Submissions from socket.dev

		Trojan Embedded in Crytic-Compilers Python Package Targets Blockchain Utility (socket.dev)
		1 point by Anon84 2 days ago \| past \| discuss
		White House to Tackle Cybersecurity Regulation Fragmentation: CISOs Spend Up To (socket.dev)
		2 points by feross 3 days ago \| past \| discuss
		Trojan Embedded in Crytic-Compilers Python Package Targets Blockchain Utility (socket.dev)
		3 points by pollyplummer 3 days ago \| past \| discuss
		NIST Announces Major Contract to Clear NVD Backlog by September (socket.dev)
		3 points by feross 5 days ago \| past \| discuss
		Mobile, Alabama Hospital Refuses to Pay Settlement in Landmark Ransomware Death (socket.dev)
		5 points by feross 9 days ago \| past \| discuss
		New Report Warns of LLM-Enhanced Cyber Threats: Polymorphic Malware, Customer (socket.dev)
		2 points by feross 11 days ago \| past \| discuss
		Python Software Foundation Announces 5-Year Sponsorship Commitment from Fastly (socket.dev)
		3 points by rbanffy 11 days ago \| past \| discuss
		ESLint Approves RFC to Add Support for TypeScript Config Files (socket.dev)
		3 points by feross 15 days ago \| past
		The Alarming NVD Backlog: Over 50% of Known Exploited Vulnerabilities Await (socket.dev)
		4 points by feross 16 days ago \| past \| 1 comment
		The push to ban ransom payments is gaining momentum (socket.dev)
		127 points by feross 17 days ago \| past \| 166 comments
		SEC Cracks Down on Unreported Data Breaches with New 30-Day Disclosure (socket.dev)
		2 points by feross 19 days ago \| past
		Python Software Foundation Announces 5-Year Sponsorship Commitment from Fastly (socket.dev)
		4 points by feross 22 days ago \| past
		LDAPjs Open Source Project Decommissioned After Maintainer Receives Abusive (socket.dev)
		2 points by feross 23 days ago \| past
		CISA Launches Vulnrichment Project as NVD Backlog Hits 10k (socket.dev)
		2 points by feross 29 days ago \| past
		Socket Partners with CISA to Champion 'Secure by Design' Standards (socket.dev)
		2 points by feross 30 days ago \| past
		Recent Trends in Malicious Packages Targeting Discord (socket.dev)
		1 point by feross 31 days ago \| past
		AI and A16Z Podcast: Combatting Modern Supply Chain Attacks with AI (socket.dev)
		1 point by feross 32 days ago \| past
		NIST Drafts New Security Framework to Tackle Emerging Risks of Generative AI (socket.dev)
		1 point by feross 36 days ago \| past
		Risky Biz Podcast: How Shifts in Open Source Made It a Prime Attack Vector (socket.dev)
		2 points by feross 38 days ago \| past
		SSO (socket.dev)
		4 points by feross 40 days ago \| past
		The AI Advantage: Reshaping Cybersecurity in the Age of Autonomous Threats (socket.dev)
		2 points by feross 44 days ago \| past \| 1 comment
		UnitedHealth Group Discloses Protected Health Information Compromised For (socket.dev)
		1 point by feross 46 days ago \| past \| 1 comment
		Threat Actors Are Abusing GitHub's File Upload Feature to Host Malware (socket.dev)
		5 points by feross 47 days ago \| past \| 1 comment
		The Dark Side of Open Source (socket.dev)
		1 point by feross 50 days ago \| past
		NPM Package for ReExt React Components Library Exfiltrates Git Credentials (socket.dev)
		2 points by feross 51 days ago \| past
		OpenJS: "XZ Utils Cyberattack Likely Not an Isolated Incident" (socket.dev)
		65 points by feross 53 days ago \| past \| 25 comments
		Connect with Socket at RSA and BSidesSF 2024 (socket.dev)
		2 points by feross 54 days ago \| past
		OSI to Lead Discussions on Navigating the Challenges of Doing Business with Open (socket.dev)
		3 points by feross 57 days ago \| past
		Dependency Visualization: An Interactive Way to See Dependencies At (socket.dev)
		1 point by feross 58 days ago \| past
		Chinchilla Squeaks Podcast: Modern Solutions for Securing Software Supply Chains (socket.dev)
		1 point by feross 61 days ago \| past
		More