Skip to main content

Tag: chain risk

9 articles

cyber intrusion: Stunning Risky Breach Hits Police Radios

cyber intrusion: Stunning Risky Breach Hits Police Radios

A cyber intrusion at BK Technologies — maker of the radios police, firefighters and the military rely on — exposed employee data and raised urgent questions about how a corporate IT breach could ripple into mission-critical communications. BK says radios stayed online, but agencies are now pressing for stronger protections, transparency and real assurance that devices are truly secure.

Analyst 207
ransomware attack: Stunning Risky Data Theft Exposes Flaws

ransomware attack: Stunning Risky Data Theft Exposes Flaws

Asahi has confirmed a ransomware attack that stole data and forced a switch to manual order processing, leaving customers and partners eager to know what was compromised and how quickly the company can restore operations and trust.

Analyst 207
Wondershare RepairIt Critical Risk: Exclusive Warning

Wondershare RepairIt Critical Risk: Exclusive Warning

A popular repair tool, Wondershare RepairIt, had two critical flaws that could let attackers bypass authentication to steal private files and even tamper with AI model assets—update now to protect your data and systems.

Analyst 207
npm packages Must-Have Defense Against Risky Attacks

npm packages Must-Have Defense Against Risky Attacks

Attackers briefly pushed trojanized npm releases that spread fast through the cloud, mined only pennies, and left security teams scrambling to contain and remediate. It’s a wake‑up call: package convenience comes with real supply‑chain risk, so tighten controls, pin dependencies, and treat dependencies as first‑class security assets.

Analyst 207
Salesloft/Drift incident: Exclusive Risky Security Wake-Up

Salesloft/Drift incident: Exclusive Risky Security Wake-Up

Cloudflare confirmed some customer data was exposed after the Salesloft/Drift breach, but key details and the full scope remain unclear — a stark reminder that third‑party compromises can ripple across the cloud ecosystem. Customers should watch for updates and take simple precautions now, like rotating credentials and enabling MFA, while investigations continue.

Analyst 207
Shattered laptop screen with ominous glow amidst broken alarm clock and dark cityscape.

Salesloft–Drift compromise: Devastating Risk Alert

Trust in the tools that run our businesses can break fast — Zscaler says some customer data was exposed in the Salesloft–Drift supply‑chain attack on Salesforce integrations, a reminder that one upstream breach can ripple across entire enterprise stacks.

Analyst 207
Zscaler customer information: Exclusive Risky Breach

Zscaler customer information: Exclusive Risky Breach

Last week’s Salesloft–Salesforce supply‑chain breach that exposed Zscaler customer data is a wake‑up call: attackers are increasingly moving laterally through trusted cloud integrations to harvest high‑value corporate data. Now is the time to map dependencies, tighten access, and embrace zero‑trust before the next incident.

Analyst 207
fast-glob Risky Threat: Must-Have Utility Exposed

fast-glob Risky Threat: Must-Have Utility Exposed

A tiny but widely used Node.js utility, fast-glob, turns up in dozens of DoD projects and thousands of codebases — and questions about its sole maintainer’s ties to Russia have reignited urgent supply‑chain concerns. Experts urge practical fixes—better governance, inventories, and runtime safeguards—so one small package can’t become a systemic risk.

Analyst 207
Critical infrastructure security: Must-Have Best Defenses

Critical infrastructure security: Must-Have Best Defenses

Hacktivists and sophisticated attackers are increasingly targeting the systems that keep our cities running. Learn the must-have, layered defenses governments and operators need to protect lives, services, and supply chains.

Analyst 207