This is barely an article. What is Open-source malware? Are they talking about libraries that look legit but contain malware? Typo-squatting? Supply chain attacks? Compromised repositories of legit projects? Or is this actually malware that is released as open-source software so that bad actors can enjoy the freedoms of FOSS?
opalfrost@friendica.world
on 03 Apr 18:01
collapse
@drspod@kid There is a focus on open source increasing drastically.
"Sonatype blocked over 20,000 open-source malware attacks in Q1 2025, with most targeting financial services and government institutions. The decrease in 'noise' suggests that attackers are becoming more sophisticated, necessitating continuous vigilance in open-source ecosystems." Source*
threaded - newest
This is barely an article. What is Open-source malware? Are they talking about libraries that look legit but contain malware? Typo-squatting? Supply chain attacks? Compromised repositories of legit projects? Or is this actually malware that is released as open-source software so that bad actors can enjoy the freedoms of FOSS?
@drspod @kid
There is a focus on open source increasing drastically.
That doesn’t answer the question.
@drspod
Yes it does.
It is your perception you better start to thumb down..
.
.