Feds Dig Into Third Supply Chain Hack of the Year With Pulse Connect Secure VPN's Flaws
Experian fixes flaw exposing Americans' credit scores, Microsoft finds 25 flaws affecting IoT and industrial gear, IRS wants to hack into crypto wallet, Hackers exploited SonicWall zero-day, more
Don’t miss out on our special offers and content exclusive to our premium subscribers. Subscribe today!
For at least the third time since the beginning of the year, the U.S. government is investigating a supply chain hack, this time the breach of Pulse Connect Secure’s VPN product, which is used by more than a dozen federal agencies that run Pulse Secure on their networks.
After an emergency cybersecurity directive last week which demanded that agencies scan their systems for related compromises and report back, evidence of potential breaches in at least five federal civilian agencies showed up, according to Matt Hartman, a senior official with the U.S. Cybersecurity Infrastructure Security Agency. Pulse Connect Secure said it expects to issue a patch for this problem on Monday. (Christopher Bing, Joseph Menn / Reuters)
Related: iTnews - Security, CPO Magazine, The Register - Security
Experian just fixed a flaw with a partner website that let anyone look up the credit score of tens of m…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.