supply-chain

Multiple EU entities impacted by European Commission breach, CERT-EU says

• data-security
• supply-chain

Multiple EU entities impacted by European Commission breach, CERT-EU says

SC Staff April 3, 2026

At least 29 other European Union entities were disclosed by CERT-EU to have had their data compromised...

Read More Read more about Multiple EU entities impacted by European Commission breach, CERT-EU says

Third-party hack affirmed by Nissan after Everest ransomware assertions

• ransomware
• supply-chain

Third-party hack affirmed by Nissan after Everest ransomware assertions

SC Staff April 2, 2026

Major Japanese multinational automaker Nissan has confirmed having its data compromised in a cyberattack against a third-party...

Read More Read more about Third-party hack affirmed by Nissan after Everest ransomware assertions

What Is A Router? (And all things AI) – PSW #920

• ai-benefitsrisks
• aiml
• supply-chain

What Is A Router? (And all things AI) – PSW #920

Paul Asadoorian April 2, 2026

Read More Read more about What Is A Router? (And all things AI) – PSW #920

Trivy supply chain intrusion reportedly compromises Cisco source code

• data-security
• supply-chain
• vulnerability-management

Trivy supply chain intrusion reportedly compromises Cisco source code

SC Staff April 1, 2026

Cisco was reported to have had its source code stolen by threat actors following an attack linked...

Read More Read more about Trivy supply chain intrusion reportedly compromises Cisco source code

AI startup Mercor confirms security incident linked to LiteLLM supply chain attack

• aiml
• data-security
• supply-chain

AI startup Mercor confirms security incident linked to LiteLLM supply chain attack

SC Staff April 1, 2026

The incident at Mercor is believed to stem from malicious code injected into the LiteLLM project, an...

Read More Read more about AI startup Mercor confirms security incident linked to LiteLLM supply chain attack

FCC bans import of new foreign-made consumer routers due to security risks

• network-security
• security-operations
• supply-chain

FCC bans import of new foreign-made consumer routers due to security risks

SC Staff April 1, 2026

The FCC has added all foreign-produced consumer-grade routers to its Covered List, prohibiting their marketing and sale...

Read More Read more about FCC bans import of new foreign-made consumer routers due to security risks

Axios npm supply chain attack: Malicious updates add remote access trojan

• application-security
• devsecops
• identity
• malware
• supply-chain
• threat-intelligence

Axios npm supply chain attack: Malicious updates add remote access trojan

Laura French March 31, 2026

The axios npm package, with about 100 million weekly downloads, was compromised via a maintainer’s account.

Read More Read more about Axios npm supply chain attack: Malicious updates add remote access trojan

OpenAI fixes Codex flaw that could lead to GitHub token theft

• aiml
• application-security
• identity
• supply-chain

OpenAI fixes Codex flaw that could lead to GitHub token theft

Laura French March 31, 2026

A command injection hidden in a branch name could cause an OAuth token to be exfiltrated.

Read More Read more about OpenAI fixes Codex flaw that could lead to GitHub token theft

Exclusive: Blue Star NBR CEO Calls on Trump Admin to Help Critical Glove Industry — or Rely on China

• Economy
• Health
• Japan
• manufacturing
• Politics
• PPE
• Strait of Hormuz
• supply-chain
• Trump Administration

Exclusive: Blue Star NBR CEO Calls on Trump Admin to Help Critical Glove Industry — or Rely on China

Olivia Rondeau March 30, 2026

The United States is in danger of becoming dependent on China for essential nitrile butadiene rubber (NBR)...

Read More Read more about Exclusive: Blue Star NBR CEO Calls on Trump Admin to Help Critical Glove Industry — or Rely on China

PwC: Identity compromise a supply chain for attackers

• identity
• supply-chain

PwC: Identity compromise a supply chain for attackers

SC Staff March 30, 2026

PwC's "Cyber threats in motion" report warns that AI is giving attackers added sophistication, speed, and scale,...

Read More Read more about PwC: Identity compromise a supply chain for attackers