The NSA and CISA released the guide “Securing the Software Supply Chain: Recommended Practices Guide for Developers” last month and while David Wheeler, the director of open-source supply chain security at the Linux Foundation and OpenSS, welcom...
Google has outlined its efforts to shape the US government's zero-trust initiative based on President Biden's Executive Order on cybersecurity. "Its contributions will see the company leverage initiatives that have been underway at Google for many years, spanning open-source fuzzing tools to funding Linux kernel developers to work on security, and pushing for the use of memory-safe languages in Linux. "
In the wake of several major cybersecurity incidents - the most recent being the Colonial Pipeline ransomware attack, the government wants to shore up its software supply chain. There’s no silver bullet, but Open Source shows significant promise in meeting this challenge.
If Sen. Lindsey Graham gets his way, the federal government will launch another attack on online privacy. The South Carolina Republican will ask lawmakers to give Attorney General William Barr and the Department of Justice unchecked access to all of your messaging, file-sharing, and video-sharing tools. That is bad news for just about everyone and a nightmare for those who value digital privacy.