A Recent Chinese Hack Is a Wake-up Call for the Security of the World’s Software Supply Chain The Diplomat


Source: thediplomat.com thediplomat.com

Key Topics in this News Article:

News Snapshot:

No one knows, not even the ghosts (人不知,鬼不觉) -Chinese idiom It’s perhaps only a coincidence that there’s a famous Chinese saying that neatly summarizes a recent hack on MiMi, a Chinese messaging app. According to recent reports, a Chinese state-backed hacking group inserted malicious code into this messaging app, essentially pulling off the equivalent of the infamous SolarWinds hack. Users of MiMi were served a version of the app with malicious code added, thanks to attackers taking control of the servers that delivered the app. In short, this was a software supply chain attack in which the software delivery pipeline...