Latest software supply chain attack news

A software supply chain attack occurs when malicious hackers compromise third-party software dependencies used in multiple ‘downstream’ applications.

By compromising a single open source package or library, attackers can potentially steal confidential data from, cause a denial of service, or breach networks at hundreds – or even thousands – of organizations.

Small wonder this attack vector has become increasingly commonplace, with the ‘Sunburst’ attack in 2020, which gave attackers access to 18,000 SolarWinds customers, a watershed moment.

Catch up with the latest supply chain attack news and analysis here.