The hack of a Pennsylvania water treatment facility in November is part of a larger campaign by an Iranian APT group against users of Israel-made operational technology.
Companies
BitCoins To Bombs: North Korea Funds Military With Billions In Stolen Cryptocurrency
A report from the firm Recorded Future finds that billions in gains from cryptocurrency heists fund close to half of North Korea’s military budget.
Spotlight Podcast: RADICL Is Coming To The Rescue Of Defense SMBs
In this Spotlight Security Ledger podcast, Chris Petersen, the CEO and founder of RADICL, talks about his company’s mission to protect small and midsized businesses serving the defense industrial base, which are increasingly in the cross-hairs of sophisticated, nation-state actors.
GitGuardian’s HasMySecretLeaked Is HaveIBeenPwned for DevOps
Amid a spike in attacks on software supply chains, GitGuardian launched HasMySecretLeaked.com, a site that allows developers and appsec teams to search for exposed secrets.
Episode 253: DevSecOps Worst Practices With Tanya Janca of We Hack Purple
Tanya Janca of the group We Hack Purple, talks with Security Ledger host Paul Roberts about the biggest security mistakes that DevSecOps teams make, and application development’s “tragedy of the commons,” as more and more development teams lean on open source code.
