One of the most common cyber threats data center operators face involves the supply chain. Research firm Gartner predicts that 45 percent of organizations worldwide may experience attacks on their ...

Hackers have compromised at least 35 Chrome extensions by injecting malicious data-stealing JavaScript code in a massive supply chain attack that has impacted over 2,600,000 people. The attackers ...

Such an attack is called an “API Supply Chain Attack,” in which an attacker chooses to attack a weaker link in the service’s API ecosystem. While security professionals have long-known supply-chain ...

He said the importance of managing risk across the supply chain cannot be “understated,” especially as the Philippines remains a “prevalent target for cyber attacks like phishing ...

As software development becomes more complex and reliant on third-party components, the threat landscape is evolving. Supply chain attacks are growing more sophisticated and grander in scale, ...

Shared Features Between Sunburst and Kazuar Attribution for the SolarWinds supply-chain compromise has been difficult in part due to little-to-no clues linking the attack infrastructure to previous ...

Unfortunately, the bill never went to a vote, and since then, the software supply chain has become an increasingly prominent attack vector—enabling threat actors to become the protagonists of ...

In January 2021, we discovered a new supply-chain attack compromising the update mechanism of NoxPlayer, an Android emulator for PCs and Macs, and part of BigNox's product range with over 150 ...

Cybersecurity outfit Sekoia is warning Chrome users of a supply chain attack targeting browser extension developers that has potentially impacted hundreds of thousands of individuals already. Dozens ...

Dave Bittner is a security podcast host and one of the founders at CyberWire. He's a creator, producer, videographer, actor, experimenter, and entrepreneur. He's had a long career in the worlds of ...

"All the extensions I've highlighted are simple rip-offs with a few lines of co... Last year, the popular system cleanup software CCleaner suffered a massive supply-chain malware attack of all times, ...

However, these benefits come with risks that require consideration. After all, when you include third-party code of any kind into your software, you’re accepting some level of unknown risk—and that’s ...