Supply Chain Security
3CX hack is the first known cascading supply chain attack, with the breach starting after an employee downloaded compromised software from a different firm.
Hi, what are you looking for?
SecurityWeek
Government
CISA unveils a new Hardware Bill of Materials (HBOM) framework for buyers and sellers to communicate about components in physical products.
Artificial Intelligence
Exposed data includes backup of employees workstations, secrets, private keys, passwords, and over 30,000 internal Microsoft Teams messages.
Supply Chain Security
Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain.
Malware & Threats
A new APT group called Carderbee has been observed deploying the PlugX backdoor via a supply chain attack targeting organizations in Hong Kong.
Application Security
Google sprinkles magic of generative-AI into its open source fuzz testing infrastructure and finds immediate success with code coverage.
Government
The US government's cybersecurity agency describes UEFI as "critical attack surface" that requires urgent security attention.
Government
CISA has described and published a set of principles for the development of security-by-design and security-by-default cybersecurity products.
Malware & Threats
3CX has confirmed previous reports that the recently disclosed supply chain attack was likely conducted by North Korean hackers.
Cybercrime
3CX supply chain attack appears to have been conducted by North Korean hackers with the goal of targeting cryptocurrency firms.
Supply Chain Security
Europe, the United States and Australia seem to be the most impacted by the 3CX supply chain hack, according to data from two cybersecurity...
Malware & Threats
3CX confirms investigating a security breach as the cybersecurity community is sharing more information on what appears to be a sophisticated supply chain attack.
Supply Chain Security
CrowdStrike threat intelligence team warns about unexpected malicious activity from a legitimate, signed version of the 3CXDesktopApp.
Cyber Insurance
SecurityScorecard is offering free digital forensics and incident response (DFIR) services to customers that have scored an ‘A’ rating if they have been breached.
Supply Chain Security
Join us for the virtual experience as we bring together security experts to discuss the complex nature of the supply chain problem, best practices for...
Endpoint Security
Intel’s newest vPro platform brings threat prevention features with dozens of security capabilities built into the silicon.
Supply Chain Security
Join us for the virtual experience as we bring together security experts to discuss the complex nature of the supply chain problem, best practices for...
Supply Chain Security
Huawei has replaced thousands of product components banned by the US with homegrown versions, its founder has said.
Artificial Intelligence
The NSA is starting an artificial intelligence security center — a crucial mission as AI capabilities are increasingly acquired, developed and integrated into U.S....
Ransomware
Vulnerabilities
Vulnerabilities
Endpoint Security
Funding/M&A
Bankrupt and out of financing options, IronNet has terminated all employees and plan to file for Chapter 7 protection.
Cloud Security
