Security news that informs and inspires

Archive

12 results for tag Supply Chain:

Malware Infects NetBeans Projects In Software Supply Chain Attack

The Octopus Scanner malware compromised 26 open source projects hosted on GitHub in a new supply chain attack targeting NetBeans projects, GitHub Security Lab said.

Supply Chain, Appdev, Github

Industry Groups Don’t Like Commerce Department’s Supply Chain Security Rules

Multiple business groups have pushed back on the Department of Commerce's proposed supply chain rules on information and communications technology supply chain security due to vague language and undefined scope.

Supply Chain, Government

Firms Increasingly Affected by Breaches at Other Organizations

The world is more interconnected than ever, and that network of dependencies means when an organization experiences a security incident, so do other downstream organizations in the supply chain, Cyentia Insitute said in its latest analysis.

Supply Chain, Risk Management

Supply Chain Security Requires Knowing Who to Avoid

There are many ways to share threat indicators and vulnerability details, but no good way to share concerns about untrustworthy suppliers and vendors in the supply chain. That needs to change.

Supply Chain

Malwarebytes Connects Magecart Group to Carbanak

Researchers have linked the Magecart group known for its supply-chain attacks to Cabanak, an advanced threat group.

Website Security, Supply Chain, Magecart