TSMC confirms Thrid Party Supplier Breach
TSMC, the world’s largest semiconductor manufacturer, has apparently been hit by a cyberattack at the hands of Russian ransomware gang LockBit. TSMC says one of its suppliers, IT services provider…
Arcserve Critical Authentication Bug
A group of red team researchers have identified a critical authentication bypass of an Arcserve backup system. The researchers detailed about vulnerability exploitation process and published tools and a PoC…
CISA releases guidelines on FCEB Devices
Researchers have discovered many devices running on government networks that expose remote management interfaces on the open Web. Earlier this month, CISA released Binding Operational Directive (BOD) 23-02, with the…
CISA and NSA Guidelines for CI/CD
The US NSA and the CISA have published a comprehensive set of guidelines aimed at defending Continuous Integration/Continuous Delivery (CI/CD) environments. The guidelines address the rising threat of malicious cyber…