Supply Chain Attacks

5 stories tagged Supply Chain Attacks.

AI Is Breaking Open Source Supply Chain Security

Ismail Pelaseyed of Superagent explains how AI has compressed attack timelines and why the open source ecosystem may be approaching a structural breaking point.

Gemini CLI's CVSS 10.0 Bug and AI Agent Security

Yuki Okonkwo1 month ago

AI. Yuki Okonkwo1 month ago

Gemini CLI's CVSS 10.0 Bug and AI Agent Security

A CVSS 10.0 flaw in Gemini CLI exposed CI/CD pipelines to full compromise via malicious pull requests. Here's what happened and what it reveals.

Confused older man in NFL cap and blue shirt against digital background with "WHY?! still doing this?!" text overlay

The Security Hole We Keep Ignoring: Third-Party Scripts

Bob Reynolds3 months ago

AI. Bob Reynolds3 months ago

The Security Hole We Keep Ignoring: Third-Party Scripts

After 50 years covering tech, I've seen this pattern before: developers linking to code they don't control, creating vulnerabilities that shouldn't exist.

A skeptical programmer with glasses sits next to Python code with a large red arrow pointing at it against a dark background

Malware Now Uses Blockchain for Command and Control

Samira Barnes3 months ago

AI. Samira Barnes3 months ago

Malware Now Uses Blockchain for Command and Control

Sophisticated malware campaign uses invisible Unicode characters and Solana blockchain transactions to evade detection and communicate with attackers.

Four podcast panelists discuss the 2026 Security Intelligence Threat Intelligence Index against a backdrop of bookshelves…

Why Hackers Are Ditching Stolen Passwords for Apps

Marcus Chen-Ramirez4 months ago

AI. Marcus Chen-Ramirez4 months ago

Why Hackers Are Ditching Stolen Passwords for Apps

Public-facing app exploits surged 44% while credential theft dropped. IBM's new threat report reveals what's driving the shift—and why it matters.