Hunted Labs

Security teams will be doing a different kind of egg hunt this weekend... Below, Hayden Smith discusses three simple actions to protect your organizations against the XZ backdoor. We have also left the official Cybersecurity and Infrastructure Security Agency advisory in the comments. Happy Hunting! #softwaresupplychain #huntorbehunted

A big thank you to AFCEA International for featuring our latest blog post, written by our Principal Solutions Architect, ?? Paul Novarese! Read more below ?? #cyber #cybersecurity #softwaresupplychain #SBOMs #ProtecttheHunted

Join the hunt! We’re on the lookout for a Senior Product Manager who can help lead a cross-functional team of engineers and cybersecurity experts building a unified threat management platform for the software supply chain. Interested? Learn more about the role and apply today:?https://lnkd.in/e3w_ryBQ #Hiring #productmanager #product #startup #cyber #cybersecurity #softwaresupplychain

This article highlights the reality of the threat we face and it is critical to anyone building software today. The fact that the attacker went to lengths to masquerade as a legitimate security researcher and contributor is extremely interesting. Having a great CVE / Vulnerability management system for threats like these will just leave your organization vulnerable wrapped in a false sense of security. I want the CVE mafia to keep in mind there are no CVE’s for a threat like this… Attackers praying and spraying npm and PyPi repos with cryptominers is just the tip of the iceberg for attacks against open source software. Attackers are really smart and never seem to be lacking creativity. We are in a brave new world of identifying and responding to more complex software supply chain attacks that this article describes below. Come book a demo with Hunted Labs to learn about how we protect communities and organizations from attacks like these every day that ends in Y. #softwaresupplychain

Going to BSidesRedRocks tomorrow? Don’t miss ?? Paul Novarese’s talk on the current state of software supply chain attacks, why they’re suddenly thriving, and what we can do to contain them and make recovery quicker, easier, and less painful. See you there!??? BSidesSLC #ProtectTheHunted #softwaresupplychain #cyber #cybersecurity

It was a pleasure to meet all the new AFCEA International Corporate Members at The TechNet IndoPac Conference, including Hunted Labs! Great networking opportunities and insights shared. #AFCEAInternational #CorporateMembers #TechNetIndoPac #HuntedLabs

AFCEA International #technetindopac day 2 was a huge success ???? We are blessed to work with such strong partners in DoD and industry focusing on our new approach to tackling the threat in software supply chains. Together, we learned how we can extend our defensive reach and distupt actors targeting open source projects with ??Hunted Labs?? Gone are the days of counting CVE’s and calling it software supply chain security ???? ?? Paul Novarese Amanda Aguayo Kris Merritt Graham Smith #softwaresupplychain #indopacom #indopac

Sentinel Blue labels us as #Ones2Watch! ??

On this #ThrowbackThursday, we're resharing one of our all-time favorite posts in honor of #CyberSecurityAwarenessMonth. The post, written by our very own Hayden Smith, documents and analyzes the insane story of Jia Tan and their attack on XZ Utils. ?? Stories like this are all-too common in today's cyber threat landscape as malicious actors become increasingly sophisticated in their attempts to infiltrate and compromise software supply chains. At Hunted Labs, we’re committed to helping clients proactively improve their cybersecurity posture by giving them unparalleled visibility into their software supply chain and preventing threat actors like Jia Tan from inflicting harm against organizations. Learn more about what we’re up to at huntedlabs.com! https://lnkd.in/esyvHtrn #cyber #cybersecurity #jiatan #securitybreach #softwaresupplychain #protectthehunted

We are heading to Honolulu for AFCEA International TechNet Indo-Pacific! Stop by booth #1045 to learn more about what we’re building to uncover WHERE threats are located in your software supply chain, WHEN they got there, and WHO is behind them. Reach out to any of our team members Amanda Aguayo, Hayden Smith, Graham Smith, ?? Paul Novarese, Kris Merritt, David Silverman to set up some time to chat! #ProtecttheHunted #TechnetIndoPac