While open source continues to be a key driver of innovation – with software developers downloading more than 300 billion open source components in the past 12 months – hackers are exploiting this growing trend, and even beginning to inject vulnerabilities directly into open source projects. New findings show that use of vulnerable components has increased by 120%, leaving organisations that lack proper governance wide open to attacks.