IT Brief Canada - Technology news for CIOs & IT decision-makers
Canada

Supply Chain Security Stories - Page 2

Global Stories

Supply Chain Security stories

Qualys study calls for unified attack surface management
Software-as-a-Service

Qualys study calls for unified attack surface management

Security teams want daily scanning and clearer risk rankings as cloud sprawl and third-party reliance widen attack surfaces, a survey found.

By Mark Tarre 3 min read Last week
North Korea IT fraud cell flooded US firms with 167,000 bids
Virtual Private Networks

North Korea IT fraud cell flooded US firms with 167,000 bids

Remote hiring teams face a wider security risk after researchers found North Korean operatives won 76 offers from 166,893 US job applications.

By Joseph Gabriel Lagonsin 4 min read Last week
Pathlock & NTT DATA launch global SAP cyber service
Data Protection

Pathlock & NTT DATA launch global SAP cyber service

Enterprises running SAP may gain around-the-clock protection as the partners target ransomware, fraud and staffing gaps in ERP security.

By Mark Tarre 4 min read Last week
GitGuardian launches endpoint protection for laptops
Endpoint Protection

GitGuardian launches endpoint protection for laptops

A single compromised laptop can expose thousands of live keys, according to GitGuardian's early field tests, as attacks shift to developer machines.

By Sofiah Nichole Salivio 4 min read Last week
Checkmarx launches hybrid AI engine for code scanning
Cloud Security

Checkmarx launches hybrid AI engine for code scanning

False alerts and missed flaws are the target as the new engine aims to help security teams scan AI-written code more reliably.

By Sean Mitchell 4 min read Last week
Enhanced.io flags MSP blind spots in security coverage
Network Security

Enhanced.io flags MSP blind spots in security coverage

Identity and IoT monitoring gaps leave managed service providers with little public scrutiny, despite rising threats to clients' systems.

By Mark Tarre 4 min read Last week
Accenture buys Dragos & cybersecurity firms for USD $4.2bn
Manufacturing

Accenture buys Dragos & cybersecurity firms for USD $4.2bn

The acquisitions deepen Accenture's push into industrial cyber defence as it targets power grids, pipelines and data centres.

By Joseph Gabriel Lagonsin 4 min read Last week
AppViewX launches agent identity security for enterprises
Data Protection

AppViewX launches agent identity security for enterprises

Private preview access is now available as security teams race to govern AI agents and harden identity controls for a post-quantum era.

By Joseph Gabriel Lagonsin 4 min read Last week
Mini Shai-Hulud worm turns public, NCC Group warns
Cloud Security

Mini Shai-Hulud worm turns public, NCC Group warns

Public release of the Mini Shai-Hulud code means copycat attacks can now hit developers, CI/CD systems and open-source supply chains.

By Sofiah Nichole Salivio 4 min read Last week
1Password buys Apono to bolster AI access controls
Digital Transformation

1Password buys Apono to bolster AI access controls

The acquisition aims to curb standing privileges as firms grapple with AI agents and machine identities reaching sensitive systems.

By Sean Mitchell 5 min read Last week
Accenture buys majority stake in Dragos in USD $4.2bn deal
Digital Transformation

Accenture buys majority stake in Dragos in USD $4.2bn deal

Industrial operators are set to get broader protection against rising cyber risks as Accenture expands into operational technology security with three deals.

By Sofiah Nichole Salivio 4 min read Last week
Azul launches free JVM risk assessment amid AI threat
Digital Transformation

Azul launches free JVM risk assessment amid AI threat

The free check could help security teams uncover overlooked Java runtimes before AI-driven attackers exploit known flaws and outdated versions.

By Joseph Gabriel Lagonsin 4 min read Last week
Patchstack & GoDaddy add WordPress vulnerability detection
Security Operations Centres

Patchstack & GoDaddy add WordPress vulnerability detection

Eligible Managed WordPress customers gain visibility into flaws as they are disclosed, as WordPress attacks are being exploited within hours.

By Sean Mitchell 4 min read Last week
Broadridge joins Anthropic's Project Glasswing on security
Fintech

Broadridge joins Anthropic's Project Glasswing on security

The move puts Broadridge among firms using frontier AI to harden financial software, where breaches can disrupt trading and client communications.

By Sofiah Nichole Salivio 3 min read Last week
Broadcom expands Spring security for AI threat surge
Application Security

Broadcom expands Spring security for AI threat surge

Enterprises using Spring will get faster access to validated fixes as Broadcom responds to a 1700% surge in monthly security advisories.

By Joseph Gabriel Lagonsin 4 min read Last week
Thoughtworks launches Agent/works for AI governance
Digital Transformation

Thoughtworks launches Agent/works for AI governance

Enterprise teams are getting a single control plane to track agent sprawl, tighten permissions and curb AI spending as autonomous systems spread.

By Joseph Gabriel Lagonsin 4 min read Last week
Checkmarx partners with Carahsoft for public sector sales
Digital Transformation

Checkmarx partners with Carahsoft for public sector sales

Government agencies will gain wider access to application security tools as the partnership places Checkmarx products on Carahsoft's procurement channels.

By Joseph Gabriel Lagonsin 4 min read Last week

Stories from Other Regions

Supply Chain Security stories

SolarWinds appoints Justin Henkel as chief security officer
Security Operations Centres

SolarWinds appoints Justin Henkel as chief security officer

The hire comes as customers scrutinise SolarWinds' security posture more closely after its 2020 breach and rising cyber risk across software suppliers.

By Sofiah Nichole Salivio 4 min read Last week