TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks
Jan 18, 2024NewsroomSupply Chain Attacks / AI Security Continuous integration and continuous delivery (CI/CD) misconfigurations discovered in the open-source TensorFlow...
Jan 18, 2024NewsroomSupply Chain Attacks / AI Security Continuous integration and continuous delivery (CI/CD) misconfigurations discovered in the open-source TensorFlow...
Jan 06, 2024NewsroomCyber Espionage / Supply Chain Attack Telecommunication, media, internet service providers (ISPs), information technology (IT)-service providers, and Kurdish...
Organisations are struggling to keep up with vulnerabilities amid software supply chain complexity, as revealed by the recent annual Container...
Dec 22, 2023NewsroomThreat Intelligence / Supply Chain Attack Organizations in the Defense Industrial Base (DIB) sector are in the crosshairs...
Third-party supply chain risk is a key concern from Australian cyber security professionals. With enterprises typically relying on an expanding...
A supply chain attack on crypto hardware wallet Ledger led to the theft of $600K Pierluigi Paganini December 18, 2023...
Dec 14, 2023NewsroomMalware / Supply Chain Attack Cybersecurity researchers have identified a set of 116 malicious packages on the Python...
Retailers are pushing their customer service and supply chain systems to new limits in anticipation of record spending this holiday season. Increasingly,...
North Korea-linked APT Lazarus is using a MagicLine4NX zero-day flaw in supply chain attack Pierluigi Paganini November 25, 2023 UK...
Exposed Kubernetes configuration secrets can fuel supply chain attacks Pierluigi Paganini November 24, 2023 Researchers warn of publicly exposed Kubernetes...
North Korea-linked APT Diamond Sleet supply chain attack relies on CyberLink software Pierluigi Paganini November 23, 2023 North Korea-linked APT...
Nov 23, 2023NewsroomSoftware Supply Chain Attack A North Korean state-sponsored threat actor tracked as Diamond Sleet is distributing a trojanized...
The next part of the infection chain involved the installation of an old but legitimate Node.js with a valid and...
Nov 08, 2023NewsroomSupply Chain / Software Security A new set of malicious Python packages has slithered their way to the...
Reacting to growing concerns about supply chain security in the digital world, Eclypsium, a provider of digital supply chain security...