Open source software consumption has risen to a record-breaking 6.6 trillion downloads, according to the 10th annual State of the Software Supply Chain report by Sonatype. The report, based on data from over 7 million open source projects, reveals a surge in open source malware, with a 156% YOY increase in malicious packages. Furthermore, it highlights the software supply chain risk resulting from maintainers not promptly addressing vulnerabilities and the non-upgrade of application dependencies. These findings underline the urgent need for proactive security and comprehensive dependency management.
Hackers Exploit Weaponized Word Docs to Steal Windows Login Credentials
FortiGuard Labs has detected a new phishing scam targeted at Windows users which sends malicious Word documents disguised as sales orders. These documents exploit a
