The Everest ransomware group claims to have stolen over 1TB of data from ASUS, including sensitive camera source code and internal tools. ASUS confirmed the breach originated from a third-party supplier, asserting that it does not affect customer products or user privacy.

CI/CD servers are vulnerable to attacks that can compromise source code and sensitive data, making their security critical. The article outlines essential steps to enhance the security of CI/CD servers and highlights the risks associated with security breaches. By prioritizing security measures, organizations can protect themselves from potential data breaches and attacks.

Zscaler has experienced a supply chain attack that compromised customer information through vulnerabilities in the Salesloft and Drift platforms. The breach underscores the risks associated with third-party services and the importance of securing supply chains in cybersecurity.

Over 6,700 private repositories were made public due to a malicious supply chain attack involving Nx. The attackers used a post-install script to exfiltrate sensitive data, including API keys and tokens, by creating public repositories to store the stolen information. Security firm Wiz reported that more than 20,000 files were compromised, affecting numerous users.

A significant cyberattack on a cooperative has resulted in empty store shelves, theft of sensitive data, and an estimated loss of $275 million in revenue. The incident highlights the growing threats to supply chain security and the impact of cybercrime on retail operations.