Supply Chain Security
Security researchers at SentinelLabs are calling attention to a software chain supply attack targeting Rust developers with malware aimed directly at infecting GitLab Continuous...
Hi, what are you looking for?
SecurityWeek
Supply Chain Security
Join the virtual event as we explore of the critical nature of software and vendor supply chain security issues.
Supply Chain Security
More details have come to light on the recent supply chain attack targeting GitHub Actions, including its root cause.
Malware & Threats
The websites of over 100 auto dealerships were found serving malicious ClickFix code in a supply chain compromise.
Application Security
The tj-actions/changed-files GitHub Action, which is used in 23,000 repositories, has been targeted in a supply chain attack.
Supply Chain Security
Report from the Department for Science, Innovation & Technology (DSIT) finds weaknesses in current practices.
Application Security
Opengrep is a new consortium-backed fork of Semgrep, intended to be and remain a true genuine OSS SAST tool.
ICS/OT
MITRE has announced a new special interest group (SIG) whose goal is to help enhance cyber defenses for industrial control systems (ICS) and operational...
Cyberwarfare
The United States and the European Union announced on Monday a joint effort to boost microchip manufacturing and tackle Russian disinformation around the war...
Cybersecurity Funding
Palo Alto, Calif-based firm Xage has raised a $6 million top-up to the $30 million Series B funding it secured in January 2022.
CISO Strategy
We have a long way to go to get adequate cybersecurity expertise on boards, but the time has come to make it happen
Cybercrime
Agricultural equipment giant AGCO says its business operations have been impacted after falling victim to a ransomware attack last week.AGCO designs, makes, and distributes...
Application Security
Code hosting platform GitHub on Wednesday said it would make it mandatory for software developers to use at least one form of two-factor authentication (2FA) by...
Supply Chain Security
As the world increasingly moves to the cloud and digital-everything, organizations’ risk postures have also changed. Embedding security into the business is the new,...
Application Security
The Open Source Security Foundation (OpenSSF) has announced a new project whose goal is to help identify malicious packages in open source repositories.
Application Security
Source Defense, a provider of web application client-side protection, says it pocketed $27 million in Series B funding, bringing the total investment raised by...
Cybersecurity Funding
Geneva-based code quality company is cashing in on heightened investor interest in the software supply chain security space
Cyberwarfare
The vulnerability, tracked as CVE-2025-2783, was chained with a second exploit for remote code execution in attacks targeting organizations in Russia.
Hacker Conversations
Mobile & Wireless
Cloud Security
Network Security
DrayTek routers around the world are rebooting and the vendor’s statement suggests that it may involve the exploitation of a vulnerability.
Vulnerabilities
Artificial Intelligence
Cybersecurity Funding
Data Breaches
Security Architecture
