Browsing: Software Development Security

GitHub Leak Puts Software Supply Chains at Risk: Thousands of Secrets Exposed

Kirsten DoyleMarch 18, 20255 Mins Read

Over 23,000 organizations may be at risk following a supply chain attack affecting tj-actions/changed-files GitHub Action, say researchers at StepSecurity. …

Microsoft Uncovers New XCSSET macOS Malware Variant Targeting Xcode Projects

Kirsten DoyleMarch 14, 20254 Mins Read

Microsoft Threat Intelligence has discovered a new variant of XCSSET, a sophisticated modular macOS malware that targets Xcode projects. The…

Global Crackdown Slashes Cobalt Strike Availability by 80%

Josh Breaker RolfeMarch 10, 20252 Mins Read

A global effort led by Fortra, Microsoft’s Digital Crimes Unit (DCU), and the Health Information Sharing and Analysis Center (ISAC)…

Microsoft Blames Widespread Outage on “Problematic Code Change”

Kirsten DoyleMarch 5, 20253 Mins Read

A major Microsoft outage on 1 March left tens of thousands unable to access key services like Outlook, Teams, and…

CISA, FBI Warn of Threats Exploiting Buffer Overflow Vulnerabilities

Kirsten DoyleFebruary 13, 20252 Mins Read

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued a new Secure by…

Black Duck Report: Inventory, Automation, and Endorsement

Adam ParlettFebruary 10, 20254 Mins Read

Organizations are increasingly prioritizing compliance due to recent regulatory requirements, such as those from the US Government regarding the sale…

The Next Y2K? How Past IT Challenges Shape Modern Cybersecurity

Dilki RathnayakeFebruary 7, 202510 Mins Read

The software industry is full of surprises. From development to user experience, it`s a vast avenue of innovations, problem-solving, and…

Can’t Start a Fire Without a Spark

Adam ParlettJanuary 23, 20253 Mins Read

Code Intelligence has started 2025 with a bang and captured the interest of the cybersecurity community by announcing ‘Spark,’ their…

New Report Highlights Open Source Trends and Security Challenges

Kirsten DoyleDecember 6, 20243 Mins Read

The Linux Foundation, in collaboration with the Laboratory for Innovation Science at Harvard, has unveiled a comprehensive study, “Census III…

The Hidden Price of DevSecOps: How Security Tasks Are Sapping Developer Productivity and Jeopardizing Competitive Edge

ISB Staff ReporterOctober 11, 20243 Mins Read

Developers are spending significantly more time, and companies are spending 28K per developer each year on security-related tasks, such as…

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics