open source

OpenSSH 10.3 patches five security bugs and drops legacy rekeying support

OpenSSH 10.3 patches five security bugs and drops legacy rekeying support 2026-04-02 at 18:58 By Anamarija Pogorelec OpenSSH 10.3 shipped carrying five security fixes alongside feature additions and a set of behavior changes that will break compatibility with older SSH implementations that do not support rekeying. Rekeying compatibility removed SSH clients and servers that lack […]

OpenSSH 10.3 patches five security bugs and drops legacy rekeying support Read More »

Rspamd 4.0.0 ships memory savings, a new scan protocol, and a required migration step

Rspamd 4.0.0 ships memory savings, a new scan protocol, and a required migration step 2026-03-31 at 15:43 By Sinisa Markovic The open-source spam filtering platform Rspamd released version 4.0.0, delivering infrastructure changes across its scan protocol, memory model, hash storage, and configuration system. Several of the changes are breaking, and at least one requires a

Rspamd 4.0.0 ships memory savings, a new scan protocol, and a required migration step Read More »

Intel puts its data center performance knowledge on GitHub

Intel puts its data center performance knowledge on GitHub 2026-03-31 at 15:43 By Anamarija Pogorelec Intel engineers have published a centralized repository of data center performance knowledge on GitHub, giving practitioners direct access to tuning guides, configuration recommendations, and optimization recipes that previously required hunting across forums and scattered documentation. The repository, called Optimization Zone,

Intel puts its data center performance knowledge on GitHub Read More »

Hottest cybersecurity open-source tools of the month: March 2026

Hottest cybersecurity open-source tools of the month: March 2026 2026-03-31 at 07:37 By Anamarija Pogorelec Presented here is a curated selection of noteworthy open-source cybersecurity solutions that have drawn recognition for their ability to enhance security postures across diverse settings. BlacksmithAI: Open-source AI-powered penetration testing framework BlacksmithAI is an open-source penetration testing framework that uses

Hottest cybersecurity open-source tools of the month: March 2026 Read More »

Telnyx Targeted in Growing TeamPCP Supply Chain Attack

Telnyx Targeted in Growing TeamPCP Supply Chain Attack 2026-03-30 at 14:26 By Ionut Arghire Two malicious versions of the popular SDK were uploaded to the PyPI registry, targeting Windows, macOS, and Linux. The post Telnyx Targeted in Growing TeamPCP Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Telnyx Targeted in Growing TeamPCP Supply Chain Attack Read More »

SystemRescue 13 updates its kernel to Linux 6.18 LTS, adds new recovery tools

SystemRescue 13 updates its kernel to Linux 6.18 LTS, adds new recovery tools 2026-03-30 at 10:37 By Anamarija Pogorelec Bootable Linux recovery environments occupy a specific niche in the systems administration and incident response toolkit. SystemRescue, an Arch-based live distribution built for repairing unbootable systems and recovering data from damaged drives, has shipped version 13.00

SystemRescue 13 updates its kernel to Linux 6.18 LTS, adds new recovery tools Read More »

ShipSec Studio brings open-source workflow orchestration to security operations

ShipSec Studio brings open-source workflow orchestration to security operations 2026-03-30 at 08:04 By Anamarija Pogorelec Security teams have long relied on a mix of shell scripts, cron jobs, and loosely connected tools to chain reconnaissance and vulnerability scanning work together. ShipSec Studio, an open-source security workflow automation platform from ShipSec AI, aims to replace that

ShipSec Studio brings open-source workflow orchestration to security operations Read More »

TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware

TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware 2026-03-27 at 15:46 By Zeljka Zorz TeamPCP continues is supply chain compromise rampage, with telnyx on PyPI being the latest maliciously modified package. What happened? Telnyx is a widely used software development kit (SDK) for the Telnyx AI Voice Agent service. According to Endor Labs researchers,

TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware Read More »

Tails 7.6 ships automatic Tor bridge retrieval and a new password manager

Tails 7.6 ships automatic Tor bridge retrieval and a new password manager 2026-03-27 at 01:05 By Anamarija Pogorelec Tails 7.6 is out, and for users operating on networks that block Tor, the most consequential addition is built-in bridge retrieval. The Tor Connection assistant can now detect when a direct connection to Tor is restricted and

Tails 7.6 ships automatic Tor bridge retrieval and a new password manager Read More »

LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks

LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks 2026-03-25 at 14:01 By Zeljka Zorz A slew of supply chain attacks against popular open source tools and packages appears to have been orchestrated by TeamPCP, a cybercriminal group that rose to prominence in late 2025. The latest victim of the group is BerryAI’s popular

LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks Read More »

