DevSecOps

Organizations developing software have been urged by the FBI and Cybersecurity and Infrastructure Security Agency to eradicate buffer overflow vulnerabilities by implementing secure-by-design principles, The Register reports.

New PyPI archiving system aims to curb open-source security risks.

Fake LDAPNightmare PoC deploys infostealing malware via malicious GitHub repo.

The BeaverTail malware is being used to spread malicious npm packages.

This week our MSP update also includes news about Ingram Micro's pursuit of a new public offering, Bellini-Capital company ConnectSecure's new Microsoft 365 Assessment Module, and an interview with Sonar's new channel chief.

Kaspersky Container Security (KCS) protects against container attacks, enabling organizations to visualize their security data and more.