supply chain compromise Archives

supply chain compromise

Attackers mount Magento supply chain attack by compromising FishPig extensions

September 14, 2022

FishPig, a UK-based company developing extensions for the popular Magento open-source e-commerce platform, has announced that its paid software offerings have been injected …

Supply chain risk is a top security priority as confidence in partners wanes

September 5, 2022

As cyber attackers increasingly look to capitalize on accelerating digitalization that has seen many enterprises significantly increase their reliance on cloud-based solutions …

Phishing PyPI users: Attackers compromise legitimate projects to push malware

August 25, 2022

PyPI, the official third-party software repository for Python packages, is warning about a phishing campaign targeting its users. “We have additionally determined that …

How vulnerable supply chains threaten cloud security

August 22, 2022

Organizations are struggling to sufficiently secure new cloud environments implemented during the pandemic, while maintaining legacy equipment and trying to adapt their …

How to minimize your exposure to supply chain attacks

August 3, 2022

Supply chain attacks are on the rise, and many organizations seem unsure on how to respond to the threat, but I’m here to tell you that there are several steps you can take to …

Now is the time to focus on software supply chain security improvements

August 1, 2022

The shift to cloud-native development, along with the increased speed in development brought about by the adoption of DevOps processes, has made the challenges connected with …

Threat actors increasingly use third parties to run their scams

June 28, 2022

Abnormal Security released new research that showcases a rising trend in financial supply chain compromise as threat actors impersonate vendors more than ever before. In …

How the blurring of the “supply chain” opens your doors to attackers—and how you can close them

June 21, 2022

There have been more than 200 dedicated supply chain attacks over the past decade. Some of these campaigns have affected countless supplier networks and millions of customers …

How confident are IT pros in the security of their organization’s supply chain?

June 15, 2022

Over the last two years, supply chain challenges have rocked both enterprises and consumers alike, making it harder to access certain goods and maintain business continuity. …

Barely one-third of IT pros can vet code for tampering

June 8, 2022

Global research commissioned by ReversingLabs and conducted by Dimensional Research, revealed that software development teams are increasingly concerned about supply chain …

Ransomware attacks setting new records

June 7, 2022

Zscaler released the findings of its annual ThreatLabz Ransomware Report, which revealed an 80 percent increase in ransomware attacks year-over-year. In 2022, the most …

Boards, CEOs demand software supply chain security improvements

June 7, 2022

Venafi announced the findings of a global study of 1,000 CIOs, in which 82% say their organizations are vulnerable to cyberattacks targeting software supply chains. The shift …