CSOonline

Malicious open-source software packages have exploded in 2024

The open-source development ecosystem has experienced a significant rise in malicious software components, putting enterprises on high alert for software supply chain attacks. Malware is infiltrating ...

Malicious NuGet packages drop disruptive 'time bombs'

Several malicious packages on NuGet have sabotage payloads scheduled to activate in 2027 and 2028, targeting database ...
PC Magazine

integrated software package

Software that combines several applications in one program, typically providing at least word processing, spreadsheet and database management. Presentation graphics, page layout, paint, calendar, ...
dbta

JFrog Curation Automates Risky Package Detection for Open Source Software

JFrog, the Liquid Software company and creators of the JFrog Software Supply Chain Platform, is launching JFrog Curation, an automated DevSecOps solution that checks and validates open source or third ...
PC World

Easy-to-Use Brilliant Database Hits the Cost and Functionality Sweet Spot

Brilliant Database’s point-and-click scripting simplifies adding functionality to your database. Brilliant Database is a relational database package that includes table design, reporting, scripting, ...
ZDNet

JFrog researchers find JNDI vulnerability in H2 database consoles similar to Log4Shell

In a blog post, the company said that CVE-2021-42392 should not be as widespread as Log4Shell, even though it is a critical issue with a similar root cause. JFrog explained that the Java Naming and ...