The US government and the Open Source Security Foundation have released guidance to shore up software supply chain security, and now it’s up to developers to act.

from Dark Reading https://ift.tt/1vxu6Yw
via IFTTT

The operators of the emerging cross-platform ransomware BianLian increased their command and control infrastructure this month, indicating an acceleration in their operational pace.

from Dark Reading https://ift.tt/v7ypXSo
via IFTTT

Infections attributed to the USB-based worm have taken off, and now evidence links the malware to Dridex and the sanctioned Russian cybercriminal group Evil Corp.

from Dark Reading https://ift.tt/81DFkJq
via IFTTT

Our digital future depends on the choices we make today. We need to invest in cybersecurity technologies and skills so that humanity can control its future.

from Dark Reading https://ift.tt/tdQojxE
via IFTTT

Thousands of corporate mobile apps developed by businesses for use by their customers contain hard-coded AWS tokens that can be easily extracted and used to access the full run of corporate data stored in cloud buckets.

from Dark Reading https://ift.tt/bN2mn1A
via IFTTT

Threat hunters can help build defenses as they work with offensive security teams to identify potential threats and build stronger threat barriers.

from Dark Reading https://ift.tt/ICpe5tZ
via IFTTT

TAP assures its customers that it stopped data theft in a recent cyberattack, but the Ragnar Locker ransomware group says it made off with user info.

from Dark Reading https://ift.tt/S0nqBtC
via IFTTT