After SolarWinds breach, lawmakers ask NSA for help in cracking Juniper cold case
The lawmakers are hoping to crack open a cold case and learn from it before the next big supply-chain breach happens.
Microsoft identifies second hacking group affecting SolarWinds software
The discovery underscores the extent to which SolarWinds, whose customers include Fortune 500 companies, is a valuable target for hackers.
MacOS backdoor appears to be update of tool previously used by Vietnam-linked group
Researchers at Trend Micro say a newly discovered MacOS backdoor uses tactics previously associated with the group known as APT32 or OceanLotus.
Well-developed backdoor can harvest information from restaurants, bars and hotels, researchers say
A point-of-sale-system widely used in the hospitality industry is vulnerable to a backdoor, ESET reports.
Chinese banks require clients to use tax programs laced with backdoors, report says
A Chinese bank required a company to use a specific kind of tax software for local tax purposes, but the software deployed a backdoor, Trustwave researchers say.
How GitHub untangled itself from the ‘Octopus’ malware that infected 26 software projects
It's an example of the potentially insidious nature of open-source supply chain compromises.