pull down to refresh

Social engineering takeovers of open source projectsopenssf.org/blog/2024/04/15/open-source-security-openssf-and-openjs-foundations-issue-alert-for-social-engineering-takeovers-of-open-source-projects/
367 sats \ 3 comments \ @hn 6 May 2024 tech
This link was posted by mooreds 6 hours ago on HN. It received 279 points and 122 comments.
write
preview
related posts
5 sats \ 0 replies \ @Lumor 6 May 2024
To solve a problem of this scale, we need vast resources and public/private international coordination.
WEF-speak
reply
0 sats \ 1 reply \ @Coinsreporter 6 May 2024
Isn't it something new considering the previous attacks hadn't involved social engineering?
reply
0 sats \ 0 replies \ @xz 6 May 2024
I think the premise is that since the xz vulnerability was discovered, social engineering was not thought of as a prominent attack vector of opensource security models. So, I think you're right, but I may be wrong!
reply