Supply Chain

Google Launches New Open Source Bug Bounty to Tackle Supply Chain Attacks

To protect the ecosystem against supply chain threats, Google on Monday unveiled a new bug bounty program for its open source projects that offers rewards ranging from $100 to $31,337 (a reference to eleet or leet). One of the first open source-specific vulnerability programs is known as the Open Source Software Vulnerability Rewards Program (OSS […]

Google Launches New Open Source Bug Bounty to Tackle Supply Chain Attacks Read More »

A vast number of Third-Party Cloud Containers possess popular vulnerabilities

Researchers have reported that a large amount of third-party code used in cloud infrastructure possess vulnerabilities as well as insecure configurations. The security vendor’s Unit 42 Cloud Threat Report 2H 2021 used data from various public sources better to understand the threat from cloud software supply chains. Data from various public sources were used by

A vast number of Third-Party Cloud Containers possess popular vulnerabilities Read More »