supply chain compromise - Security Ticks

Malicious RVTools installer found on official site, researcher warns

Dell, Don't miss, Hot stuff, News, supply chain compromise, virtualization, VMWare / SecurityTicks

Malicious RVTools installer found on official site, researcher warns 2025-05-19 at 15:05 By Zeljka Zorz The official site for RVTools has apparently been hacked to serve a compromised installer for the popular utility, a security researcher has warned. It’s difficult to say how long the malicious version has been available for download, but the website […]

React to this headline:

Malicious RVTools installer found on official site, researcher warns Read More »

How Lazarus Group built a cyber espionage empire

cyber attribution, cybersecurity, Don't miss, News, North Korea, report, SecurityScorecard, supply chain compromise / SecurityTicks

How Lazarus Group built a cyber espionage empire 2025-01-29 at 11:04 By Help Net Security Since September 2024, SecurityScorecard’s STRIKE team has been investigating Lazarus Group’s activity, uncovering key details about their infrastructure. Despite variations in payload delivery and obfuscation techniques, the campaign relied on a consistent C2 framework. Hidden control panel Through deep analysis,

React to this headline:

How Lazarus Group built a cyber espionage empire Read More »

Solana’s popular web3.js library backdoored in supply chain compromise

account hijacking, Cryptocurrency, cybercrime, Don't miss, Hot stuff, JavaScript, News, supply chain compromise, wall / SecurityTicks

Solana’s popular web3.js library backdoored in supply chain compromise 2024-12-04 at 18:03 By Zeljka Zorz A software supply chain attack has lead to the publication of malicious versions of Solana’s web3.js library on the npm registry. Just like the recent Lottie Player supply chain compromise, this attack was reportedly made possible due to compromised (phished)

React to this headline:

Lottie Player supply chain compromise: Sites, apps showing crypto scam pop-ups

Cryptocurrency, cybercrime, Don't miss, Hot stuff, JavaScript, News, supply chain compromise / SecurityTicks

Lottie Player supply chain compromise: Sites, apps showing crypto scam pop-ups 2024-10-31 at 14:38 By Zeljka Zorz A supply chain compromise involving Lottie Player, a widely used web component for playing site and app animations, has made popular decentralized finance apps show pop-ups urging users to connect their wallets, TradingView has reported. The pop-up (Source:

React to this headline:

Lottie Player supply chain compromise: Sites, apps showing crypto scam pop-ups Read More »

The role of compromised cyber-physical devices in modern cyberattacks

Don't miss, Features, Hot stuff, ICS/SCADA, IIoT, IoT, News, OT, router, security cameras, smart building, smart grid, smart home, supply chain compromise, Trend Micro / SecurityTicks

The role of compromised cyber-physical devices in modern cyberattacks 2024-10-17 at 11:46 By Zeljka Zorz Cyber-physical devices are increasingly getting compromised and leveraged by criminal groups and state-sponsored threat actors. Fyodor Yarochkin, Senior Threat Solution Architect with Trend Micro, believes that getting a better understanding of attackers’ infrastructure leads to a better understanding of the

React to this headline:

The role of compromised cyber-physical devices in modern cyberattacks Read More »

Ghost: Criminal communication platform compromised, dismantled by international law enforcement

arrest, Australia, crime, cybercrime, Don't miss, Encryption, Europol, Government, Hot stuff, law enforcement, News, secure communications, supply chain compromise / SecurityTicks

Ghost: Criminal communication platform compromised, dismantled by international law enforcement 2024-09-18 at 15:16 By Zeljka Zorz Another encrypted communication platform used by criminals has been dismantled and its alleged mastermind arrested, the Australian Federal Police has announced on Tuesday. “AFP Operation Kraken charged a NSW man, aged 32, for creating and administering Ghost, a dedicated

React to this headline:

Ghost: Criminal communication platform compromised, dismantled by international law enforcement Read More »

Chinese hackers compromised an ISP to deliver malicious software updates

APT, cyber espionage, DNS, Don't miss, ESET, Hot stuff, ISP, Malware, News, supply chain compromise, Symantec, Volexity / SecurityTicks

Chinese hackers compromised an ISP to deliver malicious software updates 2024-08-05 at 13:46 By Zeljka Zorz APT StormBamboo compromised a undisclosed internet service provider (ISP) to poison DNS queries and thus deliver malware to target organizations, Volexity researchers have shared. Malware delivery via automatic software updates StormBamboo (aka Evasive Panda, aka StormCloud), a Chinese-speaking threat

React to this headline:

Chinese hackers compromised an ISP to deliver malicious software updates Read More »

Compromised plugins found on WordPress.org

backdoor, Don't miss, Hot stuff, News, plugin, supply chain compromise, Wordfence, WordPress / SecurityTicks

Compromised plugins found on WordPress.org 2024-06-26 at 11:46 By Zeljka Zorz An unknown threat actor has compromised five (and possibly more) WordPress plugins and injected them with code that creates a new admin account, effectively allowing them complete control over WordPress installations / websites. “In addition, it appears the threat actor also injected malicious JavaScript

React to this headline:

Compromised plugins found on WordPress.org Read More »

Compromised recording software was served from vendor’s official site, threat researchers say

Don't miss, Hot stuff, Malware, News, Rapid7, supply chain compromise / SecurityTicks

Compromised recording software was served from vendor’s official site, threat researchers say 2024-05-23 at 18:01 By Zeljka Zorz Legitimate recording software JAVS Viewer has been saddled with loader malware and has been served from the developer’s site since at least April 2, a threat researcher has warned last month. After analyzing a flagged installer detected

React to this headline:

Compromised recording software was served from vendor’s official site, threat researchers say Read More »

XZ Utils backdoor: Detection tools, scripts, rules

backdoor, Binarly, Bitdefender, Don't miss, Elastic, GitHub, Hot stuff, Linux, News, open source, supply chain compromise / SecurityTicks

XZ Utils backdoor: Detection tools, scripts, rules 2024-04-08 at 16:31 By Zeljka Zorz As the analysis of the backdoor in XZ Utils continues, several security companies have provided tools and advice on how to detect its presence on Linux systems. What happened? The open-source XZ Utils compression utility has been backdoored by a skilled threat

React to this headline:

XZ Utils backdoor: Detection tools, scripts, rules Read More »

Organizations prefer a combination of AI and human analysts to monitor their digital supply chain

BlueVoyant, data breach, News, report, supply chain, supply chain compromise, survey / SecurityTicks

Organizations prefer a combination of AI and human analysts to monitor their digital supply chain 14/12/2023 at 07:02 By Help Net Security The number of cyber breaches targeting organizations’ supply chains continues to rise, with an average 4.16 breaches reported to be negatively impacting operations this year — a 26% increase from the mean number

React to this headline:

Organizations prefer a combination of AI and human analysts to monitor their digital supply chain Read More »

North Korean hackers are targeting software developers and impersonating IT workers

APT, Don't miss, FBI, Hot stuff, Insider Threat, Microsoft, News, North Korea, software development, supply chain compromise, vulnerability / SecurityTicks

North Korean hackers are targeting software developers and impersonating IT workers 20/10/2023 at 13:52 By Helga Labus State-sponsored North Korean hackers have significantly intensified their focus on the IT sector in recent years, by infiltrating firms developing software and companies lookind for IT workers. North Korean hackers targeting developers Microsoft has outlined on Wednesday how

React to this headline:

North Korean hackers are targeting software developers and impersonating IT workers Read More »

Attackers hit software firm Retool to get to crypto companies and assets

Cryptocurrency, cybercrime, Don't miss, Hot stuff, MFA, News, Okta, Retool, social engineering, spear-phishing, supply chain compromise / SecurityTicks

Attackers hit software firm Retool to get to crypto companies and assets 14/09/2023 at 18:17 By Zeljka Zorz Retool, the company behind the popular development platform for building internal business software, has suffered a breach that allowed attackers to access and take over accounts of 27 cloud customers, all in the crypto industry. According to

React to this headline:

Attackers hit software firm Retool to get to crypto companies and assets Read More »

Exploring the macro shifts in enterprise security

attacks, Cloud, cloud security, cybersecurity, data breach, identity management, News, Ransomware, Scale, supply chain compromise, survey / SecurityTicks

Exploring the macro shifts in enterprise security 20/07/2023 at 06:04 By Help Net Security The number of successful ransomware attacks and data breach attempts fell by 30% over the last year, the number of reported security incident types at organizations increased, according to the 2023 Cybersecurity Perspectives Survey by Scale. Security incident types In fact,

React to this headline:

Exploring the macro shifts in enterprise security Read More »