The website of the prolific ransomware group REvil has come back online about two months after it disappeared following an attack on a number of managed service providers.
The executive order on cyber security issued by the US on Thursday will be judged by whether it can stop the next attack similar to the Colonial Pipeline attack or the SolarWinds supply chain fiasco, the head of a security firm says.
The Australian company behind a password manager that was subjected to a supply chain attack is blaming customers who post its advisories about the attack on social media, claiming this may lead to related attacks.
Australian company Click Studios has warned users of its enterprise password manager Passwordstate that a supply chain attack may have led to their customers' password records being harvested.
Software auditing tool maker Codecov has had its systems breached and the attackers are now reportedly using its bash uploader script to gain access to hundreds of its customers' networks.
Microsoft has admitted that the malicious attackers involved in a supply chain attack gained access to some part of the source code for its Azure, Exchange and Intune products.
Email security firm Mimecast has admitted that the compromise of a certificate it had issued for some Microsoft services is connected to the SolarWinds supply chain incident.
Russian security firm Kaspersky says it has found some similarities in the methods used by the SUNBURST malware, that was used in a supply chain attack on a number of US firms disclosed in December, and long-time attacker, the Turla Group.
Neither American cyber security firm FireEye nor software giant Microsoft, the two companies which carried out an investigation into supply chain attacks on many companies through software made by SolarWinds, have attributed the attacks to any country, least of all Russia, in their reports.
Ten months ago, the American news agency Bloomberg published a sensational story claiming that Chinese spies had corrupted the tech supply chain and installed small chips on motherboards which were supplied to the American company Supermicro Computer. Despite being met by a storm of denial, the likes of which is rarely seen, Bloomberg has neither retracted nor corrected the yarn till today.
Six additional companies, apart from Taiwan-based PC maker ASUS, were targeted by the ShadowHammer supply chain attack which was reported last month by the security firm Kaspersky Lab.
Russian security firm Kaspersky Lab claims to have uncovered a sophisticated supply chain attack which used the live update utility that comes on hardware made by ASUS, the fifth largest PC supplier which is based in Taiwan, with the attack having taken place between June and November 2018.
Global research conducted by security software vendor CrowdStrike reveals many companies lack visibility and awareness to combat supply chain attacks despite the majority having experienced breaches.
A partial victory indeed. Meanwhile Julian Assange is still stuck in gaol while lawyers and activists feast on his discomfort.[…]
Yes indeed, unwelcome scam calls are on the rise!add trojan and phishing links in unsolicited SMS to that list :)Interesting,[…]
the G-sync compatible TV is great but I wanted to read more on the LG Rolling Bot to see if[…]
I purchased a NOVOO USB C Hub 8 in 1 USB-C Dock back in 2020 for my Dell XPS-15 when[…]
Definitely vital to check that whatever USB-C multi-port / multifunction hub/adapter you get, if you are buying for Windows OS,[…]