Cloud Security Alliance

Securing AI Workloads in AWS: Why Bedrock and SageMaker Need Runtime Detection and AI-Powered Response

Attackers use AI to target Bedrock and SageMaker; learn why posture alone fails and how runtime detection and AI-powered ...

Dozens of Red Hat packages backdoored through its official NPM channel

Official Red Hat NPM accounts have been compromised and used to push a malicious worm that spreads from machine to machine, ...
Microsoft

Updating the taxonomy of failure modes in agentic AI systems: What a year of red teaming taught us

A surge in real-world attacks against agentic AI systems is reshaping how we think about risk. Based on 12 months of red ...

Red Hat hit by npm supply‑chain attack - here's how to stay safe

Days after IBM and Red Hat announced a master security plan for open-source software, Red Hat suffers a major breach of its ...
Forbes

Supply Chain Career Paths: Consider These 4 Jobs

Doug Wintemute is a staff writer for Forbes Advisor. After completing his master’s in English at York University, he began his writing career in the higher education space. Over the past decade, Doug ...
Nasdaq

Board Strategies for Integrating Social Responsibility in Supply Chain Management

The 2025 geopolitical landscape—marked by tariff escalations, trade discussions, and regulatory shifts—has intensified pressure on global supply chains. Amid the turbulence, the ‘S’ in ESG has emerged ...
Infosecurity Magazine

Infosecurity Europe: Patch Responsibility Remains Up for Grabs as AI Unearths Decades of Flaws

The emergence of AI models capable to autonomously find and fix vulnerabilities at scale is having a significant impact on ...
Microsoft

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the @redhat-cloud-services npm scope. The ...