XZ Utils Backdoor Implanted in Carefully Executed, Multiyear Supply Chain Attack
Had a Microsoft developer not spotted the malware when he did, the outcome could have been much worse.
CISA urges software devs to weed out SQL injection vulnerabilities
CISA and the FBI urged executives of technology manufacturing companies to prompt formal reviews of their organizations' software and implement mitigations to…
KDE advises extreme caution after theme wipes Linux user’s files
On Wednesday, the KDE team warned Linux users to exercise "extreme caution" when installing global themes, even from the official…
Fake Leather wallet app on Apple App Store is a crypto drainer
The developers of the Leather cryptocurrency wallet are warning of a fake app on the Apple App Store, with users…
Japan Blames North Korea for PyPI Supply Chain Cyberattack
Open-source software ecosystem compromise leaves developers in Asia and around the globe at risk.
Network Perception Introduces Rapid Verification of Zone-to-Zone Segmentation
PRESS RELEASE CHICAGO — (BUSINESS WIRE) — Network Perception, innovators of operational technology (OT) solutions...
News farm impersonates 60+ major outlets: BBC, CNN, CNBC, Guardian…
BleepingComputer has discovered a content farm operating some 60+ domains named after popular media outlets, including the BBC, CNBC, CNN,…
White House urges devs to switch to memory-safe programming languages
The White House Office of the National Cyber Director (ONCD) urged tech companies today to switch to memory-safe programming languages,…
Ubuntu ‘command-not-found’ tool can be abused to spread malware
A logic flaw between Ubuntu's 'command-not-found' package suggestion system and the snap package repository could enable attackers to promote malicious…
Cyber Resilience – Beyond Cyber Security
In a world where 100% security is not possible, we need to be resilient as we strive to be secure.…