Software supply chain attacks are evolving as open source and AI-generated code introduce new third-party risks. Learn how visibility and shift-left security reduce exposure.

Significant security risks continue to be prevalent in open source software practices, a new report by the Linux Foundation, OpenSSF and Harvard University has found. The CENSUS III project was based ...

Since Russian troops invaded Ukraine more than three years ago, Russian technology companies and executives have been widely sanctioned for supporting the Kremlin. That includes Vladimir Kiriyenko, ...

Impacting nearly 13.7% of all returned items in 2023, gift card and return frauds have become an unfortunate tradition among scam artists, but there's a much more sinister threat looming. This year, ...

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...

Attackers are finding more and more ways to post malicious projects to Hugging Face and other repositories for open source artificial intelligence (AI) models, while dodging the sites' security checks ...

As software supply chains grow increasingly interconnected, security threats continue to evolve. While common risks like third-party vulnerabilities and dependency issues are well-known, less-common ...

Both of these licensing models enable the user to fine tune and customize the AI model and avoid paying licensing fees. But there are additional considerations when choosing an open AI model versus a ...

Open-source data, which is information freely accessible to the public, could be leveraged for better domain awareness and decision-making, stated subject matter experts during a panel session at ...

If a powerful technology poses significant risks to business and society, should it ever be freely available? Many argue that AI falls into this category. Some even warn of existential threats. Since ...

Headlines today obsess over tariffs squeezing margins for medical device manufacturers (MDMs). But while tariffs can shave profits, insecure software can obliterate them—and result in patient safety ...

Open-source software will continue its march through the enterprise technology stack, buoyed by AI and (hopefully) transformative funding solutions that address sustainability. Over the past decades, ...