Supply chain hacking: bull in a China shop?

My colleague at ESET, Cameron Camp, today published the second of a series of articles commenting on this year’s Virus Bulletin: Virus Bulletin 2018: Supply chain hacking grows up

It’s an interesting article that makes some good points. But what particularly interested me was that it came hard on the heels of Bloomberg’s report The Big Hack: How China Used a Tiny Chip to Infiltrate U.S. Companies claiming that
“The attack by Chinese spies reached almost 30 U.S. companies, including Amazon and Apple, by compromising America’s technology supply chain, according to extensive interviews with government and corporate sources.”

Could this be true?  Well, Amazon and Apple have strongly denied it, as has Super Micro Computer Inc, whose supply chain is alleged to have been infiltrated. So who knows? Probably none of the sources that have commented on the topic subsequently, but here are a few of them anyway:

It will certainly be interesting to see how this story develops.

David Harley

*** This is a Security Bloggers Network syndicated blog from Mac Virus authored by David Harley. Read the original post at:

DevOps Unbound Podcast

Cloud Workload Resilience PulseMeter

Step 1 of 8

How do you define cloud resiliency for cloud workloads? (Select 3)(Required)