Supply Chain Security stories

EC-Council rolls out its biggest training expansion in 25 years, unveiling an AI risk credential suite and revamped CISO leadership course.

Synology secures ISO/IEC 27001:2022 certification, bolstering its global information security management and risk governance credentials.

Rockwell opens a 24/7 Singapore security operations centre to monitor and defend industrial OT networks across the Asia Pacific region.

As Safer Internet Day nears, schools face rising cyber threats, third-party risks and new duties that push security into the boardroom.

Rockwell opens a Singapore Security Operations Centre to deliver 24/7 industrial cyber defence and OT threat response across Asia Pacific.

Bitdefender says 17% of OpenClaw AI skills act maliciously, with crypto-focused tools spreading macOS infostealers into corporate networks.

Constructive launches secure-by-default Postgres platform to hardwire Row-Level Security and permissions into databases from creation.

Chainguard tops 500m container manifests as AI-powered DriftlessAF ‘software factory’ scales secure open-source image production.

Tenable warns ‘LookOut’ flaws in Google Looker could hand attackers server control, expose secrets and enable cross-tenant cloud access.

Moltbook left a Supabase key exposed, leaking AI chats, 30,000 emails and 1.5 million API keys in a cautionary tale of vibe coding risk.

CIQ’s Rocky Linux NSS gains NIST CAVP for post-quantum ML-KEM and ML-DSA, marking key stride towards FIPS 140-3 cryptographic validation.

Developers granting AI agents broad, unsupervised access to code and systems are creating new software supply chain and data exposure risks.

Most firms suffered AI-linked cyber incidents last year, yet many still rate their security as above average amid a widening skills gap.

ENCS and DIVD have agreed a new cyber pact to uncover and disclose vulnerabilities in Europe’s high-impact energy and critical systems.

EnSilica has joined the CHERI Alliance, aiming to embed hardware memory safety in custom chips for industrial, automotive and IoT systems.

DryRun launches DeepScan Agent, an AI tool that scans whole codebases in hours to rank real-world security risks and speed remediation.

Tenable warns critical Google Looker flaws could enable server takeover and data theft, leaving unpatched self-hosted deployments exposed.

SUSE has launched a 20-minute cloud sovereignty self-assessment for APAC firms, benchmarking them against the 2025 EU framework.

AI, quantum threats and tougher regulation will reshape cyber strategies by 2026, forcing new governance, identity models and SOC workflows.

RapidFort secures USD $42m Series A to scale automated software supply chain security and continuous vulnerability remediation.