'/%3e%3cpath%20d='M50.3943%2022.237V39.5876H43.5185V22.7481C43.5185%2019.2029%2042.0411%2017.3949%2039.036%2017.3949C35.7325%2017.3949%2034.0778%2019.5338%2034.0778%2023.7585V32.9759H27.2434V23.7585C27.2434%2019.5338%2025.5857%2017.3949%2022.2822%2017.3949C19.2949%2017.3949%2017.8027%2019.2029%2017.8027%2022.7481V39.5876H10.9298V22.237C10.9298%2018.6918%2011.835%2015.8754%2013.6453%2013.7877C15.5128%2011.7049%2017.9623%2010.6355%2021.0028%2010.6355C24.522%2010.6355%2027.1813%2011.9885%2028.9542%2014.6917L30.665%2017.5633L32.3788%2014.6917C34.1517%2011.9885%2036.811%2010.6355%2040.3243%2010.6355C43.3619%2010.6355%2045.8114%2011.7049%2047.6847%2013.7877C49.4931%2015.8734%2050.3963%2018.6899%2050.3943%2022.237Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_89_8'%20x1='30.5'%20y1='0'%20x2='30.5'%20y2='65'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%236364FF'/%3e%3cstop%20offset='1'%20stop-color='%23563ACC'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e)
Git hits a 20-year milestone.
The Margo Initiative explores Edge interoperability.
The Salus Project addresses AI risks.
These highlights—and more—are in this week’s LF Quick Hits.
#CyberResilience
0 posts0 participants0 posts today
The Cyber Resilience Act #CRA is set to have a sweeping impact on the #opensource ecosystem—and the
@EclipseFdn community will be among those affected.
Join @j_rico_ on 28 April for an overview of how the open source community is responding to the CRA. hubs.la/Q03gwYNX0
CRA compliance isn’t just a “future problem.”
• 46% of manufacturers rely passively on OSS projects for security fixes
• 74% of stewards have policies, but only 32% produce SBOMs
The time to act is now. Read the full report → https://www.linuxfoundation.org/research/cra-readiness?hsLang=en
Did you know that under the CRA, OSS stewards are expected to ensure cybersecurity policies, vulnerability reporting, and cooperation with MSAs while security attestations remain voluntary?
You can learn more in our full report: https://www.linuxfoundation.org/research/cra-compliance-best-practices?hsLang=en
'Unaware and Uncertain': Report Finds Widespread Unfamiliarity With 2027's #EU #CyberResilience Requirements
news.slashdot.org'Unaware and Uncertain': Report Finds Widespread Unfamiliarity With 2027's EU Cyber Resilience Requirements - SlashdotTwo "groundbreaking research reports" on open source security were announced this week by the Linux Foundation in partnership with the Open Source Security Foundation (OpenSSF) and Linux Foundation Europe. The reports specifically address the EU's Cyber Resilience Act (or CRA) and "highlight knowle...
New report: Cyber Resilience in Open Source
The Cyber Resilience Act (CRA) is transforming software security in the EU. This Linux Foundation Research report, in partnership with LF Europe, highlights how open source projects are preparing for compliance and strengthening cybersecurity.
Read more 
https://www.linuxfoundation.org/research/cra-compliance-best-practices?hsLang=en
Is the open source ecosystem ready for the Cyber Resilience Act?
62% of respondents remain unfamiliar with CRA, and compliance challenges are emerging. This new Linux Foundation Research report, in partnership with OpenSSF and LF Europe, explores key findings.
Read more https://www.linuxfoundation.org/research/cra-readiness?hsLang=en
This week, Mirko Swillus @mechko was back in Brussels, representing us at the first meeting of the #CyberResilience Act Expert Working Group. This group is advising the European Commission on implementing the regulation that went into effect at the end of 2024. We’re bringing the Sovereign Tech Agency’s experience working closely with many #opensource communities to help shape cybersecurity standards for digital products in the European Union. 1/2
First meeting of the CRA Expert Group in Brussels! Mikael Barbero & Tobie Langel, representing the Eclipse Foundation, contributing to key discussions on CRA-related topics.
It was a productive first session, setting the stage for important discussions ahead. #CyberResilience #OpenSource
How ready is the open source community for cybersecurity regulations? 
Take our Cyber Resiliency Survey to share your insights on the Cyber Resilience Act and ways to support contributors in meeting security standards.
Take the survey now: https://www.research.net/r/MR35RMF
#CyberResilience #OpenSource #CyberSecurity
Wir brauchen dringend mehr digitale #Mündigkeit! Im #Interview für das #ZDF „heute journal“ habe ich als Research Director des cyberintelligence.institute erklärt, warum die europäische #Plattformregulierung einerseits wichtig ist, andererseits aber nicht die kritische Auseinandersetzung der User mit den Inhalten in Social Media ersetzen kann. https://www.zdf.de/nachrichten/wissen/chaos-computer-club-bundestagswahl-100.html
#cybersecurity #cyberresilience #fakenews #desinformation
ForDaySec lädt herzlich zu einem Vortrag ein: Haftung für unsichere Software?