Kali Linux 2026.1 ships BackTrack mode, eight new tools, and a kernel upgrade to 6.18

Kali Linux 2026.1 ships BackTrack mode, eight new tools, and a kernel upgrade to 6.18 2026-03-25 at 08:07 By Anamarija Pogorelec Penetration testers running Kali Linux have a new release to work with. Version 2026.1 delivers the annual theme refresh, a new BackTrack-inspired mode in kali-undercover, eight tools added to the network repositories, a kernel

Kali Linux 2026.1 ships BackTrack mode, eight new tools, and a kernel upgrade to 6.18 Read More »

NVIDIA puts GPU orchestration in community hands

NVIDIA puts GPU orchestration in community hands 2026-03-24 at 14:02 By Mirko Zorz GPU-accelerated AI workloads now run on Kubernetes in the large majority of enterprise environments. Managing those workloads at scale has required specialized tooling that, until now, remained under vendor control. NVIDIA moved to change that at KubeCon Europe in Amsterdam this week,

NVIDIA puts GPU orchestration in community hands Read More »

Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack

Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack 2026-03-23 at 16:12 By Ionut Arghire Hackers published a malicious scanner release and replaced tags to point to information-stealer malware. The post Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack Read More »

Plumber: Open-source scanner of GitLab CI/CD pipelines for compliance gaps

Plumber: Open-source scanner of GitLab CI/CD pipelines for compliance gaps 2026-03-23 at 09:18 By Anamarija Pogorelec GitLab CI/CD pipelines often accumulate configuration decisions that drift from security baselines over time. Container images get pinned to mutable tags, branches lose protection settings, and required templates go missing. An open-source tool called Plumber automates the detection of

Plumber: Open-source scanner of GitLab CI/CD pipelines for compliance gaps Read More »

Samba 4.24.0 ships Kerberos hardening and a CVE fix for domain encryption defaults

Samba 4.24.0 ships Kerberos hardening and a CVE fix for domain encryption defaults 2026-03-19 at 10:35 By Sinisa Markovic Samba 4.24.0 arrived carrying a set of Kerberos security changes aimed at Active Directory deployments. The release fixes a vulnerability, extends audit coverage for sensitive AD attributes, and introduces configuration options to counter two related Kerberos

Samba 4.24.0 ships Kerberos hardening and a CVE fix for domain encryption defaults Read More »

Betterleaks: Open-source secrets scanner

Betterleaks: Open-source secrets scanner 2026-03-19 at 09:02 By Anamarija Pogorelec Secrets scanning has become standard practice across engineering organizations, and Gitleaks has been one of the most widely used tools in that space. The author of that project has now released a new tool called Betterleaks, which is designed to scan git repositories, directories, and

Betterleaks: Open-source secrets scanner Read More »

Major tech companies invest $12.5 million in open source security

Major tech companies invest $12.5 million in open source security 2026-03-18 at 11:31 By Sinisa Markovic The Linux Foundation announced $12.5 million in grant funding backed by Anthropic, AWS, GitHub, Google, Google DeepMind, Microsoft, and OpenAI to strengthen open source security. The funding will be directed through the foundation’s Alpha-Omega Project and the Open Source

Major tech companies invest $12.5 million in open source security Read More »

Tech Giants Invest $12.5 Million in Open Source Security

Tech Giants Invest $12.5 Million in Open Source Security 2026-03-17 at 18:01 By Ionut Arghire Anthropic, AWS, Google, Microsoft, and OpenAI fund the Linux Foundation’s long-term security initiatives focused on open source software. The post Tech Giants Invest $12.5 Million in Open Source Security appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Tech Giants Invest $12.5 Million in Open Source Security Read More »

VulHunt: Open-source vulnerability detection framework

VulHunt: Open-source vulnerability detection framework 2026-03-16 at 07:40 By Anamarija Pogorelec Binarly has published VulHunt Community Edition, making the core scanning engine from Binarly’s commercial Transparency Platform available to independent researchers and practitioners. What VulHunt does VulHunt Community Edition is a framework for detecting vulnerabilities in compiled software. It operates against multiple binary representations simultaneously,

VulHunt: Open-source vulnerability detection framework Read More »

OpenAI Rolls Out Codex Security Vulnerability Scanner

OpenAI Rolls Out Codex Security Vulnerability Scanner 2026-03-10 at 16:33 By Eduard Kovacs Codex Security, formerly Aardvark⁠, has found hundreds of critical vulnerabilities in tested software in the past month. The post OpenAI Rolls Out Codex Security Vulnerability Scanner appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

OpenAI Rolls Out Codex Security Vulnerability Scanner Read More »

Scroll to Top