Open Season on Open Source

Type threatpost
Reporter Chris Brook
Modified 2018-07-02T20:17:02


A flurry of attacks on open source servers, operating systems and software also permeated the headlines this year, with a compromise of the repository for the Linux source code leading the way. It appeared the code wasn’t compromised when the attack was initially reported, yet weeks after, the foundation shuttered several of its sites, suggesting the code repositories may have been affected after all. In response to the Linux breach, the Fedora Project prompted users to change their passwords and SSH keys in October for peace of mind. The year also brought with it attacks on code repository SourceForge, a DoS bug on the Apache HTTP server and a timing attack on OpenSSL.