Supply Chain Attacks
Articles covering cyberattacks that target vulnerabilities in supply chains.
-
Shai-Hulud Supply Chain Attack: How npm Tokens Became Million-Dollar Keys
Shai-Hulud demonstrates how compromised npm tokens became a self-replicating worm affecting hundreds of packages, exposing 400,000 developer secrets and enabling the $8.5 million Trust Wallet crypto theft.
-
AI Escalates Supply Chain Attacks, Overwhelming Traditional Defenses
AI-enabled supply chain attacks are rapidly increasing in sophistication and scale, posing significant challenges to traditional cybersecurity defenses. This article explores the rise of polymorphic and context-aware AI-generated malware, its real-world impacts, and the urgent need for adaptive security frameworks and regulatory compliance to combat these evolving threats.
-
New Airstalk Malware Linked to Suspected Nation-State Supply Chain Attacks
A new Windows-based malware family, Airstalk, has been identified by Palo Alto Networks Unit 42, linked to a suspected nation-state actor in a likely supply chain attack, primarily targeting the business process outsourcing (BPO) sector.