At least 10 APT groups are actively exploiting Microsoft Exchange vulnerabilities
ESET: Some Attacks Happened Before Microsoft Was Notified of Vulnerabilities [...]
Chinese hackers targeted SolarWinds customers in parallel with Russian op
New data suggests that Russia wasn't the only nation-state hacking [...]
Open source ‘dependency confusion’: Software repositories play ‘whack-a-mole’ as ‘dependency confusion’ copycats exceed 5,000
Maintainers of the NPM Registry and Python Package Index (PyPI) [...]
Exploitation of Accellion File Transfer Appliance
Septu comment: An unusual alert from Cybersecurity and Infrastructure Security [...]
Software supply chain attacks – everything you need to know
Septu comment: A good explanation and review of software supply [...]