Feb. 1, 2024, 9:53 p.m. | Security Weekly

Security Weekly www.youtube.com

We've seen general users targeted with phishing, financial employees targeted for BEC scams, and engineers targeted for access to infrastructure. The truly scary attacks, however, are the indirect ones that are automated. The threats that come in via software updates, or trusted connections with third parties.

The software supply chain is both absolutely essential, and fragile. A single developer pulling a tiny library out of NPM can cause chaos. A popular open source project changing hands could instantly …

access attacks automated bec bec scams elephant employees engineers financial general infrastructure phishing pipeline scams scary software software supply chain software updates supply supply chain threats updates

Cloud Support Engineer

@ General Dynamics Information Technology | USA UT Roy - 5770 Missile Way, Roy, UT 84067 (UTC018)

Senior SIEM Developer (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel

Director, Product Management (Cloud Application Security)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel

Cyber Security Specialist, Cyber Awareness Training & Strategic Projects

@ Grab | Petaling Jaya, Malaysia

Cyber Security Analyst (m/f/d)

@ Project A | Berlin

Cyber Security Analyst (m/w/d)

@ Project A | Berlin