SEARCH
Archive
Microsoft Warns of Ongoing Nobelium Supply Chain Attacks
Microsoft said that the threat group has used phishing and password-spraying attacks to compromise at least 14 IT service providers this year.
Nobelium Deploying FoggyWeb Backdoor in Targeted Attacks
The Nobelium attackers, who are responsible for the SolarWinds intrusion, have been deploying a new backdoor called FoggyWeb in targeted attacks.
Chinese Attack Group Exploiting SolarWinds Zero Day
A newly identified attack group from China has been discovered exploiting a zero day in the SolarWinds Serv-U FTP products.
Ingredient List Only Part of the Recipe to Fix Supply Chain Security
The requirement for vendors to provide a software bill of materials for the apps they sell to federal agencies will only address part of the supply chain risk, experts say.
Attackers Focused on SolarWinds Network as Early as January 2019
The APT29 attackers who targeted SolarWinds were doing reconnaissance on the company's network as early as January 2019.