Supply Chain Attack via a Trojanized Comm100 Chat Installer | allinfosecnews.com

c

Oct. 26, 2022, 7:21 p.m. |

Cloud Security Alliance cloudsecurityalliance.org

Originally published by CrowdStrike. Leveraging a combination of advanced machine learning and artificial intelligence, a new supply chain attack was identified during the installation of a chat-based customer engagement platform. The supply chain attack involved a trojanized installer for the Comm100 Live Chat application being deployed. Malware was delivered via a signed Comm100 installer that could be downloaded from the company’s website as recently as the morning of September 29, 2022. W...

attack chat comm100 installer supply supply chain supply chain attack

More from cloudsecurityalliance.org / Cloud Security Alliance

Cl

AI Hallucinations: The Emerging Market for Insuring Against Generative AI's Costly Blunders 2 days, 13 hours ago | cloudsecurityalliance.org

ai governance ai hallucinations blog chair +16

Cl

Upselling Cybersecurity: Why Baseline Security Features Shouldn’t Be a Commodity 2 days, 14 hours ago | cloudsecurityalliance.org

accountability advisory barr advisory consulting +23

Cl

Breach Debrief: The Fake Slackbot 6 days, 12 hours ago | cloudsecurityalliance.org

abusing adaptive shield breach design +15

Cl

Understanding the Nuances: Privacy and Confidentiality 6 days, 12 hours ago | cloudsecurityalliance.org

age american businesses clients +19

Cl

What’s in a Name? Defining Zero Trust for Leaders 6 days, 12 hours ago | cloudsecurityalliance.org

analyst board business concept +17

Cl

Are You Ready for Microsoft Copilot? 6 days, 13 hours ago | cloudsecurityalliance.org

ai chatbot chatbot copilot customers +13

Cl

Implementing a Data-Centric Approach to Security 6 days, 13 hours ago | cloudsecurityalliance.org

access access governance can cto +13

Cl

Cloud Security Alliance (CSA) AI Summit at RSAC to Deliver Critical Tools to Help Meet … 1 week, 1 day ago | cloudsecurityalliance.org

advice alliance april benefits +19

Cl

7 Common Causes of Data Breach: Safeguarding Your Digital Assets 1 week, 1 day ago | cloudsecurityalliance.org

assets breach breaches connected +16

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Information Systems Security Officer (ISSO) (Remote within HR Virginia area)

@ OneZero Solutions | Portsmouth, VA, USA

View on infosec-jobs.com

Security Analyst

@ UNDP | Tripoli (LBY), Libya

View on infosec-jobs.com

Senior Incident Response Consultant

@ Google | United Kingdom

View on infosec-jobs.com

Product Manager II, Threat Intelligence, Google Cloud

@ Google | Austin, TX, USA; Reston, VA, USA

View on infosec-jobs.com

Cloud Security Analyst

@ Cloud Peritus | Bengaluru, India

View on infosec-jobs.com