Safeguard
Topic

Supply Chain Attacks

In-depth guides and analysis on supply chain attacks from the Safeguard engineering team.

92 articles

Supply Chain Attacks

Cargo supply chain attacks: typosquatting and malicious c...

Crates.io typosquatting tricks Rust developers into pulling malicious crates instead of trusted ones. Here's how these attacks work — and how to spot them before you build.

Feb 5, 20267 min read
Supply Chain Attacks

PyPI mexalz Malware Campaign Deep Dive

Researchers tracked a PyPI campaign publishing malicious packages under the mexalz and related account names, targeting Python developers with infostealers.

Feb 2, 20266 min read
Supply Chain Attacks

Gradle build script injection and plugin supply chain att...

How attackers hijack Gradle plugins, typosquat the Plugin Portal, and inject code into build.gradle files to run with full CI trust — and how to stop it.

Jan 29, 20268 min read
Supply Chain Attacks

The npm 'everything' Package Attack (2024) Analyzed

In January 2024 a developer published npm packages that depended on every public npm package, triggering a denial-of-service style incident across the registry.

Jan 20, 20267 min read
Supply Chain Attacks

SolarWinds Sunburst: Five Years of Lessons in 2026

Half a decade after Sunburst, the build system compromise still defines how we think about software supply chain risk. A look at what stuck and what did not.

Jan 9, 20265 min read
Supply Chain Attacks

The PHP Source Code Git Server Backdoor Compromise of 2021

In 2021, attackers breached PHP's git server and pushed a backdoor under forged commits from top maintainers. Here's how the PHP git server compromise unfolded.

Nov 20, 20257 min read
Supply Chain Attacks

The Six-Month PEAR go-pear.phar Installer Compromise

How a single tampered PEAR go-pear.phar installer sat undetected on pear.php.net for months, what it could do, and what the PHP ecosystem learned about supply chain trust.

Nov 19, 20257 min read
Supply Chain Attacks

Software Supply Chain Security in 2023: Year in Review

From the MOVEit mass exploitation to AI model risks, 2023 proved that supply chain attacks are accelerating in both sophistication and scale. Here's what we learned.

Dec 20, 20235 min read
Supply Chain Attacks

SLSA v1.0: Software Provenance Attestation Goes Mainstream

The SLSA framework reached v1.0 in April 2023, providing a practical framework for software supply chain integrity that's already being adopted by major package registries.

Sep 10, 20235 min read
Supply Chain Attacks

Massive PyPI Malware Campaign Targets Developers with Credential Stealers

A sustained campaign flooded PyPI with hundreds of malicious packages using typosquatting and dependency confusion to steal credentials and cryptocurrency from developers.

Sep 5, 20235 min read
Supply Chain Attacks

JumpCloud Supply Chain Attack: North Korea's Lazarus Group Strikes Again

How North Korean threat actors compromised JumpCloud's infrastructure to target cryptocurrency firms through a sophisticated supply chain attack in July 2023.

Jul 12, 20235 min read
Supply Chain Attacks

MSI Breach: Intel Boot Guard Keys Leaked After Ransomware Attack

The Money Message ransomware gang breached MSI and leaked Intel Boot Guard private keys, undermining firmware security for millions of devices.

May 5, 20236 min read
Supply Chain Attacks (Page 6) — Supply Chain Security Blog | Safeguard