software security
-
Malicious NPM Packages Pose Threat to WhatsApp Developers
Researchers at Socket have discovered two malicious NPM packages that impersonate WhatsApp development tools, deploying dangerous data-wiping code and threatening developers’ systems. Despite takedown efforts, the packages remain available for download.
-
UK Launches New Software Security Code of Practice Amid Rising Cyber Threats
The UK has launched a voluntary Software Security Code of Practice aimed at enhancing the cybersecurity of software development amid rising threats. The initiative sets out 14 principles to guide vendors, emphasizing the importance of security throughout the software lifecycle. However, its voluntary nature raises concerns regarding the effectiveness of adherence and universal compliance.
