Cyber espionage hackers target Czech antivirus software company Avast's CCleaner product with more than 435 million users in 68 countries in an attempted supply chain attack. Read More
With tens of thousands of contractors serving the Defense Department, the new vendor cyber security certificate aims to improve supply chain security by assessing contractors before allowing them to bid. Read More
Volusion was the latest target for Magecart attacks with 6,500 online stores being compromised. Hackers altered Javascript code on the platform to skim off credit card numbers and payment information. Read More
With evidence pointing to a nation-state attacker behind the attacks on multiple Airbus suppliers, companies should really take supply chain cyber security seriously even for smaller vendors. Read More
Supply chain security is a hot issue for enterprises with increasing third party data breaches. Recent (ISC)² study indicates these breaches are more likely the fault of a large enterprise partner than a small one. Read More
Data breach of U.S. Customs and Border Protection agency’s subcontractor has exposed around 100,000 travelers’ images which further highlight the importance of vendor security compliance. Read More
Magecart cybercrime group appears to have broaden their supply chain attacks to target more sites by going after third-party advertising vendors that works with media or entertainment websites. Read More
Vulnerable IT service providers are becoming entry points for supply chain attacks as seen in the recent attack on Wipro. The attack follows closely after Wipro CEO declares "security cannot be a show stopper for business priorities". Read More
A massive supply chain attack had distributed malware to tens of thousands of ASUS computers worldwide through legitimate ASUS software updates. It appears as if the attackers had inside information about ASUS servers and systems. Read More
Bloomberg reported that Chinese spies planted a grain-sized microchip in motherboards supplied to server manufacturers in an alleged supply chain attack. What are the lessons for enterprises? Read More
