Bill Doerrfeld writes in »What To Do When Critical Open Source Projects Go End of Life« for thenewstack.io “That doesn’t just mean money — it means showing up, contributing engineering time, asking thoughtful questions and understanding their roadmap,” said Hanlon. “If your business relies on OSS, you’re part of that ecosystem and part of the responsibility.” The text was automatically translated from German into English. The German quotations were also translated in sense. ...
Lindsay Clark writes in »Faced with £40B budget hole, UK commits £9B to Microsoft« for theregister.com The UK public sector expects to spend around £9 billion on Microsoft products and services over five years under its current contract. The text was automatically translated from German into English. The German quotations were also translated in sense.
Sonatype reports in a recent white paper on a noticeable increase in malware discoveries in open‑source artifacts. In the analysis »Sonatype uncovers global espionage campaign in open source ecosystems« on sonatype.com, the company details how many infected packages they counted. Between January and July 2025, Sonatype blocked 234 unique malware packages traced to Lazarus across npm and PyPI. These packages mimic popular developer tools but function as espionage implants, designed to steal secrets, profile hosts, and open persistent backdoors into critical infrastructure. The campaign reveals over 36,000 potential victims — and counting. ...
GitHub has come out in favor of a Sovereign Tech Fund. Such a funding model is also used by the Sovereign Tech Agency. Felix Reda writes in »We need a European Sovereign Tech Fund« on github.blog: There is a profound mismatch between the importance of open source maintenance and the public attention it receives. The demand-side value of open source software to the global economy is estimated at $8.8 trillion, and the European Commission’s own research shows that OSS contributes a minimum of €65-95 billion to the EU economy annually. Basic open source technologies, such as libraries, programming languages, or software development tools, are used in all sectors of the economy, society, and public administrations. ...
Ellen Nakashima, Yvonne Wingett Sanchez and Joseph Menn write in »Global hack on Microsoft product hits U.S., state agencies, researchers say« for washingtonpost.com What’s also alarming, researchers said, is that the hackers have gained access to keys that may allow them to regain entry even after a system is patched. Once again, a security vulnerability in Microsoft’s software was exploited. And of course: no system is completely secure. But when almost everyone uses the same software, a single flaw becomes a widespread risk. That’s exactly the case with Microsoft Office, SharePoint, or Windows. ...