Technical Details on CrateDepression Rust Supply-Chain Attack Campaign

Context On May 19, 2022, security researchers at Sentinel Labs released technical details of a campaign targeting the Rust development community with a supply-chain attack by leveraging a malicious crate. The Rust Security Response Working Group released an advisory regarding the malicious crate on May 10, 2022. The malicious crate was named “rustdecimal,” likely intended…

Read More

Member Spotlight: Chad Whitman

This month’s member spotlight is Chad Whitman, Vice President, Security Engineering at Signet Jewelers. Chad had an interest in computers from a young age but was also interested in business. This dual combination led him to Purdue University’s computer technology program, which offered a blend of computer science, technology, and business courses. After Chad earned…

Read More