Advertisement
Russian Intelligence Intensifies Tech Procurement and Infrastructure Recon
Russian spies are leveraging front companies and cyber espionage to bypass sanctions and gather intelligence for potential attacks on Western infrastructure.
Securing Agentic AI Workflows with Advanced AI BOM Frameworks
Learn why CISOs must transition from traditional SBOMs to Agentic-Ready AI BOMs to manage risks in autonomous AI systems and data supply chains.
AI BOM Implementation for Enterprise Security: Bridging Visibility
Analyze the rise of AI Bill of Materials (AIBOMs), regulatory drivers like the EU AI Act, and the technical challenges of securing opaque AI supply chains.
Grafana GitHub Token Compromise: Codebase Stolen via PAT
Grafana Labs reports a source code breach after attackers leveraged a stolen GitHub Personal Access Token. Analysis of the impact and mitigation steps.
Quasar Linux RAT (QLNX) Targets Developers for Supply Chain Attacks
A new Linux implant, Quasar Linux RAT (QLNX), targets developer systems for credential theft and network tunneling to compromise software supply chains.
TeamPCP Supply Chain Attack: Telnyx PyPI Compromise and Vect Ransomware
TeamPCP campaign escalates with Telnyx PyPI compromise and Vect Ransomware mass affiliate program. Critical update for software developers and SOC teams.
EU Mandates UN R155 and R156 for Automotive Cybersecurity Compliance
The EU's adoption of UN R155 and R156 establishes mandatory cybersecurity management and software update standards for all new vehicles and manufacturers.