Support und Foren rund um Linux, OpenSource und Freie Software. Angebote wie News, Berichte, Workshops, Tipps, Links und Kalender.

Amazon Q vulnerability could allow attackers to steal developer cloud credentials by luring them into opening a booby-trapped ...

Continuum is a new service intended to hep developers and security teams secure their own code and that of others too, with a goal of automating remediation.

A security lead at a large enterprise* told me last week, when I asked whether they had any interest in Grok: "The revenge porn edgelord LLM? Yeah, imagine that; our bank wants nothing to do with it." ...

On May 19, 633 malicious npm package versions passed Sigstore provenance verification. They were cleared by the system because the attacker had generated valid signing certificates from a compromised ...

Thousands of software development teams whose CI/CD pipelines depended on LocalStack's free community edition lost access to no-cost, no-account AWS emulation on March 23, 2026, when the company ...

Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering credential-stealing malware targeting developers. The attacker hijacked valid OpenID ...

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. ANKARA, TURKIYE - JULY 27: In this photo illustration, multiple Amazon Web Services (AWS) ...

While reaffirming its Microsoft partnership, the company is building a Bedrock-native orchestration layer that positions it firmly in multi-cloud territory. Stateless AI, in which a model offers ...

See the key announcements from the event below and watch re:Invent 2025 keynotes. Amazon is expanding its Nova portfolio with four new models that deliver industry-leading price-performance across ...

Vulnerabilities and misconfiguration in a huge number of public-facing websites allowed the attackers to gain access to sensitive customer data used in AWS services. Terabytes of data belonging to ...