Tag: Supply Chain

  • Understanding Supply Chain Cyber Attacks

    Today’s cybersecurity landscape has changed dramatically due to digitalization and interconnectivity. While the benefits of each push …

  • Mitigating Risk of Supply Chain Attacks

    As I’ve written before, sophisticated adversaries are finding vulnerabilities wherever they can, and often that means looking to an …

  • 3 Steps to Reduce Risk in Your Supply Chain

    Many companies have very limited visibility into their vendors’ security posture — and some may have thousands of vendors. Here are steps …

  • Grafeas Project Debuts to Improve Kubernetes Supply Chain Security

    New open-source effort backed by Google, IBM, Red Hat and others, launches to provide auditing and governance for the container software …

  • Google, IBM and others launch an open source API for keeping tabs on software supply chains

    Thanks to containers and microservices, the way we are building software is quickly changing. But as with all change, these new models also …

  • Supply Chain Risk 2020: New Worries

    As we sift through data from SCM World’s 2017 Future of Supply Chain survey, one of the most striking shifts from last year’s responses is …

  • CCleaner hackers targeted tech giants with a second-stage malware

    “In analyzing the delivery code from the C2 server, what immediately stands out is a list of organizations, including Cisco, that were specifically targeted through delivery of a second-stage loader. Based on a review of the C2 tracking database, which only covers four days in September, we can confirm that at least 20 victim machines…

  • CCleaner malware outbreak is much worse than it first appeared

    09/21/2017 5:43 pm Categories: Biz & IT View non-AMP version at arstechnica.com The recent CCleaner malware outbreak is much worse than it initially appeared, according to newly unearthed evidence. Read full news article on Technology Lab – Ars Technica  

  • Avast CCleaner Compromised Amid Rise in Supply Chain Threats

    A legitimate version of Avast’s CCleaner software package was compromised to deliver malware, affecting CCleaner v5.33 as well as CCleaner Cloud version 1.07.3191. Some 2.27 million endpoints are affected by the malicious CCleaner attack revealed today by Cisco Talos. Read full news article on Dark Reading  

  • Hackers put malware in popular PC utility CCleaner

    CCleaner has been downloaded more than 2 billion times since it was originally released in 2003. There have been multiple iterations of the tool since then. Read full news article on Cyberscoop  

  • Touchscreens ‘at risk from chip in the middle attack’, warn researchers

    Using non-official (or even completely dodgy aftermarket) parts for do-it-yourself repairs historically has just meant, at worst, accepting some risk for the shelf life of your appliance. But smartphones, with all their unfettered access to our lives, are a very tempting target for attackers, and new research shows that even shattered screen or battery replacement…

  • Maersk may lose up to $300M due to NotPetya attack

    The world’s largest container shipping company, A.P. Moller-Maersk, has said that it expects as much as a $300 million dip in profits due to a June 27 ransomware incident, the firm noted in a public report released Wednesday. Read full news article on Cyberscoop