#tag

Supply Chain

3 matching posts.

All tags
Web Security Jun 13, 2026 10 min read

GitHub Issue to Supply Chain Compromise: How Prompt Injection Turned AI Agents into the New CI/CD Kill Chain

When a single GitHub issue can poison an AI agent, steal pipeline credentials, and publish malicious packages to production registries — all without a single binary payload.

#prompt-injection#supply-chain#ci-cd#ai-agents#github-actions#llm-security#vulnerability-research
Threat Intelligence Jun 9, 2026 6 min read

The Convergence: How Supply Chain Attacks Became Ransomware's Favorite Delivery Vehicle

How modern ransomware weaponizes supply chain trust, and where to break the kill chain.

#supply-chain#ransomware#ci-cd#lateral-movement#edr-evasion#methodology
Vulnerability Research Sep 9, 2024 7 min read

Anatomy of a Supply Chain Kill Chain: The xz Utils Backdoor (CVE-2024-3094)

How build-system manipulation and IFUNC hijacking turned a compression library into an SSH implant.

#supply-chain#backdoor#cve-2024-3094#linux#openssh#build-security