Security news that informs and inspires

Archive

31 results for tag Supply Chain:

Backdoor Found in Courtroom Recording Software Installer

Researchers are warning of an apparent supply chain attack via a specific version of JAVS Viewer, audio-visual recording software used for courtrooms.

Supply Chain

U.S. Government Doubles Down on Chinese APT Warnings

“The PRC’s inside the house,” said Andrew Scott, associate director for China operations with the U.S. Cybersecurity and Infrastructure Security Agency (CISA).

Supply Chain

The Emergence of Security Flaws as a ‘National Resource’ in China

An Atlantic Council report looks at the impact of China's regulation - in effect now for two years - that requires organizations to submit notice of a software vulnerability to the Chinese government within two days of discovery.

Supply Chain

Microsoft: China-Based Hackers Accessed U.S. Government Emails

The threat group used forged authentication tokens - with an acquired Microsoft account consumer signing key - to access the email accounts of more than two dozen organizations.

Microsoft, Supply Chain

Software Supply Chain Security Takes Center Stage in Washington

The Biden administration issued new guidance on software supply chain security for federal agencies, which includes requirements for self-attestations and SBOMs.

Government, Supply Chain, Solarwinds