Contd. [en] Software Supply Chain or Software Politics

2/2

"Although no malicious functionality was identified, the case showed how #software #provenance and #governance relationships may create #strategic concerns that are not visible through traditional #technical #analysis." ...

"#AI systems such as #Mythos may transform how governments identify software vulnerabilities, but vulnerabilities are only part of the strategic picture. The lessons of #XZ, #SolarWinds, and easyjson suggest that some of the most consequential risks may not emerge from #vulnerable code, but from the software ecosystem through which code is governed, trusted, and delivered."

https://www.justsecurity.org/142183/hiding-geopolitics-software-supply-chains/

#supplychain #vulnerability #go #easyjson #vk #invasion #ukraine #russia

Hiding in Plain Sight: The Geopolitics of Software Supply Chains

Software ecosystems are strategic infrastructure, yet they remain almost invisible within national security risk assessments.

Just Security

[en] Software Supply Chain or Software Politics

1/2

"In 2025, a #software supply chain #vulnerability was discovered in the widely used #Go programming library #easyjson that drew scrutiny due to its association with engineers from the #Russian technology company #VK. The package was hosted on GitHub by a MailRu account, which is owned by VK, and the VK CEO was sanctioned in 2022 by the U.S. Treasury following the Russian #invasion of #Ukraine, due to being or having been a leader or official of the Government of #Russia, amongst other reasons." ...

./2

#supplychain #ai #mythos #xz #solarwinds

A #solarwinds MCP would be a 'nice to have'.

“Wie alt bin ich", #kritis Edition

Weißt du, wo du warst bei
- #Heartbleed
- #log4j
- #gsmr Ausfall 1
- #gsmr Ausfall 2
- #WannaCry
- #solarWinds
- #NotPetya
?

Zähle deine “Ja”-Antworten und du erfährst dein biologisches Alter:

(0-1) frische 16
(2-4) junge 25
(4-6) bedenkliche 42
(7) oh oh..

Delete IPs From Existing Subnet in Solarwinds IPAM

1. Go to Manage Subnets and IP Address
2. Select the subnet
3. In the view to the right, there is Select IP range option. Give the starting IP Address and Ending IP Address.
4. Then Select + Delete

📖 Read more: https://sajalchoudhary.net/til/delete-ips-from-existing-subnet-in-solarwinds-ipam/

#solarwinds #ipam

Delete IPs From Existing Subnet in Solarwinds IPAM - Til

A personal digital garden and blog

CISA Adds SolarWinds Serv-U CVE-2026-28318 To KEV Catalog

On June 5, 2026, CISA added vulnerability CVE-2026-28318 (CVSS 7.5) to the Known Exploited Vulnerabilities catalog, confirming that it is being actively

CyberSecureFox

🚨 SolarWinds Serv-U: Luka DoS aktywnie wykorzystywana. Alert CVE-2026-28318

Luka CVE-2026-28318 w SolarWinds Serv-U pozwala na zdalne wywołanie awarii usługi. CISA potwierdza aktywne ataki i dodaje ją do katalogu KEV, co wymaga pilnej reakcji.

https://cyberowi.pl/solarwinds-serv-u-luka-dos-aktywnie-wykorzystywana-alert/

#cve #solarwinds #dos #cisa

#cyberbezpieczenstwo

📰 CISA Mandates Patch for Actively Exploited SolarWinds DoS Flaw Added to KEV Catalog

📢 CISA KEV ALERT! An actively exploited DoS flaw (CVE-2026-28318) in SolarWinds Serv-U is on the loose. Federal agencies must patch by June 19. All orgs using Serv-U are urged to update immediately! 🚨 #CVE #SolarWinds #Infosec #PatchNow

🌐 cyber[.]netsecops[.]io

🔗 https://cyber.netsecops.io/articles/cisa-orders-patch-for-actively-exploited-solarwinds-serv-u-dos-vulnerability/?utm_…

📰 CISA Mandates Patch for Actively Exploited SolarWinds DoS Flaw Added to KEV Catalog

📢 CISA KEV ALERT! An actively exploited DoS flaw (CVE-2026-28318) in SolarWinds Serv-U is on the loose. Federal agencies must patch by June 19. All orgs using Serv-U are urged to update immediately! 🚨 #CVE #SolarWinds #Infosec #PatchNow

🌐 cyber[.]netsecops[.]io

🔗 https://cyber.netsecops.io/articles/cisa-orders-patch-for-actively-exploited-solarwinds-serv-u-dos-vulnerability/?utm_…

SolarWinds tenta travar ataques contra servidores vulneráveis após alerta da CISA
🔗 https://tugatech.com.pt/t85090-solarwinds-tenta-travar-ataques-contra-servidores-vulneraveis-apos-alerta-da-cisa

#alerta #solarwinds 

SolarWinds tenta travar ataques contra servidores vulneráveis após alerta da CISA

A agência de cibersegurança norte-americana CISA emitiu um aviso sério sobre uma vulnerabilidade de elevada gravidade no software Serv-U da SolarWinds, que está

TugaTech