Connect with us
Supply Chain Risk is more pertinent now that digital transformation initiatives are the norm. In a recent Ponemon study, 82% of respondents believe their organization experienced...
A software supply chain attack—such as the recent SolarWinds Orion attack—occurs when a cyber threat actor infiltrates a software vendor’s network and employs malicious code to...
The Federal Bureau of Investigation (FBI), Department of Homeland Security, and CISA have released a Joint Cybersecurity Advisory (CSA) addressing Russian Foreign Intelligence Service (SVR) cyber actors—also known...
Passwords stored in enterprise password manager Passwordstate may have been “harvested” by attackers who planted a malicious software update file, the application’s developer, Click Studios, has...
Open-source software tools and Vault maker HashiCorp has disclosed a security incident that occurred due to the recent Codecov attack. HashiCorp, a Codecov customer, has stated that the...
A remote code execution (RCE) vulnerability in the central CocoaPods server could have potentially impacted up to three million mobile apps that relied on the open source package...
Multiple members of the Accreditation Body’s board of directors also serve as consultants in the cybersecurity space, which critics say gives them an unfair advantage to...
More details have emerged on the recent Codecov system breach which is now being likened to the SolarWinds hack. In new reporting by Reuters, investigators have...
Adversaries are turning their focus towards cheaper, easier targets within an organisation’s supply chain, especially as businesses increasingly acquire software from external suppliers. Adversaries are turning...
According to new research by an academic group, nation-state cyberattacks are becoming more common and varied. The report analyzed over 200 cybersecurity incidents linked with nation-state...
Recent Comments