Tag: supply chain risk
39 articles
Poland Bans Chinese Camera Cars from Bases: Exclusive Risk
Poland has banned Chinese camera cars from military bases, forcing a simple question: when does convenient tech become a security risk? By inviting trusted Western firms like Dell to help build a local LLM, Warsaw is signaling it’ll pick partners it trusts over blanket openness.
Legacy systems failing: Exclusive ministers vow no repeat
Ministers promise no repeat, but ageing, brittle IT and procurement shortcuts are slowing the fixes that would stop another life‑threatening leak — read on to see why promises need firm deadlines and measurable progress.
Security Leaders Exclusive: Damaging Marquis Breach
The Marquis data breach exposed hundreds of thousands of tax‑credit records — and it asks a blunt question: when trust is the currency, who pays? Security leaders say this wasn’t a freak accident but a familiar mix of human error, misconfiguration and governance gaps that proves convenience still too often outpaces caution.
Security Leaders Exclusive: Alarming Marquis Breach Insight
The Marquis data breach forces a simple but urgent question: when a trusted provider is compromised, who pays — the vendor, its customers, or the wider ecosystem? With attackers evolving faster than defenders, security leaders say it’s time to rethink third‑party and supply‑chain risk.
Cyber-Attack Deals Stunning Costly $258m Q2 Blow to JLR
A major ransomware incident cost Jaguar Land Rover $258m in Q2 and helped drive a $639m loss — a stark wake‑up call that a single cyber‑intrusion can paralyze networked factories for weeks. The outage halted production, delayed deliveries and squeezed suppliers as JLR prioritised a cautious, forensic‑led recovery over a rushed restart.
Conduent Data Breach: Stunning, Severe Impact on 10.5M
A single contractor’s lapse exposed the financial and personal records of 10.5 million people — the Conduent data breach shows how concentrated services can turn vendors into high-stakes targets. Read on to learn what went wrong, who’s at risk, and what comes next.
NHS Exclusive: Critical PCs Blocked from Windows 11 Rollout
A handful of suppliers refusing to sign off on Windows 11 compatibility are forcing NHS trusts to pause upgrades—pitting vital clinical continuity against security and compliance and leaving staff to decide which devices come first.
BSI Warns Exclusive: Dire AI Governance Crisis Looms
The BSI warns business leaders are sleepwalking into an AI governance crisis that could hobble economies and hand malicious actors the upper hand. Treat AI risk with urgency—close the policy, oversight and training gaps now so benefits aren’t concentrated while harms spiral out of control.
Security Leaders Exclusive: Critical AA Subsidiary Breach
Envoy Air endured a sudden cyberattack that disrupted internal systems and may have exposed passenger and loyalty data — a wake-up call that regional carriers are critical cogs in global air travel. As teams race to contain the breach and restore services, the bigger challenge will be rebuilding passenger trust while ripple effects touch flights, baggage and communications.
Security Leaders Exclusive: Critical Subsidiary Cyberattack
Imagine waiting in line as screens go dark—Envoy Air’s recent critical subsidiary cyberattack forced airports into paper processes and left passengers in limbo. Its a wake‑up call that a single vendor breach can ripple across the entire aviation system, spurring urgent containment, recovery and renewed focus on supply‑chain risk.
Security Leaders Exclusive: 77% Data Loss Is Costly
Insider-related data loss has hit 77% of organizations in the last 18 months — a costly, everyday emergency playing out in email threads, cloud buckets and third‑party integrations. Cloud sprawl, identity proliferation and siloed tooling — plus human shortcuts — turn trusted channels into easy exit ramps for sensitive data.
Unified View: Must-Have for Best Crisis Response
When crises cascade, alerts alone create noise — a Unified View gives teams one real-time picture so actions align, forensics stay intact, and damage is contained. Consolidated dashboards, clear escalation rights and joint drills turn fragmented responses into fast, coordinated action.
Cyberattack Cripples EU Airports: Exclusive Response
When the screens went black and check‑in kiosks died at multiple European airports, staff reverted to paper and long queues — a stark reminder that a single cyberattack can paralyze travel. As IT teams, CERTs and Europol raced to contain ransomware and trace the perpetrators, experts say this disruption must spark urgent, industrywide cybersecurity reform.
Lanscope Endpoint Manager Exclusive: Critical Bug Exploited
A critical, actively exploited flaw in Motex Lanscope Endpoint Manager (CVE-2025-61932) — now on CISA’s KEV list — can turn your endpoint manager into an attacker’s shortcut. If you run on‑prem Lanscope Client, act now: patch immediately, isolate affected hosts, and hunt for suspicious activity.
typosquatted npm package: Shocking Dangerous Heist
A single malicious line in a typosquatted npm package quietly CC’d thousands of Postmark emails to an attacker—turning a routine dependency into a stealthy data leak. It’s a wake‑up call: strong dependency hygiene, provenance checks, and runtime protections are essential to keep outbound messaging safe.