Supply Chain Security Archives

SECURITYWEEK NETWORK:

ICS:

Hi, what are you looking for?

Artificial Intelligence

Microsoft AI Researchers Expose 38TB of Data, Including Keys, Passwords and Internal Messages

Exposed data includes backup of employees workstations, secrets, private keys, passwords, and over 30,000 internal Microsoft Teams messages.

Ryan NaraineSeptember 18, 2023

Supply Chain Security

Webinar Today: Scaling Software Supply Chain Security

Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain.

SecurityWeek NewsSeptember 7, 2023

Malware & Threats

New ‘Carderbee’ APT Targeted Chinese Security Software in Supply Chain Attack

A new APT group called Carderbee has been observed deploying the PlugX backdoor via a supply chain attack targeting organizations in Hong Kong.

Ionut ArghireAugust 22, 2023

Application Security

Google Brings AI Magic to Fuzz Testing With Eye-Opening Results

Google sprinkles magic of generative-AI into its open source fuzz testing infrastructure and finds immediate success with code coverage.

Ryan NaraineAugust 17, 2023

Government

CISA Calls Urgent Attention to UEFI Attack Surfaces

The US government's cybersecurity agency describes UEFI as "critical attack surface" that requires urgent security attention.

Ryan NaraineAugust 3, 2023

Funding/M&A

Software Supply Chain Startup Endor Labs Scores Massive $70M Series A Round

Endor Labs has closed a massive $70 million Series A round of financing to fuel ambitious plans to build a dependency lifecycle management platform.

Ryan NaraineAugust 3, 2023

Funding/M&A

Socket Scores $20M as Investors Bet on Software Supply Chain Security Startups

San Francisco startup Socket raises $20 million as investors continue to bet on companies in the open source software security category.

Ryan NaraineAugust 1, 2023

Supply Chain Security

Verifying Software Integrity With Sigstore

Signing code is very important to defend against supply chain attacks, but it’s also one of the most cumbersome to implement for internal development.

Matt HoneaJuly 11, 2023

Funding/M&A

Infisical Banks $2.8M Seed Funding for Secrets Sprawl Security Tech

Infisical banks $2.8 million in seed funding as investors continue to bet on companies in the software supply chain security space.

Ryan NaraineJuly 5, 2023

Cyberwarfare

Rapid7: Japan Threat Landscape Takes on Global Significance

Rapid7 analyzes the Japan threat landscape and warns that attacks against the third-largest economy in the world have global consequences.

Kevin TownsendJune 29, 2023

Funding/M&A

HashiCorp Buys BluBracket for Secrets Scanning Tech

HashiCorp acquires BluBracket secrets-scanning technology to help businesses block accidental leaks and fight secret sprawl.

Ryan NaraineJune 27, 2023

Supply Chain Security

Software Supply Chain: The Golden Container Ship

By having a golden image you will put a process in place that allows you to quickly take action when a vulnerability is found...

Matt HoneaJune 12, 2023

Page 1 of 2412 3 4 5 Next ›Last »

SECURITYWEEK NETWORK:

ICS:

Artificial Intelligence

Microsoft AI Researchers Expose 38TB of Data, Including Keys, Passwords and Internal Messages

Supply Chain Security

Webinar Today: Scaling Software Supply Chain Security

Malware & Threats

New ‘Carderbee’ APT Targeted Chinese Security Software in Supply Chain Attack

Application Security

Google Brings AI Magic to Fuzz Testing With Eye-Opening Results

Government

CISA Calls Urgent Attention to UEFI Attack Surfaces

Funding/M&A

Software Supply Chain Startup Endor Labs Scores Massive $70M Series A Round

Funding/M&A

Socket Scores $20M as Investors Bet on Software Supply Chain Security Startups

Supply Chain Security

Verifying Software Integrity With Sigstore

Funding/M&A

Infisical Banks $2.8M Seed Funding for Secrets Sprawl Security Tech

Cyberwarfare

Rapid7: Japan Threat Landscape Takes on Global Significance

Funding/M&A

HashiCorp Buys BluBracket for Secrets Scanning Tech

Supply Chain Security

Software Supply Chain: The Golden Container Ship

Featured

CISO Strategy

The CISO Carousel and its Effect on Enterprise Cybersecurity

Mobile & Wireless

Predator Spyware Delivered to iOS, Android Devices via Zero-Days, MitM Attacks

Mobile & Wireless

Apple Patches 3 Zero-Days Likely Exploited by Spyware Vendor to Hack iPhones

Cyberwarfare

New ‘Sandman’ APT Group Hitting Telcos With Rare LuaJIT Malware

Funding/M&A

Cisco to Acquire Splunk for $28 Billion

Cybercrime

MGM Resorts Computers Back Up After 10 Days as Analysts Eye Effects of Casino Cyberattacks

Cybersecurity Funding

SASE Firm Cato Networks Raises $238 Million at $3 Billion Valuation

Latest News

Endpoint Security

Microsoft Adding New Security Features to Windows 11

Cyberwarfare

UAE-Linked APT Targets Middle East Government With New ‘Deadglyph’ Backdoor

Ransomware

Sony Investigating After Hackers Offer to Sell Stolen Data

Malware & Threats

Xenomorph Android Banking Trojan Targeting Users in US, Canada

Cybercrime

$200 Million in Cryptocurrency Stolen in Mixin Network Hack

Cyberwarfare

Stealthy APT Gelsemium Seen Targeting Southeast Asian Government

Cybercrime

Nigerian Pleads Guilty in US to Million-Dollar BEC Scheme Role