Supply chainSEC Penalizes Firms After Misleading SolarWinds Hack DisclosuresCRA News ServiceOctober 23, 2024The SEC is levying fines against organizations that deliberately downplayed the SolarWinds attack.
Supply chainOpen-Source Entry Points Targeted for Supply Chain CompromiseCRA News ServiceOctober 15, 2024Supply chain intrusions are being deployed through the initial compromise of entry points across several open-source environments.
Vulnerability ManagementPython Repositories Threatened by Inadvertently Exposed GitHub TokenChannelE2E StaffJuly 16, 2024An accidentally exposed GitHub authentication token enabled possible infiltration of GitHub repositories for the Python programming language, which could open the potential for significant software supply chain attacks.
5 thingsChannel Brief: SolarWinds, CrowdStrike, RubrikJessica C. DavisMarch 27, 2024Today's channel market news includes updates on Cisco, N2WS, Cyolo, and TD Synnex.
Supply chainSolarWinds First to Submit CISA Self-AttestationMarch 21, 2024SolarWinds first mover status is notable because it suffered a damaging supply chain attack in 2020.
