Hot Topics

Software Supply Chain Security

Satya Nadella and President Xi Jinping

‘China’ Azure Breach: MUCH Worse Than Microsoft Said

| | Active Directory, Authentication, azure, Azure Active Directory, Azure AD, Entra ID, Exchange, Microsoft, Microsoft Azure, Microsoft Azure Active Directory, Microsoft Azure Security, OpenID, Outlook.com, SB Blogwatch, Storm-0558, Wiz
Storm-0558 Breaks: Satya and Pooh, sitting in a tree, K.I.S.S.I.N.G ...
Security Boulevard
Mark Quashie, a/k/a The Mad Stuntman

CISA Warning: MOVEit Has Yet Another Zero-Day SQL Injection RCE Bug [updated]

| | CL0P, Cl0p Ransomware, clop, clop-ransomware, CVE-2023-34362, CVE-2023-35036, CVE-2023-35708, MOVEit Cloud, MOVEit Transfer, MOVEit Transfer Zero Day, Progress Software, Ransomware, SB Blogwatch, sql injection, SQL injection attack, SQL injection attacks, sql injection prevention, SQL Injection Vulnerabilities, SQL injections
Once is happenstance. Twice is coincidence. Three times is sheer incompetence ...
Security Boulevard
OpenText OCSF WhiteSource Log4j window Proofpoint Open Source Security

Has the Altruism Model of Open Source Security Peaked?

| | executive order, maintainers, open source, Open Source Security, OSS, rsac
With an executive order, the Biden administration attempted to address concerns around open source software’s security. In Section 4 of Executive Order 14028, Improving the Nation’s Cybersecurity, open source and the software ...
Security Boulevard
Companies scramble to cover software supply chain security gaps: 3 key survey takeaways

Companies scramble to cover software supply chain security gaps: 3 key survey takeaways

|
The cyber risks posed by vulnerable internal, open-source and third-party software that make up a modern supply chain are a source of intense concern for both for development teams and security operations ...
ReversingLabs Blog
MOVEit supply chain cloud security manufacturing remote

Don’t Trust the Security of the Software Supply Chain

| | Secure Coding, security, software bill of materials, software supply chain, zero trust
Now more than ever, organizations are relying on the supply chain for basic business operations. According to Charlie Jones, director of product management with ReversingLabs, there are two reasons for this: The ...
Security Boulevard
white house supply chain

White House Moves to Address Software Supply Chain Security

| | Cybersecurity, EO, executive order, software supply chain, White House
No one wants a repeat of the SUNBURST cyberattack, but without any action to improve cybersecurity within the software supply chain, another SUNBURST—or worse—attack is inevitable. And we still may see a ...
Security Boulevard
Scams Lost US $10 BILLION in 2022 — Crypto Fraud Grows Fast

Scams Lost US $10 BILLION in 2022 — Crypto Fraud Grows Fast

| | Call Center Fraud, Crypto, crypto fraud, cryptocurrency, FBI, Fraud, IC3, Internet Crime Complaint Center, Investment Scams, Phishing, Ransomware, SB Blogwatch, Scams
Ben is disappointed: FBI reports huge rise in cryptocurrency investment scams. Why am I not surprised? ...
Security Boulevard
White House to Regulate Cloud Security: Good Luck With That

White House to Regulate Cloud Security: Good Luck With That

| | Biden administration, Biden National Cybersecurity Strategy, Cloud Security, cybersecurity regulation, regulation, SB Blogwatch, White House
Be careful what you wish for: Biden wants new regulations for cloud providers—but we’re not sure it’ll help ...
Security Boulevard
Voice-Clone AI Scams — it’s NOT ME on the Phone, Grandma

Voice-Clone AI Scams — it’s NOT ME on the Phone, Grandma

| | 419, 419 scam, AI, Artificial Intelligence, ElevenLabs, Resemble AI, SB Blogwatch, scam, spanish prisoner, voice masquerading
Voice AI tech being misused by scammers: Scrotes fake your voice and call your grandparents. Then “you” beg them for money ...
Security Boulevard
Microsoft FAIL: ‘BlackLotus’ Bootkit Breaks Secure Boot

Microsoft FAIL: ‘BlackLotus’ Bootkit Breaks Secure Boot

| | BlackLotus, bootkit, Malware, Microsoft, secure boot, trojan, UEFI
The BlackLotus malware targets UEFI Secure Boot. For a mere $5000, you too can own it ...
Security Boulevard
Load more