SecurityWeek1h
Popular GitHub Action Targeted in Supply Chain Attack
The tj-actions/changed-files GitHub Action, which is used in 23,000 repositories, has been targeted in a supply chain attack.
Infosecurity Magazine1h
tj-actions Supply Chain Attack Exposes 23,000 Organizations
Over 23,000 organizations unwittingly had their secrets exposed over the weekend after threat actors managed to compromise a ...
Opinion
Techish2hOpinion
Opinion: How Cybercriminals Exploit Supply Chains to Bypass Security
Cybercriminals exploit weak supply chain links using AI, open-source flaws, and social engineering. Zero Trust, MFA, and regulations enhance protection.
STAT2h
HIPAA can’t keep up with health care’s security crisis
While organizations invest millions in advanced medical technologies, their approach to protecting sensitive data remains ...
CSO Online3h
AI development pipeline attacks expand CISOs’ software supply chain risk
Malicious campaigns targeting code used by developers of AI applications underscore the need to develop comprehensive ...
SupplyChainBrain7h
Electronics Supply Chain: Adapt or Be Left Behind
In 2025, the electronics supply chain faces unprecedented disruption and transformation. Rapidly evolving geopolitical ...
Supply-chain attack exposing credentials affects 23K users of tj-actions
Open-source software used by more than 23,000 organizations, some of them in large enterprises, was compromised with credential-stealing code after attackers gained unauthorized access to a maintainer ...
Northvolt files for bankruptcy in Sweden after failing to secure funding
Swedish battery manufacturer Northvolt filed for bankruptcy on 12 March 2025, bringing an abrupt end to a company once seen ...