supply-chain

Wormsign, RSAC 2026: More auto-updating supply chain attacks on the way

• application-security
• devsecops
• malware
• rsac
• supply-chain

Wormsign, RSAC 2026: More auto-updating supply chain attacks on the way

Paul Wagenseil March 28, 2026

The Shai-Hulud worms that exploited automatic updates in open-source software repositories may be only the beginning, two...

Read More Read more about Wormsign, RSAC 2026: More auto-updating supply chain attacks on the way

FCC bans foreign-made routers in bid to secure supply chain

• network-security
• supply-chain
• threat-intelligence

FCC bans foreign-made routers in bid to secure supply chain

Steve Zurier March 25, 2026

Security pros OK with FCC’s move to ban foreign routers, but say the real risk lies with...

Read More Read more about FCC bans foreign-made routers in bid to secure supply chain

Novel Iran-linked hacking group takes aim at Middle Eastern energy firms

• ot-security
• supply-chain

Novel Iran-linked hacking group takes aim at Middle Eastern energy firms

SC Staff March 24, 2026

Security Affairs reports that multiple energy sector organizations across the Middle East have been subjected to attacks...

Read More Read more about Novel Iran-linked hacking group takes aim at Middle Eastern energy firms

Massive data breach at Lockheed Martin claimed by pro-Iran hacktivist

• ransomware
• supply-chain

Massive data breach at Lockheed Martin claimed by pro-Iran hacktivist

SC Staff March 24, 2026

Massive data breach at Lockheed Martin claimed by pro-Iran hacktivist Major U.S. global security, defense, and aerospace...

Read More Read more about Massive data breach at Lockheed Martin claimed by pro-Iran hacktivist

Massive data breach at Lockheed Martin claimed by pro-Iran hacktivist

• ransomware
• supply-chain

Massive data breach at Lockheed Martin claimed by pro-Iran hacktivist

SC Staff March 24, 2026

Massive data breach at Lockheed Martin claimed by pro-Iran hacktivist Major U.S. global security, defense, and aerospace...

Read More Read more about Massive data breach at Lockheed Martin claimed by pro-Iran hacktivist

Alleged third-party hack prompts massive Crunchyroll breach

• identity
• Privacy
• supply-chain

Alleged third-party hack prompts massive Crunchyroll breach

SC Staff March 24, 2026

Cybernews reports that widely known anime streaming platform Crunchyroll had nearly 100 GB of data allegedly stolen...

Read More Read more about Alleged third-party hack prompts massive Crunchyroll breach

AI coding assistants twice as likely to leak secrets, as overall leaks rise 34%

• identity
• supply-chain

AI coding assistants twice as likely to leak secrets, as overall leaks rise 34%

Laura French March 18, 2026

A total of 28.65 million hardcoded secrets were found in public GitHub commits in 2025.

Read More Read more about AI coding assistants twice as likely to leak secrets, as overall leaks rise 34%

GlassWorm campaign evolves: ForceMemo attack targets Python repos via stolen GitHub tokens

• malware
• supply-chain

GlassWorm campaign evolves: ForceMemo attack targets Python repos via stolen GitHub tokens

SC Staff March 17, 2026

The ForceMemo attack begins with the GlassWorm malware compromising developer systems, often through malicious VS Code and...

Read More Read more about GlassWorm campaign evolves: ForceMemo attack targets Python repos via stolen GitHub tokens

Stryker cyberattack contained, but experts warn repair costs could soar

• identity
• incident-response
• supply-chain
• threat-intelligence
• threat-management

Stryker cyberattack contained, but experts warn repair costs could soar

Steve Zurier March 17, 2026

Security pros call “containment” victory claim hollow as recovery could cost multi-millions.

Read More Read more about Stryker cyberattack contained, but experts warn repair costs could soar

GlassWorm supply chain attack campaign expands further

• malware
• supply-chain

GlassWorm supply chain attack campaign expands further

SC Staff March 16, 2026

Dozens of malicious Open VSX extensions and over 150 GitHub compromised repositories have been used as part...

Read More Read more about GlassWorm supply chain attack campaign expands further