Supply Chain Attacks
Deceptive PyPI Package Masquerading as a Solana Tool Pilfers Source Code in 761 Downloads
Deceptive PyPI package masquerading as a Solana tool pilfers source code in 761 downloads, exposing critical vulnerabilities for unsuspecting developers.
#Infosec2025: Experts to Shine Light on Vendor Supply Chain Resilience Against Third-Party Risks
Join #Infosec2025 to explore expert insights on bolstering vendor supply chain resilience and tackling third-party risks effectively.
Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
Malicious npm packages compromise 3,200+ Cursor users with backdoors that steal credentials, revealing critical security vulnerabilities.
Supply chain attack hits npm package with 45,000 weekly downloads
Supply chain attack compromises an npm package with 45,000 weekly downloads. Learn how to secure your dependencies and mitigate emerging threats.
Magento supply chain attack compromises hundreds of e-stores
Magento supply chain attack exploits vulnerabilities to compromise hundreds of e-stores, risking customer data and revenue integrity.
Chainguard Secures $356M to Safeguard Open-Source Supply Chains
Chainguard secures $356M to enhance security for open-source supply chains, ensuring safer software development and protecting against vulnerabilities.
Ripple NPM Supply Chain Attack Targets Private Key Theft
Ripple NPM supply chain attack exposes vulnerabilities, leading to private key theft and raising concerns over security in software dependencies.
Major Supply Chain Attack: Ripple’s xrpl.js npm Package Compromised to Steal Private Keys
Ripple’s xrpl.js npm package was compromised in a major supply chain attack, leading to the theft of private keys from unsuspecting users.
The Hidden Dangers of AI-Driven Slopsquatting in Supply Chains
Explore the hidden dangers of AI-driven slopsquatting in supply chains, revealing risks to efficiency, security, and ethical practices.
Navigating New Cyber Threats in Supply Chains: From Vendors to U.S. Tariffs
Explore strategies for managing cyber threats in supply chains, focusing on vendor risks and the impact of U.S. tariffs on security measures.
AI Hallucinations Pose New Risks in Supply Chain with “Slopsquatting”
AI hallucinations in supply chains lead to “slopsquatting,” creating new risks and challenges for accuracy and efficiency in logistics management.
The Emerging Supply Chain Risk of AI-Generated Code Dependencies
Explore the rising supply chain risks associated with AI-generated code dependencies and their impact on software security and reliability.
Malicious npm Package Compromises Atomic Wallet and Exodus Users by Altering Crypto Addresses
Malicious npm packages compromise Atomic Wallet and Exodus users by altering crypto addresses, leading to potential theft of funds.
Ukrainian Drone Brings Blood Supplies Amidst Combat
Ukrainian drone delivers vital blood supplies to frontline troops, ensuring critical medical support amidst ongoing combat operations.
The GitHub Supply Chain Attack: Unraveling the Stolen SpotBugs Token Incident
Explore the GitHub supply chain attack that compromised the SpotBugs token, revealing vulnerabilities and the impact on software security.
GitHub Supply Chain Attack Linked to SpotBugs Access Token Theft
GitHub supply chain attack linked to SpotBugs access token theft exposes vulnerabilities, highlighting the need for enhanced security measures.
GitHub Token Breach Linked to Tj-actions Supply Chain Attack
GitHub Token breach linked to Tj-actions supply chain attack exposes vulnerabilities, highlighting the need for enhanced security measures in software development.
Vulnerabilities in Third-Party Supply Chain: CVE-2025-30066 and CVE-2025-30154
Explore vulnerabilities CVE-2025-30066 and CVE-2025-30154 in third-party supply chains, highlighting risks and mitigation strategies for enhanced security.
Rethinking Supply Chain Risk Assessment: Why Traditional Methods Are Insufficient
Explore why traditional supply chain risk assessment methods fall short and discover innovative approaches for a more resilient strategy.
SecurityScorecard Reports Increase in Third-Party Breaches
SecurityScorecard reports a rise in third-party breaches, highlighting the growing risks organizations face from external partners and vendors.
Is Your Supply Chain Safe Amid Rising Nation-State Hacking Threats?
Discover how rising nation-state hacking threats impact your supply chain and learn strategies to enhance its security and resilience.
THN Weekly Update: GitHub Supply Chain Breach, AI-Driven Malware, BYOVD Strategies, and More
Stay informed with THN Weekly Update: explore the GitHub supply chain breach, AI-driven malware, BYOVD strategies, and key cybersecurity insights.
Coinbase Faces GitHub Actions Supply Chain Attack; 218 Repositories’ CI/CD Secrets Compromised
Coinbase suffers a GitHub Actions supply chain attack, compromising CI/CD secrets in 218 repositories, raising security concerns.
GitHub Action Supply Chain Breach Reveals Secrets in 218 Repositories
GitHub Action supply chain breach exposes sensitive data in 218 repositories, raising concerns over security and data integrity in software development.