Andrew Shay logo
Blog & Digital Garden
Home > Digital Garden > Supply Chain Attacks

💣 Supply Chain Attacks (11)

  1. ⭐ 🔗 Let's talk about supply chain attacks and backdoored dependencies
  2. ⭐ 🔗 Supply chain attacks - Microsoft
  3. 🔗 170K Users Affected by Attack Using Fake Python Infrastructure
  4. 🔗 Backdoored Python Library Caught Stealing SSH Credentials
  5. 🔗 Dev corrupts NPM libs 'colors' and 'faker' breaking thousands of apps
  6. 🔗 Evan Boehs: Everything I know about the XZ backdoor
  7. 🔗 GitHub besieged by millions of malicious repositories
  8. 🔗 Malicious ‘SentinelOne’ PyPI package steals data from developers
  9. 🔗 NPM supply-chain attack impacts hundreds of websites and apps
  10. 🔗 Running the “Reflections on Trusting Trust” Compiler
  11. 🔗 Two malicious Python libraries caught stealing SSH and GPG keys
    (2) https://news.ycombinator.com/item?id=21701488
andrewshay.me