Collaborate Disseminate
Supply chain security insights: A successful attack against a supplier can lead to multiple opportunities against the supplier’s downstream customers.
The post Cyber Insights 2024: Supply Chain appeared first on SecurityWeek.
Continue reading Cyber Insights 2024: Supply Chain
In this Help Net Security interview, Yaron Edan, CISO at REE Automotive, discusses the cybersecurity landscape of the automotive industry, mainly focusing on electric and connected vehicles. Edan highlights the challenges of technological advancements … Continue reading Integrating cybersecurity into vehicle design and manufacturing
AnyDesk is revoking certificates and passwords in response to a recently discovered security breach impacting production systems.
The post AnyDesk Revokes Passwords, Certificates in Response to Hack appeared first on SecurityWeek.
Continue reading AnyDesk Revokes Passwords, Certificates in Response to Hack
The cost of cyberattacks on software supply chains is a growing problem, with the average data breach costing $4.45 million in 2023. Since President Biden’s 2021 executive order, software bills of materials (SBOMs) have become a cornerstone in protecting supply chains. In December 2023, the National Security Agency (NSA) published new guidance to help organizations […]
The post Updated SBOM guidance: A new era for software transparency? appeared first on Security Intelligence.
Continue reading Updated SBOM guidance: A new era for software transparency?
In this Help Net Security interview, Nate Warfield, Director of Threat Research and Intelligence at Eclypsium, outlines the crucial tasks for CISOs in protecting supply chains and achieving comprehensive visibility. Warfield also discusses the vital co… Continue reading CISOs’ role in identifying tech components and managing supply chains
In this Help Net Security video, Frank Shultz, CEO of Infinite Blue, discusses how more frequent and severe disruptions and our increasingly interconnected world collide to create a new threat for resilience leaders to manage: polycrises. These multipl… Continue reading Why resilience leaders must prepare for polycrises
With the integration of sophisticated technologies like over-the-air updates and increased data connectivity, cars are no longer just modes of transportation but also hubs of personal and operational data. This shift brings forth unique cybersecurity c… Continue reading The reality of hacking threats in connected car systems
Kusari has raised $8 million to help organizations gain visibility into and secure their software supply chain.
The post Software Supply Chain Security Startup Kusari Raises $8 Million appeared first on SecurityWeek.
Continue reading Software Supply Chain Security Startup Kusari Raises $8 Million
Researchers detail a CI/CD attack leading to PyTorch releases compromise via GitHub Actions self-hosted runners.
The post New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise appeared first on SecurityWeek.
Continue reading New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise
Self-hosted GitHub Actions runners could allow attackers to inject malicious code into repositories, leading to supply chain attacks.
The post Major IT, Crypto Firms Exposed to Supply Chain Compromise via New Class of CI/CD Attack appeared first on Se… Continue reading Major IT, Crypto Firms Exposed to Supply Chain Compromise via New Class of CI/CD Attack