Supply Chain Security
Researchers at code security firm Sonar Source have shared details on multiple Checkmk vulnerabilities that could be chained together to execute code remotely, without...
Hi, what are you looking for?
SecurityWeek
Cybersecurity Funding
Software supply chain security management startup Lineaje raises $7 million in a seed funding round led by Tenable Ventures.
Risk Management
The supply chain threat is directly linked to attack surface management, but the supply chain must be known and understood before it can be...
Supply Chain Security
A new report found that 98% of organizations have a relationship with a third party that has been breached, while more than 50% have...
ICS/OT
The overall effect of current global geopolitical conditions is that nation states have a greater incentive to target the ICS/OT of critical industries, while...
Supply Chain Security
Chainguard OpenVEX Spec adds clarity to Supply Chain Vulnerability warnings specifications to help software vendors and maintainers communicate precise metadata about the vulnerability status...
Application Security
A new report finds that barely 1% of all SBOMs being generated today meets the “minimum elements” defined by the U.S. government.
Cybercrime
Hundreds of regional and national news websites in the United States are delivering malware as a result of a supply chain attack involving one...
Application Security
The Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Office of the Director of National Intelligence (ODNI) this week...
ICS/OT
Organizations are more confident in their ability to detect an OT breach
Malware & Threats
IT management software provider ConnectWise on Friday announced updates that patch a critical vulnerability which, according to cybersecurity professionals, exposes thousands of servers to...
Cybercrime
Enterprise communications firm Twilio has concluded its investigation into the recent data breach and revealed on Thursday that its employees were targeted in smishing...
ICS/OT
The DHS on Thursday announced Cybersecurity Performance Goals (CPGs) to help organizations — particularly in critical infrastructure sectors — prioritize cybersecurity investments and address...
Application Security
Checkmarx warns that attackers could have exploited the renaming of popular GitHub accounts to create malicious repositories using the vacated name and launch software...
Supply Chain Security
VMware this week announced patches for a critical remote code execution vulnerability in VMware Cloud Foundation and NSX Data Center for vSphere (NSX-V).
Application Security
Behavior-based threat detection startup Arnica has raised $7 million in a seed funding round led by Joule Ventures and First Rays Venture Partners, with...
Application Security
Google today introduced Graph for Understanding Artifact Composition (GUAC), an open source tool for centralizing build, security, and dependency metadata.Developed in collaboration with Kusari,...
Network Security
Best practices for defeating against most attacks, hopefully making the need for future Cybersecurity Awareness Months obsolete
Cybercrime
North Korean hackers working for the government stole virtual assets last year estimated to be worth between $630 million and more than $1 billion, U.N. experts...
Cyberwarfare
Cybersecurity Funding
Vulnerabilities
