ComputerWeekly.com1 week agoInformation securityChinese APT suspected of Ministry of Defence hack | Computer WeeklyAn undisclosed APT, potentially linked to the Chinese government, was behind a serious supply chain data breach at the UK Ministry of Defence. [ more ]
Nextgov.com1 month agoBusiness intelligenceCISA alerts Sisense breach that possibly exposed customer dataSisense may have experienced a data breach affecting customer data. The incident is suspected to be part of a broader supply chain attack with potential impacts on critical infrastructure. [ more ]
Harvard Business Review4 months agoBusinessHow SolarWinds Responded to the 2020 SUNBURST CyberattackSolarWinds fell victim to a supply chain attack where hackers inserted malware into a software update, potentially compromising customer data. General Counsel Jason Bliss had to lead the company's response without knowing the full extent of the attack or having the new CEO in place. [ more ]
TechCrunch5 months agoPrivacy professionalsNorth Korea-backed hackers target CyberLink users in supply-chain attack | TechCrunchNorth Korean state-backed hackers are distributing a malicious version of a legitimate application developed by CyberLink. Microsoft's Threat Intelligence team has identified the compromise and has taken measures to protect customers. [ more ]
TechCrunch5 months agoPrivacy professionalsNorth Korea-backed hackers target CyberLink users in supply-chain attack | TechCrunchNorth Korean state-backed hackers are distributing a malicious version of a legitimate application developed by CyberLink. Microsoft's Threat Intelligence team has identified the compromise and has taken measures to protect customers. [ more ]
TechCrunch5 months agoPrivacy professionalsNorth Korea-backed hackers target CyberLink users in supply-chain attack | TechCrunchNorth Korean hackers have compromised CyberLink, a Taiwanese software maker, to distribute a modified installer as part of a supply-chain attack. The trojanized installer has been detected on more than 100 devices in multiple countries. Microsoft attributes the attack to a North Korean nation-state actor known as Diamond Sleet. [ more ]
TechRepublic1 month agoInformation securityXZ Utils Supply Chain Attack: A Threat Actor Spent Two Years to Implement a Linux BackdoorXZ Utils is widely used in Unix-based systems like Linux for data compression. The XZ backdoor allowed remote code execution via SSH login certificates and affected versions 5.6.0 and 5.6.1. [ more ]
TechCrunch5 months agoInformation securityNorth Korea-backed hackers target CyberLink users in supply-chain attack | TechCrunchNorth Korean state-backed hackers are distributing a malicious version of a legitimate application developed by CyberLink. Microsoft's Threat Intelligence team has identified the compromise and has taken measures to protect customers. [ more ]