A joint government advisory warned that the Chinese state-sponsored actor APT40 is capable of immediately exploiting newly public vulnerabilities in widely used software
A CISA analysis in collaboration with international partners concluded most critical open source projects potentially contain memory safety vulnerabilities