Krebs on Security

‘Trojan Source’ Bug Threatens the Security of All Code

Virtually all compilers — programs that transform human-readable source code into computer-executable machine code — are vulnerable to an insidious attack in which an adversary can introduce targeted ...
Bleeping Computer

'Trojan Source' attack method can hide bugs into open-source code

Academic researchers have released details about a new attack method they call “Trojan Source” that allows injecting vulnerabilities into the source code of a software project in a way that human ...
Zawya

IronPort only reputation-based web security provider to detect malicious Trojan Horse code

11 June 2008Outbreak identified by only 4 out of 32 anti-virus vendors; fake anti-spyware website used for propagationIronPort Systems, a leading e-mail and web security products provider, has ...