Infosecurity Magazine

Supply Chain Security News

Scroll down for the latest supply chain security news & articles from Infosecurity Magazine

Latest News and Features

NCSC Playbook Embeds Cyber Essentials in Supply Chains

News

Malware Discovered in 19 Visual Studio Code Extensions

News

Log4Shell Downloaded 40 Million Times in 2025

News

React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

News

Sysdig has found sophisticated malicious campaigns exploiting React2Shell that delivered EtherRAT and suggested North Korean hackers’ involvement

Malicious VS Code Extensions Deploy Advanced Infostealer

News

Two malicious Visual Studio Code extensions, Bitcoin Black and Codo AI, have been observed harvesting sensitive user data

Marquis Software Breach Affects Over 780,000 Nationwide

News

A data breach at Marquis Software Solutions due to a firewall flaw has affected over 780,000 people across the US

Barts Health Seeks High Court Ban After Oracle EBS Breach

News

CISA and International Partners Issue Guidance for Secure AI in Infrastructure

News

Critical PickleScan Vulnerabilities Expose AI Model Supply Chains

News

ShadyPanda's Seven-Year Campaign Infects 4.3M Chrome and Edge Users

News

White Papers

How To Win in the Software Business: A Case Study with Vast Data

White Paper

State of Cybersecurity Report 2022

White Paper

The Risk Management Blind Spot, Third-Party Identities Often Create Unrecognised Risk

White Paper

On-Demand Webinars

  • Safeguarding Critical Supply Chain Data Through Effective Risk Assessment
  • Learn Key Strategies for Industrial Data Security
  • Unpacking the Top Vulnerabilities Exploited by Sophisticated Attackers
  • How to Optimize Third-Party Risk Management Programs Through NIST CSF 2.0
  • How to Secure Remote Connectivity within Operational Technology Environments
  • Mastering Software Supply Chain Security with Strategic Defense Mechanisms
  • Forward-Thinking Practices to Manage IT Risk
  • The Growing Importance of Digital Forensics and Incident Response in Corporate Environments
  • The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
  • How to Build Cyber Resilience Across the Entire Workforce

More news and features

Malware Manipulates AI Detection in Latest npm Package Breach

News

Malicious npm package targets AI security with misleading prompts, exploiting automated analysis

OpenAI Warns of Mixpanel Data Breach Impacting API Users

News

Scattered Lapsus$ Hunters Take Aim At Zendesk Users

News

UK Report Proposes Liability For Software Provider Insecurity

News

New Shai-Hulud Worm Spells Trouble For npm Users

News

Flaws Expose Risks in Fluent Bit Logging Agent

News

Iberia Airlines Notifies Customers of Supply Chain Data Breach

News

New Gainsight Supply Chain Hack Could Affect Salesforce Customers

News

CISA Issues New Guidance on Bulletproof Hosting Threat

News

CISA launches guide to combat cybercrime via bulletproof hosting, recommending measures for ISPs

Supply Chain Breaches Impact Almost All Firms Globally, BlueVoyant Reveals

News

Despite a growing maturity of third-party risk management programs, supply chain attacks impacted more organizations in 2025 than in previous years

Blogs

The Budget Effect of a Security Incident

Blog

Energy Operations: Managing Password Security and Continuity

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen