Storm-0558 Breaks: Satya and Pooh, sitting in a tree, K.I.S.S.I.N.G.

The post ‘China’ Azure Breach: MUCH Worse Than Microsoft Said appeared first on Security Boulevard.

Once is happenstance. Twice is coincidence. Three times is sheer incompetence.

The post CISA Warning: MOVEit Has Yet Another Zero-Day SQL Injection RCE Bug [updated] appeared first on Security Boulevard.

With an executive order, the Biden administration attempted to address concerns around open source software’s security. In Section 4 of Executive Order 14028, Improving the Nation’s Cybersecurity, open source and the software supply chain was specifically mentioned, with a requirement for “ensuring and attesting, to the extent practicable, to the integrity and provenance of open..

The post Has the Altruism Model of Open Source Security Peaked? appeared first on Security Boulevard.

The cyber risks posed by vulnerable internal, open-source and third-party software that make up a modern supply chain are a source of intense concern for both for development teams and security operations centers within enterprises, according to a recent Dimensional Research survey of more than 321 IT professionals commissioned by ReversingLabs.

The ReversingLabs Software Supply Chain Risk Survey polled executives and IT professionals responsible for software at enterprise-scale companies. Respondents were split between North America (67%) and Europe (33%), with a plurality working in technology (19%), financial services (13%), healthcare (9%) and telecommunications (8%). 

The post Companies scramble to cover software supply chain security gaps: 3 key survey takeaways appeared first on Security Boulevard.

Now more than ever, organizations are relying on the supply chain for basic business operations. According to Charlie Jones, director of product management with ReversingLabs, there are two reasons for this: The global trend of digitalization and the rapid move to remote work during the pandemic. What those trends did was increase the reliance enterprise..

The post Don’t Trust the Security of the Software Supply Chain appeared first on Security Boulevard.

No one wants a repeat of the SUNBURST cyberattack, but without any action to improve cybersecurity within the software supply chain, another SUNBURST—or worse—attack is inevitable. And we still may see a devastating attack that takes down critical infrastructure or cripples major business systems, but at least there are steps being made to finally address..

The post White House Moves to Address Software Supply Chain Security appeared first on Security Boulevard.

Ben is disappointed: FBI reports huge rise in cryptocurrency investment scams. Why am I not surprised?

The post Scams Lost US $10 BILLION in 2022 — Crypto Fraud Grows Fast appeared first on Security Boulevard.

Be careful what you wish for: Biden wants new regulations for cloud providers—but we’re not sure it’ll help.

The post White House to Regulate Cloud Security: Good Luck With That appeared first on Security Boulevard.

Voice AI tech being misused by scammers: Scrotes fake your voice and call your grandparents. Then “you” beg them for money.

The post Voice-Clone AI Scams — it’s NOT ME on the Phone, Grandma appeared first on Security Boulevard.

The BlackLotus malware targets UEFI Secure Boot. For a mere $5000, you too can own it.

The post Microsoft FAIL: ‘BlackLotus’ Bootkit Breaks Secure Boot appeared first on Security Boulevard.