17. Januar 2025, 17 Uhr
LMU München, Hauptgebäude, Raum A120
Prof. Dr. Axel Metzger (HU Berlin) & Dr. Ann-Kristin Mayrhofer (LMU München)
Die Veranstaltung beleuchtet Auswirkungen des Cyber Resilience Acts auf Vertrags- und Produkthaftungsrecht. Weitere Infos und Anmeldung unter: https://fordaysec.de/ls-0124
fordaysec · Haftung für unsichere Software? - fordaysecHaftung für unsichere Software? Die Auswirkungen des Cyber Resilience Acts auf das Vertrags- und Produkthaftungsrecht 17.01.2025, Vortrag, gehalten von Prof. Dr. Axel Metzger, LL.M. (Havard), Humboldt-Universität zu Berlin & Dr. Ann-Kristin Mayrhofer, Ludwig-Maximilians-Universität München Die Veranstaltung findet an der Ludwig-Maximilians-Universität München, Geschwister-Scholl-Platz 1, Hauptgebäude 1. OG, Raum A120 (kleine Aula), statt. Im Anschluss an die ... Weiterlesen
Cracked 60.000 #networklocation recordings with #neostumbler, uploaded to @beacondb !
Over 120.000 wifis, 2.700 cell towers and 3.300 bluetooth beacons!
Tricks:
- follow the NeoStumbler settings
- connect phone to a powerbank, this disables the energysaver
- keep the screen on, for example with https://github.com/abdalmoniem/Caffeinate
- place phone near windows in many trains and buses
In the previous part, KDAB CEO Matthias Kalle Dalheimer shared his take on the effect of the EU’s Cyber Resilience Act (CRA) on #opensource software. This part covers his view on its impact for consumers: https://www.youtube.com/watch?v=p82pkmhfyZU #CyberSecurity #CyberResilience
The EU’s Cyber Resilience Act (CRA) boosts #cybersecurity with stricter standards for digital products, focusing on infrastructure and the digital economy. KDAB CEO Matthias Kalle Dalheimer shares his take on its impact on #opensource software: https://www.youtube.com/watch?v=GX9nUhrKJIo #CyberResilience
Continued thread
Proton purchased Standard Notes:
https://proton.me/blog/proton-standard-notes-join-forces
Open source foundations unite on common standards for EU’s Cyber Resilience Act:
https://www.techradar.com/pro/open-source-foundations-unite-on-common-standards-for-eus-cyber-resilience-act
Lutris 0.5.17 released bug fixes, new library sync, Proton and Vessel support (UMU) etc.:
https://alternativeto.net/news/2024/4/lutris-0-5-17-brings-several-critical-bug-fixes-library-syncing-and-new-game-runners/
3/4
Proton · Proton and Standard Notes are joining forces | ProtonProton and the end-to-end encrypted note-taking app Standard Notes are joining forces. We’ve long been admirers and are excited to welcome Mo and his team.
On December 1st, due to community involvement, the Cyber Resilience Act (CRA) passed with much better language for open source communities, read all about it! #python #CyberResilience https://pyfound.blogspot.com/2024/01/CRA-update.html
Python Software Foundation BlogEU’s Cyber Resilience Act Passes with Wins for Open Source
It was great to be at #GC3B23 to endorse the official launch of the #AccraCall - encouraging global action to improve #cyberresilience and promoting #cybercapacitybuilding that supports broader development goals, more effectively serving the needs and priorities of developing countries!
Shadowserver pledges continued free cyberthreatintelligence to help improve cyberresilience globally, and provide qualitative and quantitative data for cybercapacitybuilding impact evaluation
Sign up here - https://shadowserver.org/what-we-do/network-reporting/
High-level stats overview: -https://dashboard.shadowserver.org
Read the full details of the GC3B23 AccraCall and find out how you can join 50 leading countries and organizations in this new global effort at: https://gc3b.org/news/read-the-full-accra-call-for-cyber-resilient-development/
Cyber Solidarity Act moves ahead in EU Parliament with key committee vote https://www.euractiv.com/section/cybersecurity/news/cyber-solidarity-act-moves-ahead-in-eu-parliament-with-key-committee-vote/?utm_source=dlvr.it&utm_medium=mastodon #cyberresilience #CyberSolidarityAct #cybersécurité
EURACTIV · Cyber Solidarity Act moves ahead in EU Parliament with key committee vote
Кібербезпека в Райффайзен Банку: «кіберніндзі» в команді, постійний аналіз ризиків і хмарні рішення https://itc.ua/ua/articles/kiberbezpeka-v-rajffajzen-banku-kibernindzi-v-komandi-postijnyj-analiz-ryzykiv-i-hmarni-rishennya/ #RaiffeisenBankUkraine #інформаційнабезпека #Партнерськийпроект #онлайн-шахрайство #продуктовабезпека #CyberResilience #RaiffeisenBank #РайффайзенБанк #хмарнірішення #ОлексійСкиба #Кіберзахист #кіберніндзі #ІТ-безпека #Шахрайство #Безпека #Банк
ITC.ua · Кібербезпека в Райффайзен Банку: «кіберніндзі» в команді, постійний аналіз ризиків і хмарні рішенняУже минули часи, коли інформаційна безпека була тільки про вимоги та контроль їх виконання. Умови, у яких вона функціонувала раніше, були дещо іншими. Інший стек технологій – жодних хмар, віртуалізації та контейнеризації застосунків, мікросервісів, жодної віддаленої роботи тощо. Наприклад, «Райффайзен Банк» трансформував розуміння інформаційної безпеки та зараз працює в зовсім іншому середовищі. Цифрові процеси, регуляторні […]