Malicious modifications to open source projects affecting thousands - Sysdig Secure – Sysdig

Two extremely popular JavaScript open source packages, colors.js, and faker.js, were maliciously modified to the point of being unusable.

OT/IoT and OpenTitan, an Open Source Silicon Root of Trust - SecurityWeek

Software supply chain attacks: why every link matters – Sysdig

Australian Cyber Security Magazine, ISSUE 13, 2022 by MySecurity Marketplace - Issuu

Crooks continue to abuse exposed Docker APIs for Cryptojacking

GitHub - analysis-tools-dev/static-analysis: ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code

Container Orchestration Honeypot: Observing Attacks in the Wild

An Introduction to Container Risks and Security Issues

Sysdig 2022 Cloud-Native Security and Usage Report: Stay on Top of Risks as You Scale – Sysdig

Sysdig 2022 Threat Report: Cloud-native threats are increasing and maturing – Sysdig