Andrew Shay logo
Blog & Digital Garden
Home > Digital Garden

πŸ’£ Supply Chain Attacks (7)

  1. ⭐ πŸ”— Let's talk about supply chain attacks and backdoored dependencies
  2. ⭐ πŸ”— Supply chain attacks - Microsoft
  3. πŸ”— Backdoored Python Library Caught Stealing SSH Credentials
  4. πŸ”— Dev corrupts NPM libs 'colors' and 'faker' breaking thousands of apps
  5. πŸ”— Malicious β€˜SentinelOne’ PyPI package steals data from developers
  6. πŸ”— NPM supply-chain attack impacts hundreds of websites and apps
  7. πŸ”— Two malicious Python libraries caught stealing SSH and GPG keys
    (2) https://news.ycombinator.com/item?id=21701488
andrewshay.me