Supply Chain Security Archives

SECURITYWEEK NETWORK:

Security Experts:

Hi, what are you looking for?

Cybersecurity Funding

Software Supply Chain Security Firm Lineaje Raises $7 Million

Software supply chain security management startup Lineaje raises $7 million in a seed funding round led by Tenable Ventures.

Ionut Arghire1 day ago

Risk Management

Cyber Insights 2023 | Supply Chain Security

The supply chain threat is directly linked to attack surface management, but the supply chain must be known and understood before it can be...

Kevin Townsend7 days ago

Supply Chain Security

98% of Firms Have a Supply Chain Relationship That Has Been Breached: Analysis

A new report found that 98% of organizations have a relationship with a third party that has been breached, while more than 50% have...

Kevin TownsendFebruary 1, 2023

Cyber Insights: ICS and Operational Technology

ICS/OT

Cyber Insights 2023 | ICS and Operational Technology

The overall effect of current global geopolitical conditions is that nation states have a greater incentive to target the ICS/OT of critical industries, while...

Kevin TownsendFebruary 1, 2023

Supply Chain Security

OpenVEX Spec Adds Clarity to Supply Chain Vulnerability Warnings

Chainguard OpenVEX Spec adds clarity to Supply Chain Vulnerability warnings specifications to help software vendors and maintainers communicate precise metadata about the vulnerability status...

Ryan NaraineJanuary 31, 2023

Application Security

Chainguard Trains Spotlight on SBOM Quality Problem

A new report finds that barely 1% of all SBOMs being generated today meets the “minimum elements” defined by the U.S. government.

Ryan NaraineJanuary 19, 2023

Cybercrime

PyPI Users Targeted With PoweRAT Malware

Software supply chain security firm Phylum has identified a malicious attack targeting Python Package Index (PyPI) users with the PoweRAT backdoor and information stealer.

Ionut ArghireJanuary 10, 2023

Application Security

Microsoft Flags Ransomware Problems on Apple’s macOS Platform

Security researchers at Microsoft are flagging ransomware attacks on Apple’s flagship macOS operating system, warning that financially motivated cybercriminals are abusing legitimate macOS functionalities...

Ryan NaraineJanuary 9, 2023

Cybercrime

Many of 13 New Mac Malware Families Discovered in 2022 Linked to China

More than a dozen new Mac malware families were discovered in 2022, including information stealers, cryptocurrency miners, loaders, and backdoors, and many of them...

Eduard KovacsJanuary 6, 2023

Application Security

Slack Says Hackers Stole Private Source Code Repositories

Enterprise communication and collaboration platform Slack has informed customers that hackers have stolen some of its private source code repositories, but claims impact is...

Eduard KovacsJanuary 5, 2023

Application Security

Malware Delivered to PyTorch Users in Supply Chain Attack

Last week’s nightly builds of the open source machine learning framework PyTorch were injected with malware following a supply chain attack.Now part of the...

Ionut ArghireJanuary 3, 2023

Cybersecurity Funding

The Five Stories That Shaped Cybersecurity in 2022

2022 Cybersecurity Year in Review: Top news headlines and trends that impacted the security ecosystem

Ryan NaraineDecember 29, 2022

Application Security

Okta Source Code Stolen by Hackers

Identity and access management solutions provider Okta this week informed customers that some of the company’s source code was stolen recently from its GitHub...

Eduard KovacsDecember 22, 2022

Management & Strategy

Companies Announced Billions in US Government Cybersecurity Contracts in 2022

Companies have announced securing billions of dollars in cybersecurity-related contracts with the United States government in 2022.

Eduard KovacsDecember 22, 2022

Supply Chain Security

Critical Vulnerabilities Found in Passwordstate Enterprise Password Manager

Researchers discovered that the Passwordstate enterprise password manager made by Australian company Click Studios is affected by serious vulnerabilities that could allow an unauthenticated...

Eduard KovacsDecember 21, 2022

Cybercrime

Malicious PyPI Module Poses as SentinelOne SDK

Security researchers with ReversingLabs warn of a new supply chain attack using a malicious PyPI module that poses as a software development kit (SDK)...

Ionut ArghireDecember 19, 2022

Risk Management

US Puts 3 Dozen More Chinese Companies on Trade Blacklist

The U.S. Department of Commerce is adding 36 Chinese high-tech companies, including makers of aviation equipment, chemicals and computer chips, to an export controls...

Associated PressDecember 18, 2022

Application Security

GitHub Announces Free Secret Scanning, Mandatory 2FA

Microsoft-owned code hosting platform GitHub this week announced multiple security improvements, including free secret scanning for public repositories and mandatory two-factor authentication (2FA) for...

Ionut ArghireDecember 16, 2022

Page 2 of 21‹ Previous 123 4 5 6 Next ›Last »

SECURITYWEEK NETWORK:

Security Experts:

Cybersecurity Funding

Software Supply Chain Security Firm Lineaje Raises $7 Million

Risk Management

Cyber Insights 2023 | Supply Chain Security

Supply Chain Security

98% of Firms Have a Supply Chain Relationship That Has Been Breached: Analysis

ICS/OT

Cyber Insights 2023 | ICS and Operational Technology

Supply Chain Security

OpenVEX Spec Adds Clarity to Supply Chain Vulnerability Warnings

Application Security

Chainguard Trains Spotlight on SBOM Quality Problem

Cybercrime

PyPI Users Targeted With PoweRAT Malware

Application Security

Microsoft Flags Ransomware Problems on Apple’s macOS Platform

Cybercrime

Many of 13 New Mac Malware Families Discovered in 2022 Linked to China

Application Security

Slack Says Hackers Stole Private Source Code Repositories

Application Security

Malware Delivered to PyTorch Users in Supply Chain Attack

Cybersecurity Funding

The Five Stories That Shaped Cybersecurity in 2022

Application Security

Okta Source Code Stolen by Hackers

Management & Strategy

Companies Announced Billions in US Government Cybersecurity Contracts in 2022

Supply Chain Security

Critical Vulnerabilities Found in Passwordstate Enterprise Password Manager

Cybercrime

Malicious PyPI Module Poses as SentinelOne SDK

Risk Management

US Puts 3 Dozen More Chinese Companies on Trade Blacklist

Application Security

GitHub Announces Free Secret Scanning, Mandatory 2FA

Featured

Cybercrime

UN Experts: North Korean Hackers Stole Record Virtual Assets

Vulnerabilities

Vulnerability Provided Access to Toyota Supplier Management Network

Ransomware

VMware Says No Evidence of Zero-Day Exploitation in ESXiArgs Ransomware Attacks

Funding/M&A

SecurityWeek Analysis: Over 450 Cybersecurity M&A Deals Announced in 2022

Cyberwarfare

US Downs Chinese Balloon Off Carolina Coast

Nation-State

Microsoft: Iran Unit Behind Charlie Hebdo Hack-and-Leak Op

Cybersecurity Funding

Cyber Insights 2023: Venture Capital

Latest News

Cybercrime

Minister: Cybercrimes Now 20% of Spain’s Registered Offenses

Funding/M&A

Skybox Security Raises $50M, Hires New CEO

Cyberwarfare

Spies, Hackers, Informants: How China Snoops on the US

Cybercrime

Australian Man Sentenced for Scam Related to Optus Hack

Vulnerabilities

Chrome 110 Patches 15 Vulnerabilities

Application Security

Application Security Protection for the Masses

Privacy

Tor Network Under DDoS Pressure for 7 Months