Security is a process, not a product. We're going to be cleaning up Apache Log4j security problems for months to come, but the real problem isn't that it was open-source software. It's how we track and use open-source code.
Most Linux distros are currently coming up short from offering adequate security around full disk encryption and authenticated boot. Prominent Linux developer Lennart Poettering even argues that your data is "probably more secure if stored on current ChromeOS, Android, Windows or macOS devices."
In this interview with Help Net Security, Dave Wreski, CEO at Guardian Digital, the open source email security company, talks about modern email threats and offers protection advice for organizations. Wreski explains how the open-source development model can be applied to the development of email security technology to engineer highly effective phishing and zero-day protection.