Tag: chain risk
9 articles

cyber intrusion: Stunning Risky Breach Hits Police Radios
A cyber intrusion at BK Technologies — maker of the radios police, firefighters and the military rely on — exposed employee data and raised urgent questions about how a corporate IT breach could ripple into mission-critical communications. BK says radios stayed online, but agencies are now pressing for stronger protections, transparency and real assurance that devices are truly secure.

ransomware attack: Stunning Risky Data Theft Exposes Flaws
Asahi has confirmed a ransomware attack that stole data and forced a switch to manual order processing, leaving customers and partners eager to know what was compromised and how quickly the company can restore operations and trust.

Wondershare RepairIt Critical Risk: Exclusive Warning
A popular repair tool, Wondershare RepairIt, had two critical flaws that could let attackers bypass authentication to steal private files and even tamper with AI model assets—update now to protect your data and systems.

npm packages Must-Have Defense Against Risky Attacks
Attackers briefly pushed trojanized npm releases that spread fast through the cloud, mined only pennies, and left security teams scrambling to contain and remediate. It’s a wake‑up call: package convenience comes with real supply‑chain risk, so tighten controls, pin dependencies, and treat dependencies as first‑class security assets.

Salesloft/Drift incident: Exclusive Risky Security Wake-Up
Cloudflare confirmed some customer data was exposed after the Salesloft/Drift breach, but key details and the full scope remain unclear — a stark reminder that third‑party compromises can ripple across the cloud ecosystem. Customers should watch for updates and take simple precautions now, like rotating credentials and enabling MFA, while investigations continue.

Salesloft–Drift compromise: Devastating Risk Alert
Trust in the tools that run our businesses can break fast — Zscaler says some customer data was exposed in the Salesloft–Drift supply‑chain attack on Salesforce integrations, a reminder that one upstream breach can ripple across entire enterprise stacks.

Zscaler customer information: Exclusive Risky Breach
Last week’s Salesloft–Salesforce supply‑chain breach that exposed Zscaler customer data is a wake‑up call: attackers are increasingly moving laterally through trusted cloud integrations to harvest high‑value corporate data. Now is the time to map dependencies, tighten access, and embrace zero‑trust before the next incident.

fast-glob Risky Threat: Must-Have Utility Exposed
A tiny but widely used Node.js utility, fast-glob, turns up in dozens of DoD projects and thousands of codebases — and questions about its sole maintainer’s ties to Russia have reignited urgent supply‑chain concerns. Experts urge practical fixes—better governance, inventories, and runtime safeguards—so one small package can’t become a systemic risk.

Critical infrastructure security: Must-Have Best Defenses
Hacktivists and sophisticated attackers are increasingly targeting the systems that keep our cities running. Learn the must-have, layered defenses governments and operators need to protect lives, services, and supply chains.