SEARCH
Archive
Supply Chain Security Requires Knowing Who to Avoid
There are many ways to share threat indicators and vulnerability details, but no good way to share concerns about untrustworthy suppliers and vendors in the supply chain. That needs to change.
Malwarebytes Connects Magecart Group to Carbanak
Researchers have linked the Magecart group known for its supply-chain attacks to Cabanak, an advanced threat group.
Tortoiseshell Targets IT Providers in Supply Chain Attack
Supply chain attacks violate the trust organizations have in their suppliers and providers. A newly discovered attack group is brazen, compromising IT providers in order to get to their final targets.
Scary Hardware Attacks Aren’t The Biggest Risks
Supply chain attacks are scary, but there are plenty of other hardware-based issues organizations should be worrying about before they have to panic about the complex malicious implants in their servers.
ICT Task Force Meets to Set Supply Chain Standards
Attacks on the global supply chain—sabotaging hardware components, installing malware or backdoors in software—are stuff security nightmares are made of. The ICT Task Force, formed by the Department of Homeland Security, meets to help companies manage their risk.