supply chain Archives

The North Korean flag flies over its embassy in Beijing. (Photo by PETER PARKS/AFP via Getty Images)

3CX supply chain attack was the result of a previous supply chain attack, Mandiant says

The incident is the first known case of one supply chain attack leading to a second supply chain attack.

Apr 20, 2023 By AJ Vicens

Kim Il Sung Square in Pyongyang. (Getty Images)

‘They outsmarted us.’ 3CX CEO acknowledges mistakes handling potential supply chain cyberattack

"We have a security team, we do our own pentesting, we've got software scanners, we got a CSO ... Nonetheless, they outsmarted us."

Mar 30, 2023 By Christian Vasquez AJ Vicens

Illustration by Oleksandr Hurtovyi/Getty Images

Hackers attempt to infiltrate Ukrainian tech company with backdoor malware, Talos says

The attack could have been part of an attempt to compromise the software supply chain, the researchers said.

Jul 21, 2022

Tulips in blossom on Independence Square on April 27, 2022 in Kyiv, Ukraine. Following Russia’s retreat from areas around the Ukrainian capital, signs of normal life have returned to Kyiv. (Photo by Alexey Furman/Getty Images)

Microsoft ties January Ukraine attack to notorious Sandworm group

Expect to see more attacks, Microsoft says.

Apr 27, 2022 By Tonya Riley

Backbone is everything, don’t be owned by your infrastructure: Lessons from Ukraine for America

Russia — in its Soviet incarnation — was the source of Ukraine’s infrastructure. Postwar pipes for everything from water to telecommunications in Ukraine is Russian in origin.

Feb 28, 2022 By Frank Cilluffo Sharon Cardash

Toyota factory — A worker assembles a Toyota Motor Corp Crown vehicle on the production line of the company’s Motomachi factory on July 30, 2018 in Toyota, Japan. (Photo by Tomohiro Ohsumi/Getty Images)

Suspected cyberattack on parts supplier forces Toyota to shut down Japan plants

Reports said the supplier, Kojima Industries Corp., was working to address an incident that blocked its network from communicating with Toyota's.

Feb 28, 2022 By Joe Warminsky

Electronic circuit board production and computer chip fly test by robotic automated machine. (Getty Images)

In studying tech supply chain, feds cite open source products, device firmware

The White House ordered Commerce and Homeland Security to examine weak spots in how the IT and communications industries produce hardware and software.

Feb 25, 2022 By Joe Warminsky

WASHINGTON, DC – AUGUST 25: U.S. President Joe Biden speaks during a meeting about cybersecurity in the East Room of the White House. Members of the Biden cabinet, national security team and leaders from the private sector attended the meeting about improving the nation’s cybersecurity. (Photo by Drew Angerer/Getty Images)

White House rolls out pipeline, supply chain security initiatives as companies pledge billions in cyber spending

Companies also will offer cyber tools and training after a private sector cybersecurity summit at the White House.

Aug 25, 2021 By Tim Starks

U.S. President Joe Biden speaks during an event in the East Room of the White House on August 23, 2021 in Washington, D.C. (Photo by Drew Angerer/Getty Images)

Apple, JPMorgan Chase bosses among industry heads set to gather at White House for cyber ‘call to action’

The administration expects to make "concrete announcements" about tackling root causes of cyberattacks, a senior official said.

Aug 25, 2021 By Tim Starks

An emperor moth (Saturnia) butterfly sits on a currant bush at a garden outside Moscow on May 4, 2018. (Photo credit should read YURI KADOBNOV/AFP via Getty Images)

An espionage campaign spread its wings from Myanmar to the Philippines, raising new questions

The alleged LuminousMoth campaign leapfrogged through Southeast Asia, while the victim count multiplied by more than 10.

Jul 14, 2021 By Tim Starks