Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks. The two ...

Historically, enterprise organizations have not sufficiently monitored their employees' activities within internal business applications. They were essentially (and blindly) trusting their employees.

A UC Berkeley computer scientist is developing mathematical algorithms based on semantics to help detect malicious code in computer viruses. According to an article about the research in Lab Notes, ...

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...

Doron Hendler, CEO and co-founder of RevealSecurity, explains the right way and the wrong way to detect malicious behavior. Over a decade ago, the security market adopted statistical analysis to ...

In the first five months of 2026, security researchers have flagged more malicious packages on the npm registry than in all ...

Czech security company AVG has completed a deal to acquire Sana Security, which specializes in detecting malicious software based on its behavior. AVG paid cash for Sana but did not disclose the ...

Attackers are finding more and more ways to post malicious projects to Hugging Face and other repositories for open source artificial intelligence (AI) models, while dodging the sites' security checks ...