supply chain attack
![MOVEit Cyberattack, The Problem with Password Rotations, Military Alert on Free Smartwatches](https://securityboulevard.com/wp-content/plugins/pt-content-views-pro/public/assets/images/lazy_image.png)
MOVEit Cyberattack, The Problem with Password Rotations, Military Alert on Free Smartwatches
Several major organizations, including British Airways and the BBC, fell victim to the recent MOVEit cyberattack. We discuss the alarming trend of hackers targeting trusted suppliers to gain access to customer data, ...
![OSINT, Lazarus updates firmware open source Log4j OpenSSF API security dynamic code application](https://securityboulevard.com/wp-content/plugins/pt-content-views-pro/public/assets/images/lazy_image.png)
Lazarus Assault Via 3CX Exposes Need to Rethink Security
When North Korean threat actors the Lazarus Group exploited a legitimate update to the 3CXDesktopApp—a softphone application from 3CX—security professionals didn’t initially pick up on the import of the activity and tactics ...
![GitHub connections digital pipeline GitHub ICS Risk](https://securityboulevard.com/wp-content/plugins/pt-content-views-pro/public/assets/images/lazy_image.png)
Supply Chain Dependency: What Your GitHub Connections May Trigger
The writing is on the walls, and it’s hard to avoid after the significant spike in attacks against GitHub repositories. The recent CircleCI breach, in which customers’ secrets and encryption keys were ...
![Wiz data breach enterprise Lapsus$ data scraping SolarWinds](https://securityboulevard.com/wp-content/plugins/pt-content-views-pro/public/assets/images/lazy_image.png)
Teen Mastermind Behind Lapsus$ Ransomware Attacks
Just when it looked like a tired hacker stereotype was fading, it seems that a teenager orchestrated Lapsus$ attacks against high-profile targets like Microsoft and Nvidia—all from the comfort of the home ...
![supply chain](https://securityboulevard.com/wp-content/plugins/pt-content-views-pro/public/assets/images/lazy_image.png)
Supply Chain Security – Not As Easy As it Looks
The massive exploit of SolarWinds is a prime example of what is called a “supply chain” vulnerability. The vast majority of those impacted by the Russian SolarWinds attack probably had never even ...
![Spring4Shell Log4j vulnerabilities time Kaseya ransomware recovery REvil](https://securityboulevard.com/wp-content/plugins/pt-content-views-pro/public/assets/images/lazy_image.png)
Kaseya Starts Recovery After REvil Attack
Kaseya is now reporting the software-as-a-service (SaaS) instance of its Virtual System Administrator (VSA) platform will be back online sometime between 4:00 p.m. and 7:00 p.m. EST today. It expects the on-premises ...
![Three wise monkeys](https://securityboulevard.com/wp-content/plugins/pt-content-views-pro/public/assets/images/lazy_image.png)
REvil Makes Monkeys out of Kaseya Customers
Over the long weekend, a huge ransomware attack emerged. Kaseya seems to have been the common component ...
![5 Ways to Protect Software Supply-Chains From Malicious Attackers](https://securityboulevard.com/wp-content/plugins/pt-content-views-pro/public/assets/images/lazy_image.png)
5 Ways to Protect Software Supply-Chains From Malicious Attackers
Protecting against supply-chain attacks is imperative for companies and organizations. In order to avoid making a small mistake that could put a company’s data at risk, supply-chain attacks need to be prevented ...
![Wiz data breach enterprise Lapsus$ data scraping SolarWinds](https://securityboulevard.com/wp-content/plugins/pt-content-views-pro/public/assets/images/lazy_image.png)
Best of 2020: The SolarWinds Supply Chain Hack: What You Need to Know
As we close out 2020, we at Security Boulevard wanted to highlight the five most popular articles of the year. Following is the first in our series of the Best of 2020 ...
![FireEye Hack Turns into a Global Supply Chain Attack](https://securityboulevard.com/wp-content/plugins/pt-content-views-pro/public/assets/images/lazy_image.png)
FireEye Hack Turns into a Global Supply Chain Attack
The FireEye hack turned into a global supply chain attack affecting thousands of SolarWinds customers around the world. The post FireEye Hack Turns into a Global Supply Chain Attack appeared first on ...