SEARCH
Archive
Industry Groups Don’t Like Commerce Department’s Supply Chain Security Rules
Multiple business groups have pushed back on the Department of Commerce's proposed supply chain rules on information and communications technology supply chain security due to vague language and undefined scope.
Firms Increasingly Affected by Breaches at Other Organizations
The world is more interconnected than ever, and that network of dependencies means when an organization experiences a security incident, so do other downstream organizations in the supply chain, Cyentia Insitute said in its latest analysis.
Supply Chain Security Requires Knowing Who to Avoid
There are many ways to share threat indicators and vulnerability details, but no good way to share concerns about untrustworthy suppliers and vendors in the supply chain. That needs to change.
Malwarebytes Connects Magecart Group to Carbanak
Researchers have linked the Magecart group known for its supply-chain attacks to Cabanak, an advanced threat group.
Tortoiseshell Targets IT Providers in Supply Chain Attack
Supply chain attacks violate the trust organizations have in their suppliers and providers. A newly discovered attack group is brazen, compromising IT providers in order to get to their final targets.