Hot Topics

supply chain

GitHub satellite cyberattack Strontium cyberwarfare counter-drone The Legality of Waging War in Cyberspace

GitHub Developers Targeted by North Korea’s Lazarus Group

| | Cybersecurity, GitHub, Lazarus Group, npm, supply chain
The Lazarus Group is behind a social engineering campaign that uses repository invitations and malicious npm packages to target developers on GitHub ...
Security Boulevard
supply chain SMB Cowbell Cyber cyberattack colonial ransomware insurance attacks access

Software Supply Chain Attackers Targeting Banks, Checkmarx Says

| | #banks, Checkmarx, Cybersecurity, Finance, open source, supply chain
Two banks earlier this year were the targets of open source supply chain attacks, the first of their kind in the industry ...
Security Boulevard
MOVEit Cyberattack, The Problem with Password Rotations, Military Alert on Free Smartwatches

MOVEit Cyberattack, The Problem with Password Rotations, Military Alert on Free Smartwatches

| | Brushing, china, Complex Passwords, Cyber Security, cyberattack, Cybersecurity, Data breach, Data Privacy, Digital Privacy, Episodes, Information Security, Infosec, military, MOVEit, Password, Password Rotations, passwords, Podcast, Podcasts, Privacy, security, Security Awareness, smartwatch, Smartwatches, supply chain, supply chain attack, technology, US Army, vulnerability, Weekly Edition
Several major organizations, including British Airways and the BBC, fell victim to the recent MOVEit cyberattack. We discuss the alarming trend of hackers targeting trusted suppliers to gain access to customer data, ...
Shared Security Podcast
zero-day zero-trust app hardware zero-trust prepare

A Zero-Day Should Not Be a Crisis

| | Incident Response, supply chain, Threat Intelligence, vulnerability, zero-day
The next time there is a zero-day sweeping the internet, your organization shouldn’t have to panic. This shouldn’t be a crisis. Instead, it should be a controlled exercise that follows a playbook ...
Security Boulevard
Eclypsium Supply Chain Platform Asset List

Facing the Supply Chain Security Moment of Truth

| | Blog, Product Release, supply chain
While it has been coming for years, the industry is now facing its moment of truth for supply chain risks. The accelerating rash of major breaches in the technology supply chain has ...
Eclypsium | Supply Chain Security for the Modern Enterprise
SUSE open source software supply chain SaaS lesson threat intelligence SBOM

Your Vendor’s Vendor Adds Risk to the Open Source Supply Chain

| | open source, security, SLO, software, supply chain, vendor
Organizations rely heavily on third-party vendors and contractors. Smart companies will have a service level agreement (SLA) with each vendor which includes information about the vendor’s approach to cybersecurity—in fact, it’s a ...
Security Boulevard
3CX Breach Was a Double Supply Chain Compromise

3CX Breach Was a Double Supply Chain Compromise

| | 3CX, A Little Sunshine, ClearSky Security, Diamond Sleet, double supply chain breach, Elastic Security, ESET, ICONICSTEALER, Kaspersky Lab, kim zetter, Latest Warnings, macos, Mandiant, Marc-Etienne M.Leveille, Microsoft, Ne'er-Do-Well News, Peter Kalnai, supply chain, The Coming Storm, Trading Technologies, X_Trader, zero-day, ZINC
We learned some remarkable new details this week about the recent supply-chain attack on VoIP software provider 3CX, a complex, lengthy intrusion that has the makings of a cyberpunk spy novel: North ...
Krebs on Security
AI ML IoT security NicheStack edge computing IoT Security

AI/ML’s Role in Software Supply Chain Security

| | AI/ML, Software Security, supply chain
Almost every company has felt the impact of a cybersecurity incident caused by a security breakdown in the software supply chain. According to a study by BlueVoyant, 98% of businesses were negatively ...
Security Boulevard
Ransomware and Supply Chain Attacks: How to Protect Your Business From the Rising Threat of Third-Party Attacks

Ransomware and Supply Chain Attacks: How to Protect Your Business From the Rising Threat of Third-Party Attacks

| | Blog, Ransomware, ransomware attack, supply chain, Supply Chain Attacks
Stay protected from the rising threat of supply chain cyber attacks and ransomware attacks. Learn how to identify and assess the risks associated with third-party vendors and suppliers, and discover practical steps ...
MixMode
SLSA organizations third party attacks supply chain supply chain ransomware The Kill Chain Model

Securing Against Supply Chain Attacks

| | attacks, Cybersecurity, DLP, least privilege, supply chain
Anyone who has been in IT for the last decade knows the risks posed by ransomware and cyberattacks. They have been on our radar as a top concern for many years. But ...
Security Boulevard
Load more