Infosecurity Magazine

Supply Chain Security News

Scroll down for the latest supply chain security news & articles from Infosecurity Magazine

Latest News and Features

Mustang Panda Linked to Updated FDMTP Backdoor in Asia-Pacific Espionage Campaign

News

New Fragnesia Flaw Hands Linux Local Users Root Access

News

Canvas Owner Reaches Agreement With Cybercriminals After Ransomware Attack

News

Instructure says it reached an agreement with ShinyHunters over the Canvas breach data

Avada Builder Flaws Expose One Million WordPress Sites

News

Avada Builder flaws allowed file read and SQL injection on one million WordPress sites

Mini Shai-Hulud Hits TanStack npm Packages

News

End‑to‑End Encrypted RCS Messaging Arrives Across iPhone and Android

News

Apple begins rolling out end-to-end encrypted RCS messaging between iPhone and Android in iOS 26.5

Fake Claude Code Page Pushes PowerShell Stealer at Devs

News

Cline Kanban Flaw Lets Websites Hijack AI Coding Agents

News

CloudZ Malware Abuses Phone Link to Steal SMS OTPs

News

CISA Urges Critical Infrastructure Providers to Make Plans to Remain Operational if hit by Cyber-Attack

News

White Papers

How To Win in the Software Business: A Case Study with Vast Data

White Paper

State of Cybersecurity Report 2022

White Paper

The Risk Management Blind Spot, Third-Party Identities Often Create Unrecognised Risk

White Paper

On-Demand Webinars

  • Financial Services Under Pressure: Supply Chain Risk, Regulation and Operational Resilience
  • How To Enhance Security Operations with AI-Powered Defenses
  • Safeguarding Critical Supply Chain Data Through Effective Risk Assessment
  • Learn Key Strategies for Industrial Data Security
  • Unpacking the Top Vulnerabilities Exploited by Sophisticated Attackers
  • How to Optimize Third-Party Risk Management Programs Through NIST CSF 2.0
  • How to Secure Remote Connectivity within Operational Technology Environments

Podcasts

  • Exclusive Interview with OpenClaw's Security Advisor

More news and features

Fake SSA Emails Drive Venomous#Helper Phishing Campaign

News

Venomous#Helper attackers impersonate the US Social Security Administration to deploy signed RMM software and maintain persistent access across US networks

Trellix Reveals Unauthorized Access to Source Code

News

CISA and Partners Publish Zero Trust Guidance For OT Security

News

Cursor Extension Flaw Exposes Developer API Keys

News

Malicious npm Dependency Linked to AI Assisted Commit Targets Crypto Wallets

News

Researchers Track 2.9 Billion Compromised Credentials

News

Medtronic Confirms Data Breach After ShinyHunters Claims

News

Chinese National Extradited Over Silk Typhoon Cyber Campaign

News

Extradition links alleged MSS-directed hacker to Silk Typhoon and COVID-19 espionage

Npm Supply Chain Malware Attack Targets Developers With Worm-Like Propagation

News

Malicious npm packages spread via worm-like propagation and steal developer credentials

Apple Fixes iOS Notification Bug Exposing Deleted Messages

News

Blogs

Biometric Authentication is Easier to Fake Than You Think

Blog

Open Source is the Tip of the Iceberg: Why Proprietary Software, Hardware and Protocols Face Greater AI-Driven Security Risk

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen