From mapping dependencies to immutable recovery—strategic steps to reduce your blast radius in an interconnected world.

Apparel supply chain actors convened in Berlin to launch a new centre aimed at securing worker rights across global value ...

Security isn't just your problem anymore — it's the board's. With 97% of apps using open-source, CSOs need to ditch the false ...

A secure industrial supply chain is no longer defined by physical controls around a defined network perimeter and contractual safeguards with suppliers. In an era of maturing artificial intelligence, ...

China will set up a sweeping new mechanism to ensure the security of its supply chains, targeting espionage and allowing ...

As 2020 finally came to an end and 2021 began, The New York Times reported that Russia used SolarWinds' hacked program to infiltrate at least 18,000 government and private networks. As a result, it is ...

Company Insights on Software Supply Chain Security and Threat Intelligence Featured in New Enterprise AI Security Handbook Published by TAG Infosphere ...

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.

Mercor says it has been impacted by the LiteLLM supply chain attack as Lapsus$ has auctioned 4TB of data allegedly stolen ...

Two malicious Axios npm releases have prompted warnings for developers to rotate credentials and treat affected systems as ...

For decades, global commodity supply chains have operated in a largely analog way. Metals are extracted from the ground, sold through layers of intermediaries, shipped across continents, and ...

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...