CodeCov supply-chain compromise likened to SolarWinds attack
A sophisticated supply-chain attack on CodeCov appears to have given attackers access to “hundreds” of the company’s clients, and their codebases.
SolarWinds advanced cyberattack: What happened and what to do now
Possibly the largest hacking operation of 2020 was just unveiled. In this blog we share what we know and what you should do right now.
A week in security (December 7 – December 13)
A roundup of cybersecurity news from December 7 – 13, including tax scams, FireEye breach, K12 security, and many other topics.
Malwarebytes detects leaked tools from FireEye breach
The security company FireEye was breached by a sophisticated attack that stole multiple red team assessment tools. Malwarebytes customers are safe.
The Advanced Persistent Threat files: APT10
While security companies are getting good at analyzing the tactics of nation-state threat actors, they still struggle with placing these actions in context and making solid risk assessments. So in this series, we’re going to take a look at a few APT groups, and see how they fit into the larger threat landscape—starting with APT10.
