News

Federal News Network3d
Trump revokes digital identity actions in new cyber executive order
While Trump's new EO eliminates several digital identity directives, it maintains other aspects of the Biden administration's cybersecurity agenda.
Cybeats Expands Contract by 34% with Fortune 500 Water Infrastructure Company to Secure Global Treatment Plants
Cybeats Technologies Corp. (CSE: CYBT) (OTCQB: CYBCF) ("Cybeats" or the "Company"), a leading provider of software ...
TechSpot1mon
Supply-chain attack lies dormant for six years before striking hundreds of e-commerce sites
At least three vendors of e-commerce software tools were compromised in a coordinated supply chain attack dating back at least six years. According to security firm Sansec, the unknown attackers ...
Ars Technica1mon
AI-generated code could be a disaster for the software supply chain. Here’s why.
These non-existent dependencies represent a threat to the software supply chain by exacerbating so-called dependency confusion attacks. These attacks work by causing a software package to access ...
InfoWorld2mon
Developers: apply these 10 mitigations first to prevent supply chain attacks
Worst supply chain attacks The paper, Closing the Chain: How to reduce your risk of being SolarWinds, log4J or XZ Utils, deals with three of the worst supply chain compromises in recent years ...
Business Insider3mon
ReversingLabs Annual Software Supply Chain Security Report Spotlights Mounting Attacks on AI, Crypto, Open Source, and Commercial Software
The 2025 report details the growing sophistication of software supply chain attacks fueled by widespread flaws in open-source and third-party commercial software, along with malicious campaigns ...
Yahoo9mon
Software supply chains are coming under attack more than ever
Software supply chain attack happens when a threat actor compromises a software development company, or a platform, that another company uses in its products and services. As a result, that other ...
TechRadar9mon
Software supply chains are coming under attack more than ever
Cyberattacks against software supply chains have gotten so widespread that at least one of them happens every two days, a report from Cyble has claimed. Software supply chain attack happens when a ...
InfoWorld1y
Protecting against software supply chain attacks
We are in the midst of a rapid surge in software supply chain attacks. Sonatype found a 742% average annual increase in software supply chain attacks between 2019 and 2022, according to the ...
CSOonline1y
Roundup: Global software supply chain security guidance and regulations
It has also identified software supply chain attacks as a key concern in the CCCS ... It aligns with the four phases in NIST’s SSDF and talks about the intent to require self-attestation from ...
AFCEA1y
Emerging Technologies To Secure the Supply Chain
This article, prepared in conjunction with AFCEA’s Technology Committee, is the third in a series of three articles addressing supply chain considerations of software and hardware ... stay informed of ...