Supply Chain Attack Archives

Do Son April 23, 2025

The threat of software supply chain compromise has once again resurfaced: the Ripple-recommended library “xrpl.js”, used for...

Do Son April 22, 2025

Experts at Socket have uncovered a new software supply chain attack involving counterfeit npm libraries masquerading as...

Do Son April 13, 2025

The era of AI-powered code generation tools has not only simplified the lives of developers but also...

Do Son April 12, 2025

Software supply chain attacks are becoming increasingly sophisticated, with malicious actors disguising harmful code as legitimate libraries...

Do Son April 10, 2025

While experts were investigating the compromise of the widely used GitHub Action tj-actions/changed-files, it became apparent that...