Communications of the ACM

Fifty Years of Open Source Software Supply-Chain Security

An open source software supply-chain vulnerability is an exploitable weakness in trusted software caused by a third-party, ...
Te Pūnaha Matatini

The ecosystem of software

The software ecosystem is a complex system, and this complexity is a byproduct of evolution, collaboration and innovation.

Your passkeys could be vulnerable to attack, and everyone - including you - must act

When a clickjack attack managed to hijack a passkey authentication ceremony, were password managers really to blame? ZDNET's investigation reveals a more complicated answer.

Flushable wipes and Iran: Water treatment facility adds cyberattacks to worry list

Water treatment workers are grappling with how to protect against a new threat: hackers burrowing into the system and ...