New software supply chain concerns emerged in the open-source community when a popular Javascript library began to delete all files on systems in Belarus and Russia as a protest to the war in Ukraine.

F-Secure study says financial companies are concerned about ransomware, supply chain attacks, cloud security adoption challenges, and risks from financial technologies such as SWIFT, Open Banking, and ATMs.

Researchers say security teams at manufacturers and critical infrastructure facilities need to focus more on code vulnerabilities versus finding ‘secrets’ in the code.

Cleo researchers said much of the difficulty comes from running complicated, hodgepodge systems not born in the cloud.

Many businesses have “deprioritized cybersecurity over the past year amid the pandemic," according to a recent report by Kaspersky.

Both projects are expected to involve a similar research focus on securing the software and hardware supply chain.

As all organizations struggle to secure their supply chains, an alarming reality emerges among IT leaders: a significant lack of visibility into third-party access to systems, and widespread incidents of compromise.

While healthcare’s security challenges are well-known, the sector is making headway in a key area: Linux research finds healthcare’s rapid SBOM adoption could serve as a model to other industries.

Apiiro researchers say attackers can leverage the stolen data to do privilege escalation and lateral movement by using a vulnerability in Argo CD.

The bill, among other things, would fund security enhancements to critical and emerging technology, tweak authorities that empower NIST to offer cybersecurity expertise and guidance around a range of issues, and establish a data initiative to measure the cybersecurity workforce as both governments and industries deal with a shortage of qualified cybersecurity employees.