models is attracting growing backlash. Last month, Mythos, an AI ...
ZDNet

Microsoft finally open sources DOS 1.0 - and it's so much more than the code

PC-DOS 1.00 would lead to Microsoft becoming computing's top dog Microsoft continues to embrace open source. The source code and annotations provide insight into the operating system's earliest days.
InfoQ

Anthropic Accidentally Exposes Claude Code Source via npm Source Map File

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Birgitta Böckeler, Distinguished Engineer at ...
Dark Reading

Claude Source Code Leak Highlights Big Supply Chain Missteps

Sophisticated cyberattacks targeting a variety of open source projects, including the Trivy security-scanner project, the widely used Axios Javascript package, and now Anthropic's accidental ...
TechCrunch

Anthropic took down thousands of GitHub repos trying to yank its leaked source code — a move the company says was an accident

Anthropic accidentally caused thousands of code repositories on GitHub to be taken down while trying to pull copies of its most popular product’s source code off the internet. On Tuesday, a software ...
Gizmodo

Anthropic Can’t Cover Up Its Claude Code Leak Fast Enough

Most companies are extremely protective of their planned product releases, using internal code names and requiring journalists to agree to embargoes before revealing details. Anthropic has ...