Articles by tag: supply-chain-attack
CanisterWorm in npm: attack after Trivy
Analysis of CanisterWorm worm: ICP C2, theft of npm tokens, systemd persistence. How to protect the supply chain from self-propagation. Analysis for developers.
PyPI LiteLLM Telnyx Attacks: Supply Chain Protection
Analysis of attacks on litellm and telnyx via Trivy. Recommendations on cooldown, lock-files and trusted publishers for Python developers. Avoid compromise — implement P3D.
eBPF rootkit in Linux: DB leak via contractor
Breakdown of a real eBPF rootkit case: symptoms, detection with bpftool, attack chain via contractor. Protection measures for Linux servers: 2FA, bpf() audit, Falco. Learn how to prevent PII exfiltration.