Supply chainSEC Penalizes Firms After Misleading SolarWinds Hack DisclosuresCRA News ServiceOctober 23, 2024The SEC is levying fines against organizations that deliberately downplayed the SolarWinds attack.
Supply chainOpen-Source Entry Points Targeted for Supply Chain CompromiseCRA News ServiceOctober 15, 2024Supply chain intrusions are being deployed through the initial compromise of entry points across several open-source environments.
Critical Infrastructure SecurityICIT Launches IT, Cybersecurity Risk Task ForceCRA News ServiceOctober 8, 2024The ICIT has assembled a task force to examine the risks and benefits of IT consolidation.
Attack surface managementCyber-Physical System Attacks Increasingly CostlyCRA News ServiceOctober 7, 2024Attacks against cyber-physical systems are growing ever more costly, according to Claroty.
Critical Infrastructure SecurityMisconfigured FleetPanda Server Spills Fuel Sector DataCRA News ServiceSeptember 19, 2024A FleetPanda server used in the fuel industry leaked personal information, researchers found.
Critical Infrastructure SecurityDecommissioned FBI Electronic Storage Media Plagued With Security FlawsCRA News ServiceAugust 26, 2024An audit revealed decommissioned FBI storage devices had significant security flaws.
Vulnerability ManagementPython Repositories Threatened by Inadvertently Exposed GitHub TokenChannelE2E StaffJuly 16, 2024An accidentally exposed GitHub authentication token enabled possible infiltration of GitHub repositories for the Python programming language, which could open the potential for significant software supply chain attacks.
5 thingsChannel Brief: ASCII Group, Jamf, NutanixJessica C. DavisApril 9, 2024Today's channel market update also involves news from CompTIA, Accenture, Google and Best Buy.
