Category Archives: supply chain security

Risk Ledger Raises £6.25 Million for Supply Chain Security Solution

Posted on by

UK-based Risk Ledger has raised £6.25 million (~$7.65 million) in Series A funding to prevent supply chain attacks.
The post Risk Ledger Raises £6.25 Million for Supply Chain Security Solution appeared first on SecurityWeek.
Continue reading Risk Ledger Raises £6.25 Million for Supply Chain Security Solution

Supply Chain Startup Chainguard Scores $61 Million Series B

Posted on by

Washington startup Chainguard banks $61 million in new financing as investors make hefty wagers on software supply chain security companies.
The post Supply Chain Startup Chainguard Scores $61 Million Series B appeared first on SecurityWeek.
Continue reading Supply Chain Startup Chainguard Scores $61 Million Series B

Google Offers Bug Bounties for Generative AI Security Vulnerabilities

Posted on by

Google’s Vulnerability Reward Program offers up to $31,337 for discovering potential hazards. Google joins OpenAI and Microsoft in rewarding AI bug hunts. Continue reading Google Offers Bug Bounties for Generative AI Security Vulnerabilities

Software Supply Chain Security Attacks Up 200%: New Sonatype Research

Posted on by

Sonatype’s 9th annual State of the Software Supply Chain also covers regulations and how AI could help developers protect organizations from security risks. Continue reading Software Supply Chain Security Attacks Up 200%: New Sonatype Research

Critical SOCKS5 Vulnerability in cURL Puts Enterprise Systems at Risk

Posted on by

Flaw poses a direct threat to the SOCKS5 proxy handshake process in cURL and can be exploited remotely in some non-standard configurations.
The post Critical SOCKS5 Vulnerability in cURL Puts Enterprise Systems at Risk appeared first on SecurityWeek.
Continue reading Critical SOCKS5 Vulnerability in cURL Puts Enterprise Systems at Risk

US Government Releases Security Guidance for Open Source Software in OT, ICS

Posted on by

CISA, FBI, NSA, and US Treasury published new guidance on improving the security of open source software in OT and ICS.
The post US Government Releases Security Guidance for Open Source Software in OT, ICS appeared first on SecurityWeek.
Continue reading US Government Releases Security Guidance for Open Source Software in OT, ICS

Taiwan Probes Firms Suspected of Selling Chip Equipment to China’s Huawei Despite US Sanctions

Posted on by

Taiwan authorities are investigating four Taiwan-based companies suspected of helping China’s Huawei Technologies to build semiconductor facilities.
The post Taiwan Probes Firms Suspected of Selling Chip Equipment to China’s Huawei Despite US Sanctions… Continue reading Taiwan Probes Firms Suspected of Selling Chip Equipment to China’s Huawei Despite US Sanctions

GitHub Improves Secret Scanning Feature With Expanded Token Validity Checks

Posted on by

GitHub beefs up its secret scanning feature, now allowing users to check the validity of exposed credentials for major cloud services.
The post GitHub Improves Secret Scanning Feature With Expanded Token Validity Checks appeared first on SecurityWeek.
Continue reading GitHub Improves Secret Scanning Feature With Expanded Token Validity Checks