software supply chain attack – WindowsTechs.com

Accellion Data Breach Highlights Third-Party Risk

Posted on May 18, 2021 by Tony Howlett

Two mega-breaches caused by third parties earlier this year, following the SolarWinds supply chain hack created a growing tsunami of third-party risk for enterprises and government organizations. Security software provider Accellion also suffered a br… Continue reading Accellion Data Breach Highlights Third-Party Risk→

Over 2K Publicly Accessible Etcd Servers Leak Sensitive Credentials

Posted on March 23, 2018 by Lucian Constantin

After publicly exposed MongoDB databases, Amazon AWS S3 buckets and Redis instances, researchers now warn that a considerable number of etcd servers are also publicly accessible and contain sensitive credentials that could provide access to additional… Continue reading Over 2K Publicly Accessible Etcd Servers Leak Sensitive Credentials→

Backdoors Found in Three More WordPress Plug-ins

Posted on December 28, 2017 by Lucian Constantin

In what is becoming an increasingly common type of software supply chain attack, three more WordPress plug-ins that recently changed ownership got backdoored by their new owners. What’s worse is that the malicious code went undetected for months…. Continue reading Backdoors Found in Three More WordPress Plug-ins→