Dark Reading

How Attackers Could Dupe Developers into Downloading Malicious Code From GitHub

The metadata that developers look at when deciding whether to use an open source project on GitHub can be easily forged and gives attackers a way to trick users of the platform into downloading ...
Nextgov

Bypassing Procurement Can Introduce Some Unwanted Visitors

The federal IT procurement safety net may be developing some holes. Many federal developers are forgoing traditional software purchasing in favor of going directly to the source and downloading code ...
Gizmochina

Microsoft’s popular code-sharing platform GitHub under attack, potentially affecting millions

Millions of developers and users are on alert as the popular code-sharing platform GitHub faces a large-scale attack. Security researchers at Apiiro have identified a concerning trend where malicious ...
MacStories

Apple’s App Store Guidelines Now Allow Executable Code in Educational Apps and Developer Tools

Apple made several changes to the App Store Review Guidelines during WWDC this week, including an easing of the prohibition against downloading and executing code on an iOS device. The ban on ...