Magnitude EK Expands Arsenal With PuzzleMaker Exploit Chain
The Magnitude exploit kit (EK) is now capable of targeting Chromium-based browsers running on Windows systems, security researchers with Avast warn. Exploit kits such...
Tagged: Chain
Incident Response / Management & Strategy / NEWS & INDUSTRY / Risk Management / Security Architecture
Microsoft, Intel and Goldman Sachs Lead New Supply Chain Security Group at TCG
Microsoft, Intel and Goldman Sachs will lead a new work group focusing on supply chain security at the Trusted Computing Group (TCG). TCG is...
Application Security / Audits / Cloud Security / Compliance / Data Protection / Disaster Recovery / Email Security / Endpoint Security / Fraud & Identity Theft / Identity & Access / Incident Response / Malware / Network Security / NEWS & INDUSTRY / Phishing / Risk Management / Security Architecture / Tracking & Law Enforcement / Virus & Malware / Vulnerabilities
CISO Forum Panel: Navigating SBOMs and Supply Chain Security Transparency
At SecurityWeek’s 2021 CISO Forum, a high-powered panel of experts discussed specific ways an SBOM can improve supply chain security and where expectations may be overblown. ...
Popular slot machine chain Dotty’s reveals data breach exposing SSNs, financial account numbers, biometric data, medical records and more
Nevada Restaurant Services (NRS), the owner of popular slot machine parlor chain Dotty’s, has disclosed a data breach that exposed a significant amount of...
FBI Warns Ransomware Attack Could Disrupt Food Supply Chain
Ransomware attack on U.S. farm incurred $9 million in losses The Federal Bureau of Investigation (FBI) has sent out a Private Industry Notification to...
Application Security / Audits / Cloud Security / Compliance / Cyberwarfare / Data Protection / Email Security / Endpoint Security / Fraud & Identity Theft / Identity & Access / Mobile Security / Network Security / NEWS & INDUSTRY / Phishing / Privacy / Tracking & Law Enforcement / Virus & Malware / Vulnerabilities
Facebook Pays Out $40,000 for Account Takeover Exploit Chain
Social media giant Facebook on Thursday announced a new payout guideline to help vulnerability hunters better understand its bounty decisions related to given bugs....
Cybersecurity warning: Realtek flaw exposes dozens of brands to supply chain attacks
A recently disclosed flaw in chipsets from Taiwanese semiconductor company Realtek is being targeted by a botnet based on the old IoT malware, Mirai....
Supply Chain Attacks Using Container Images – E Hacking News
According to cybersecurity firm Aqua Security, a recently discovered crypto mining technique used malicious Docker images to takeover companies’ computing resources to mine...
Supply chain attacks are getting worse, and you are not ready for them
The European Union Agency for Cybersecurity (ENISA) has analyzed 24 recent software supply chain attacks and concluded that strong security protection is no longer...
PyPI Python Package Repository Patches Critical Supply Chain Flaw
The maintainers of Python Package Index (PyPI) last week issued fixes for three vulnerabilities, one among which could be abused to achieve arbitrary code...