The EU’s new regulations may require software publishers to disclose unpatched vulnerabilities to government officials within one day of their discovery, which concerns many IT security professionals. They worry that the quick deadline could allow adversaries to exploit the vulnerabilities before they can be fixed, and that governments may abuse this information for surveillance purposes. Cybersecurity experts suggest alternative solutions like tiered disclosures and preliminary notifications, which give organizations more time to handle the vulnerabilities.
GitHub hit by a sophisticated malware campaign as ‘Banana Squad’ mimics popular repos
The repository names are identical to other repositories, indicating typo-squatting. These repositories also contain search keywords and emojis, signifying potential AI use. ReversingLabs warns developers
