Cyberhaven Chrome Extension Hack Linked to Widening Supply Chain Campaign
C3 Integrated Solutions
C3 Integrated Solutions is a full-service IT provider, helping DoD contractors achieve NIST 800-171 and CMMC compliance.
Check out recent news and resources to stay informed about what's happening in cybersecurity.
FEATURED ARTICLE
The supply chain attack in which cybersecurity firm Cyberhaven’s Chrome extension was compromised to steal users’ data appears to be part of a wider campaign in which at least 29 extensions were hit over the past year and a half. (SecurityWeek)
EXPERT TAKE
“Developers have become the hot target for social engineering attacks, increasing our supply chain risks. Over 30 Chrome extensions were compromised through phishing emails to their developers, which abused OAuth connections to push malicious code. Many of the targeted developers had MFA in place for security. However, MFA is only one part of best security practices.
Organizations should also implement application and browser extension control through Group Policy alongside other security measures including restricted local admin rights and asset management controls. Engage qualified security professionals for continuous threat monitoring, and be comfortable communicating with them in order to effectively address risks”
– Michael R. , SOC Analyst at C3 Integrated Solutions
NEWS ROUNDUP
领英推荐
Researchers have demonstrated a method to bypass Windows 11’s BitLocker encryption, enabling the extraction of Full Volume Encryption Keys (FVEKs) from memory. This vulnerability underscores the risks associated with physical access attacks and highlights potential weaknesses in memory protection mechanisms. (Cyber Security?News)
A recent software update gone wrong has caused widespread disruption for cybersecurity professionals globally. Bad differential plugin updates from Tenable have led to their Nessus vulnerability scanner agents shutting down, leaving countless organizations without critical security checks. This article delves into the chaos, the urgent manual fixes required, and the steps Tenable has taken to mitigate the fallout. Read on to discover how this incident affected security operations worldwide and what measures are being implemented to prevent future occurrences. (Bleeping Computer)
In what’s being called a “major cybersecurity incident,” Beijing-backed adversaries broke into cyber vendor BeyondTrust to access the US Department of the Treasury workstations and steal unclassified data, according to a letter sent to lawmakers. (Dark Reading)
The beloved doughnut chain Krispy Kreme has fallen victim to a significant cybersecurity incident, with the notorious Play ransomware group claiming responsibility for the attack. (Cyber Security?News)
The US government launched a national security investigation into the popular, Chinese-owned router maker TP-Link, with a potential eye on banning the company’s devices in the United States. (Malwarebytes)