supply chain Archives | CyberScoop

Nominations can be submitted for the 2025 CyberScoop 50 awards!

Click here!

supply chain

A laptop user typing at their keyboard. (Getty Images)

Malicious packages in open-source repositories are surging

The open-source ecosystem is being overrun by malicious packages, a new report from Sonatype finds.

Oct 10, 2024 By Christian Vasquez

The White House, J. Altdorfer Photography/Getty Images

More frequent disruption operations needed to dent ransomware gangs, officials say

The comments from White House and ODNI officials ahead of a Counter Ransomware Initiative summit come as the gangs prove difficult to keep down.

Sep 30, 2024 By Tim Starks

An illustration of a vehicle. (Getty Images)

White House proposes rule to ban Chinese, Russian parts for networked vehicles

The ban for hardware and software could happen within three to seven years.

Sep 23, 2024 By Christian Vasquez

Nate Fick spoke to students during a State Department recruitment event at Stanford University on Oct. 17, 2022. (Photo by JOSH EDELSON/POOL/AFP via Getty Images)

Deterrence in cyberspace is possible — and ‘urgent’ — amid ‘alarming’ hybrid attacks, State cyber ambassador says

In an interview with CyberScoop, Nate Fick also discussed the structure of his office and regions of emphasis.

Sep 18, 2024 By Tim Starks

visitor walks past US multinational telecommunications AT&T logo during the Mobile World Congress (MWC), the telecom industry’s biggest annual gathering, in Barcelona on February 26, 2024. (Photo by PAU BARRENA/AFP via Getty Images)

AT&T agrees to $13 million fine for third-party cloud breach

The breach resulted in the theft of information related to more than 8.9 million AT&T Mobility customers.

Sep 17, 2024 By Derek B. Johnson

Broken RGB screen close-up with a missing pixel on the bottom right. (Getty Images)

Zero trust: How the ‘Jia Tan’ hack complicated open-source software

The volunteers that maintain open-source software have always been knocked around by the tech community. The Jia Tan hack made it all so much worse.

Aug 15, 2024 By Christian Vasquez

Harry Coker testifies during his confirmation hearing to become the national cyber director before the Senate Homeland Security and Governmental Affairs Committee on Nov. 2, 2023, in Washington, D.C. (Photo by Kevin Dietsch/Getty Images)

ONCD report: ‘Fundamental transformation’ in cyber, tech drove 2023 risks

Evolving critical infrastructure risks, ransomware, supply chain exploitation, commercial spyware and AI were the top trends, the office reported.

May 7, 2024 By Tim Starks

Safe Mode

Rumman Chowdhury on AI red-teaming; a Sisense supply chain attack

Dr. Rumman Chowdhury, Data Scientist, Member of the AI Safety and Security Board for the U.S. Department of Homeland Security, US Science Envoy for AI for the…

Apr 18, 2024 By CyberScoop Staff

A man in blue clothing holds a mask behind his bask in this photo illustration. (Getty Images)

Supply chain attack sends shockwaves through open-source community

An operation to undermine the software utility XZ Utils has exposed the fragile human foundations on which the modern internet is built.

Apr 5, 2024 By Christian Vasquez

The North Korean flag flies over its embassy in Beijing. (Photo by PETER PARKS/AFP via Getty Images)

3CX supply chain attack was the result of a previous supply chain attack, Mandiant says

The incident is the first known case of one supply chain attack leading to a second supply chain attack.

Apr 20, 2023 By AJ Vicens