125 place 0
多起重大的軟體供應鏈漏洞事件已儼然成為近期焦點新聞,在烏俄衝突爆發之初,node-ipc的開發人員就決定全面禁止俄羅斯境內任何IP位址使用自家程式碼,此舉在不知不覺之中間接影響了許多在該國運作的人道救援與慈善組織。在其他事件當中,開發人員對於自家原始碼充斥在盈利產品之中而感到不滿,開始藉由對自家GitHub投毒攻擊,來吸引使用者與廣大社群對他們缺乏金援現況的關注。 不可否認的是,公開的開發者資源資料庫正遭駭客竊取,他們已完全意識到一個簡單的誤植域名就有可能會將他們改寫的程式碼傳播到全球數千個專案之中。但大多數惡意供應鏈的惡意軟體案例都未被上報 – 可能是因為罄竹難書,開放原始碼軟體供應鏈網路安全供應商Sonatype在一次主動掃描時發現,光是整個npm生態系,就有102,930個惡意或潛在的惡意程式碼案例。一旦整合到開發管道中,被改寫的應用程式將隨即進入產品品質測試、測試、甚至是生產階段。接著,他們就能夠破壞雲端認證、劫持加密貨幣挖礦的處理週期、竊取公司的智慧資產,以及令人心煩的一連串惡意軟體攻擊事件。 因Linux核心初版的部署即引發專有UNIX的垂死掙扎,開發人員社群為大眾利益著想,已發布相關的資源與程式
A newsletter a day!
You may get 10 most important news around midday in daily newsletter. Press the button and we will send you the most important news only, no spam attached.
LIKE us on Facebook so you won't miss the most important news of the day!
Tech Wire Asia
In this article, we discuss how the key to brand success lies in not ‘chasing trends,’ but embracing an agile, data-driven approach that prioritises real-time insights and responsiveness. Connecting with consumers in a meaningful way Today’s brands, in and outside of Southeast Asia, face a constant challenge: Cutting through the noise and connecting with consumers... Read more » Read more ›
3,671 fresh
Amazon isn't exactly shy about slashing prices on its own products during major shopping events like Black Friday. Not even when it comes to devices that it announced and released just days ago. To wit, the company has taken 10 percent off the list price of the Echo Show 21. The smart display can now be yours for $360. Amazon revealed the Echo Show 21 on November 20 and made... Read more ›
1,085 fresh
To end the war in Ukraine, experts say the President-elect needs to put Kyiv in a position of strength. Read more ›
654 fresh
Amazon is not holding back and is slashing the price of Microsoft’s new Surface Pro 11. Read more ›
538 fresh
Inflation could rise as high as 5% as Trump enacts his economic policies, "Dr. Doom" Nouriel Roubini said. Read more ›
491 fresh
As Trump returns to power, the world is a more complex and dangerous place, and Kim has profited. Read more ›
451 fresh
Rep. Ro Khanna, who represents the heart of Silicon Valley, cited his own interactions with Elon Musk as examples of why Democrats should stay on X. Read more ›
431 fresh
Power surges can damage your electronic devices, so make sure to protect them with one of CNET's favorite power strips with surge protection. Read more ›
421 fresh
US car prices would rise by over $2,000 if President-elect Donald Trump pushed ahead with tariffs on Canada and Mexico, Wells Fargo said in a note. Read more ›
392 fresh
The latest Sonos portable speaker can be yours at a new low price this Black Friday. Read more ›
351 fresh
Australia voted to ban social media for kids under 16. But how tech companies should comply with the new law remains a big question. Read more ›
347 fresh
Amazon's new multimodal AI model, code-named Olympus, could help the Big Tech giant move away from its reliance on Anthropic. Read more ›
314 fresh
The new U.S. sanctions against China are meant to hit developers of chipmaking gear rather than chipmakers itself. Read more ›
249 fresh
Numerous states offer their own version of the child tax credit, but the values of these credits and the standards to qualify for them vary by a lot. Read more ›
217 fresh
From Super Mario Party Jamboree to The Legend of Zelda: Echoes of Wisdom, these are our absolute favorite escapes for the best portable console. Read more ›
216 fresh
A Nvidia sales lead said in an email to colleagues that Musk's demand for chips was straining the company's supply chain, per The Wall Street Journal. Read more ›
207
Amazon faces global protests from workers during Black Friday, with demands for better wages, conditions, and environmental accountability. Read more ›
205 fresh
Tech Wire Asia
PayPay and Alipay+ announced an extended partnership at the Singapore FinTech Festival 2024, to increasing merchant coverage across Japan. PayPay, Japan’s leading QR payment operator, and AliPay+, Ant International’s mobile payment method that helps merchants reach shoppers in Asia, will now connect over three million local merchants to the global payment ecosystem. The extended partnership... Read more » Read more ›
1,373
Microsoft launches the Windows Resiliency Initiative. The goal is to prevent incidents like the CrowdStrike debacle. Microsoft recently unveiled its Windows Resiliency Initiative, aiming to step up security, boost reliability, and keep system integrity solid. Essentially, it’s about avoiding mishaps like the CrowdStrike incident earlier this year, while giving users and apps more flexibility without... Read more » Read more ›
1,368
Most popular sources
|
Tech Wire Asia
|
31% 24 |
Business Insider
|
27% 1 |
CNET
|
9% 4 |
Eurogamer.net
|
5% 1 |
Android Authority
|
4% 1 |
| View sources » | |
LIKE us on Facebook so you won't miss the most important news of the day!
28.11.2024 15:00
Last update: 14:55 EDT.
News rating updated: 22:00.
What is Times42?
Times42 brings you the most popular news from tech news portals in real-time chart.
Read about us in FAQ section.
popular
