this post was submitted on 20 Apr 2024
80 points (93.5% liked)

Open Source

31223 readers
316 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 5 years ago
MODERATORS
Cloak@lemmy.ml
kevincox@lemmy.ml
CrypticCoffee@lemmy.ml
Lettuceeatlettuce@lemmy.ml
80
xz-style Attacks Continue to Target Open-Source Maintainers (soylentnews.org)
submitted 7 months ago by 0nekoneko7@lemmy.world to c/opensource@lemmy.ml
5 comments fedilink hide all child comments
 

Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently targeting the Linux xz data compression library, XZ Utils [linuxsecurity.com].

you are viewing a single comment's thread
view the rest of the comments
[–] bizdelnick@lemmy.ml 8 points 6 months ago* (last edited 6 months ago)

I have read this. There are no details about attacked projects, mail texts, addresses and github logins, nothing. It's even impossible to ensure that attack attempts really took place. One may guess they occured before the xz attack disclosure and were performed by different actors because thay seem much more dumb.