SEARCH
Archive
Cybercriminals Target Transport and Logistics Industry
Cybercriminals claim they have access to various shipping and logistics company networks, causing what researchers say could be a “precarious situation” for the struggling supply chain sector.
Lazarus APT Uses Updated Malware in Potential Supply Chain Attacks
The Lazarus group has been recently observed “building supply-chain attack capabilities” by targeting a legitimate South Korean security software and an IT asset monitoring solution vendor.
Microsoft Warns of Ongoing Nobelium Supply Chain Attacks
Microsoft said that the threat group has used phishing and password-spraying attacks to compromise at least 14 IT service providers this year.
GitHub Drops Passwords in Favor of 2FA
GitHub has eliminated support for passwords for Git operations and now requires the use of a hardware security key or other strong 2FA option.
Supply Chain Security: ‘The Government Is Not Going to Fix This’
At Black Hat, Matt Tait of Corellium said the supply chain security problem may get far worse if platform providers don't step in to address it.