Modal Title
Steven J. Vaughan-Nichols
Steven J. Vaughan-Nichols

Steven J. Vaughan-Nichols, aka sjvn, has been writing about technology and the business of technology since CP/M-80 was the cutting-edge PC operating system, 300bps was a fast internet connection, WordStar was the state-of-the-art word processor, and we liked it.

STORIES BY Steven J. Vaughan-Nichols
Twitter’s Source Code Leak Adds to Elon Musk’s Social Media Mess
Building and Securing Containers with
A Is for OpenStack Antelope
You’ll Soon Be Using Vulnerability Exploitability eXchange
Endor Labs Station 9’s Top 10 Open Source Security Risks
Congress and AI
No More Mr. Nice Guy: GitHub Demands Developers Use 2FA
IBM Donates SBOM Code to OWASP
Combining SBOMs With Security Data: Chainguard’s OpenVEX
OpenSSF GM Brian Behlendorf on the Future of Security
CloudNativeSecurityCon: Shifting Left into Security Trouble
How Bad Are System Failures and Security Incidents?
Azure Went Dark
OpenSSF Aimed to Stem Open Source Security Problems in 2022
Poisoned Lolip0p PyPI Packages
Kinsing Malware Targets Kubernetes
PyTorch Poisoned in Software Supply Chain Attack
CircleCI to Customers: Change All Secrets and API Tokens NOW!
What Trouble Awaits Cloud Native Security in 2023?
One Year of Log4j
Gorilla Toolkit Open Source Project Becomes Abandonware
GitHub Now Offers Secrets Scanning For Free
ChatGPT: Smart, but Not Smart Enough
GitHub Actions Were Vulnerable to Rust Artifact Poisoning
Log4Shell Lives!
Synopsys’s Report: What Apps Don’t Have Security Holes?!
Oxeye Finds Bad Spotify Backstage JavaScript Vulnerability
The Dropbox GitHub Data Breach