Just because you're the victim of a cybercrime doesn't let you off your cybersecurity obligations
Read moreDeveloper Sabotages Open-Source Software Package
March 21 2022This is a big deal:
A developer has been caught adding malicious code to a popular open-source package that wiped files on computers located in Russia and Belarus as...
Read more
Japanese manufacturer confirmed a Feb. 27 attack on its US subsidiary that led to a temporary production shutdown.
Read moreCrowdsourced Efforts Get Leveraged in Ukraine Conflict
March 21 2022The battle is not just being waged in the physical world — it's also happening online. And average people are taking part, not just governments.
Read moreGoogle eventually won out in the competition for Mandiant, but Microsoft's interest underscores the trend in consolidation of security services into large cloud providers, experts say.
Read moreWAFs remain a popular backfill for complex and fraught patch management.
Read moreGreenpeace has published a report, “Squids in the Spotlight,” on the extent and externalities of global squid fishing. News article. As usual, you can also use this squid post to talk...
Read moreThe maintainer of a widely used npm module served up an unwelcome surprise for developers.
Read moreCyCognito Launches Exploit Intelligence
March 18 2022Risk intelligence solution provides insight, visibility, and guidance to identify, prioritize, and remediate vulnerabilities like Log4j
Read moreA Chance to Raise Shields Right
March 18 2022CISA's "Shields Up" alert provides urgency — and opportunity — for supply chain conversations.
Read more
Recent Comments