Hot Topics

Analytics & Intelligence

open source security

Synopsys Report Exposes Extent of Open Source Software Security Risks

| | codebase, open source, OSS, Software Security, Synopsys
Synopsys found 74% of 1,067 commercial codebases scanned contain open source components impacted by high-risk vulnerabilities ...
Security Boulevard
Coordinator of the Global Engagement Center Jamie Rubin at the U.S. Department of State in Washington, D.C., on January 3, 2023

US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!

| | deepfake, deepfake attacks, Deepfake Detection, Deepfake security threats, Deepfake Technology, deepfake videos, deepfakes, Department of State, disinformation, election disinformation, James Rubin, online disinformation, Russia, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, SB Blogwatch, Social disinformation, State Department, U.S. Department of State, Ukraine, ukraine conflict, ukraine war scams, Ukraine-Russia War, Ukraine/European Security, US department of state
Pay no attention to that man: State Dept. Global Engagement Centre chief James Rubin (pictured) follows the yellow brick road ...
Security Boulevard
supply chain software

Malicious Packages in npm, PyPI Highlight Supply Chain Threat

| | cyberattacks, npm security, PyPI, PyPI malicious packages, software supply chain attack, supply chain
Software developers are being targeted with malicious packages in npm and PyPI as threat groups launch software supply-chain attacks ...
Security Boulevard
LockBit ransomware FBI

LockBit Ransomware Group Returns After Law Enforcement Operation

| | BlackCat ransomware, FBI, LockBit ransomware
The LockBit ransomware group is swinging back days after U.S. and UK law enforcement agencies announced they had disrupted the operations of the prolific cybercrime gang ...
Security Boulevard
AI code fixing

Report: Cyberattacks Against Software Supply Chains Become More Targeted

| | malicious packages, Phylum, Software Security, supply chain
Phylum found an increase in the discovery of malicious packages targeting the software supply chains of specific organizations ...
Security Boulevard
Junk-gun ransomware Sophos

Hackers Exploit ConnectWise Bugs to Deploy LockBit Ransomware

| | Application Security Vulnerabilities, ConnectWise, LockBit ransomware
Cyberattacks exploiting critical vulnerabilities in ConnectWise’s remote monitoring and management (RMM) tool revealed this week have snowballed and some bad actors are using it to deploy LockBit ransomware, which was the target ...
Security Boulevard
CNAP, severless architecture, itte Broadcom report cloud security threat

Organizations Unprepared to Face Cloud Security Threats

| | Cloud Infrastructure, Cloud Security, Cybersecurity, Data Security
The Cloud Security Alliance (CSA) State of Security Remediation report underscored the difficult balancing act cloud security experts face ...
Security Boulevard
A PRC flag flies atop a metal flagpole

PRC State Hacking: ‘Chinese Edward Snowden’ Spills I‑Soon Secrets in Huge Dump of TTPs

| | APT41, Auxun, Chengdu 404, china, china espionage, Chinese, Chinese Communists, Chinese devices, chinese government, chinese hacker, Chinese hackers, Chinese Threat Actors, Data Stolen By China, Great Firewall of China, hong kong, i-soon, Insider, insider breach, insider risk, iSoon, Peoples Republic of China, SB Blogwatch, Tibet, Uyghur
Underpaid, overworked and angry: Whistleblower in hacker contractor firm for Chinese government blows lid off tactics, techniques and procedures ...
Security Boulevard
vulnerability ConnectWise

ConnectWise Says ScreenConnect Flaw Being Actively Exploited

| | ConnectWise, Remote Desktop Management, vulnerability
Hackers are actively exploiting critical security flaws in ConnectWise’s remote desktop access tool just days after the software maker alerted customers of the vulnerabilities. ConnectWise learned of the bugs – tracked as ...
Security Boulevard
LockBit ransomware DOJ reward

State Department Puts Up $10 Million for Info on LockBit Leaders

| | Department of Justice (DOJ), FBI, LockBit ransomware, Rewards for Justice
A day after U.S. and international law enforcement agencies disrupted the operations of notorious ransomware group LockBit, the State Department is offering up to $15 million in rewards for information about the ...
Security Boulevard
Load more