US military draws up 'do not buy' list for software

US military draws up 'do not buy' list for software

The US military is being warned off installing software believed to have been compromised by Russian or Chinese state-backed hackers.

The Pentagon has drawn up a “do not buy” list of suppliers, reports the Defense One news site.

Legitimate-looking software developers could be fronts for enemy hacker groups, it was told.

The news follows official warnings about software supply-chain attacks that target widely used programs.

Concealed code

The Pentagon started to draw up the list in early 2018 and it is regularly circulated to procurement chiefs and other teams who source software for the armed forces. No details of which software packages or developers are on the list have been released.

To read the full article click here.