惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Stack Overflow Blog
Stack Overflow Blog
酷 壳 – CoolShell
酷 壳 – CoolShell
P
Proofpoint News Feed
Apple Machine Learning Research
Apple Machine Learning Research
T
Tailwind CSS Blog
罗磊的独立博客
F
Future of Privacy Forum
The Register - Security
The Register - Security
MyScale Blog
MyScale Blog
P
Privacy & Cybersecurity Law Blog
V
Visual Studio Blog
T
Tenable Blog
F
Fortinet All Blogs
D
Docker
V
Vulnerabilities – Threatpost
Cyberwarzone
Cyberwarzone
A
Arctic Wolf
T
Threat Research - Cisco Blogs
I
Intezer
T
Tor Project blog
大猫的无限游戏
大猫的无限游戏
MongoDB | Blog
MongoDB | Blog
博客园 - 司徒正美
AWS News Blog
AWS News Blog
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
G
GRAHAM CLULEY
T
Threatpost
美团技术团队
K
Kaspersky official blog
F
Fox-IT International blog
Hugging Face - Blog
Hugging Face - Blog
Vercel News
Vercel News
P
Palo Alto Networks Blog
Google DeepMind News
Google DeepMind News
T
The Blog of Author Tim Ferriss
S
Schneier on Security
腾讯CDC
Cisco Talos Blog
Cisco Talos Blog
C
Check Point Blog
博客园 - 叶小钗
I
InfoQ
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Blog — PlanetScale
Blog — PlanetScale
F
Full Disclosure
T
True Tiger Recordings
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
E
Exploit-DB.com RSS Feed
L
LINUX DO - 热门话题
J
Java Code Geeks
C
CERT Recently Published Vulnerability Notes

Risky Business Media

Risky Bulletin: Mythos has found thousands of critical bugs Sponsored: Teaching AI agents the rules of the road Risky Bulletin: Microsoft ends SMS MFA for personal accounts How the CopyFail disclosure went sideways Srsly Risky Biz: Politicians ditch Signal for homegrown apps Risky Business #838 -- GitHub investigates possible breach Risky Bulletin: Microsoft takes down crime SaaS used by ransomware gangs Between Two Nerds: Russia's hacker university NCSC’s Ollie Whitehouse on surviving the "bugpocalypse" Risky Bulletin: Indonesia emerges as a new hub for cyber scams Sponsored: Push Security goes AI threat hunting in browser telemetry Soap Box: Where does AI fit into cloud security? Risky Bulletin: Shai-Hulud goes open-source Srsly Risky Biz: The AI Regulation Knife Fight Risky Bulletin: Damaging worm rips through npm ecosystem Risky Business #837 -- GitHub Actions footgun claims TanStack What a great agentic AI deployment plan looks like Between Two Nerds: The AI-first crime gang Risky Bulletin: FCC relaxes foreign router security patch ban Sponsored: Knocknoc built a Greynoise integration Mythos smythos! How to find 0day with lesser models Risky Bulletin: State sponsored group exploits Palo 0day Srsly Risky Biz: After Mythos, US government weighs AI regulation Risky Bulletin: Targeted supply chain attack hits DAEMON Tools Risky Business #836 -- You can't patch the bugpocalypse Between Two Nerds: The wild wild west Solving the AI agent identity problem Risky Bulletin: DigiCert hacked with a malicious screensaver file Sponsored: James Kettle built an AI hacker Risky Bulletin: cPanel auth bypass exploited in wild Snake Oilers: Ent AI, Spacewalk and Mondoo Srsly Risky Biz: US Vows to Fight Distillation Attacks Risky Business #835 -- Why the Fast16 malware is badass A deep dive on AI model distillation attacks Risky Bulletin: Ukrainians hacked Russian satellite comms platform Between Two Nerds: Hackers from the future Risky Bulletin: New fingerprinting technique can track Tor users Sponsored: RunZero accidentally got good at OT Risky Bulletin: Sean Plankey withdraws CISA nomination Feature Interview: Nicholas Carlini, Anthropic Srsly Risky Biz: Musk snubs French authorities Risky Business #834 -- Vercel gets owned, Mozilla dumps hundreds of Mythos bugs Risky Bulletin: Former FBI official calls for terrorism designations for ransomware groups that target hospitals Between Two Nerds: AI as the mythical 10x hacker Risky Bulletin: ShinyHunters claim credit for Vercel hack A builder's perspective on Mythos and frontier models Sponsored: Nebulock on hunting shadow AI Risky Bulletin: NIST gives up enriching most CVEs Mythos and 0day: Fixing exploits is not safety Srsly Risky Biz: Time to ban sale of precise geolocation data Risky Bulletin: Malicious LLM proxy routers found in the wild Risky Business #833 -- The Great Mythos Freakout of 2026 Between Two Nerds: How AI will upset state cyber competition Mythos and 0day: A hacker’s perspective Risky Bulletin: France takes first steps to ditch Windows for Linux Sponsored: Corelight Agentic Triage helps defenders stay ahead Risky Bulletin: FBI extracted Signal chats from iPhone notifications logs Snake Oilers: Burp AI, Sondera and Truffle Security Srsly Risky Biz: American diplomats to fight foreign propaganda... on X Risky Bulletin: Cybercrime losses passed $20 billion last year What happens after North Korea infiltrates? Risky Business #832 -- Anthropic unveils magical 0day computer God Between Two Nerds: Make cyber, not war Risky Bulletin: New Cambodian law will put scam compound operators in prison for life Sponsored: Application allowlisting, but not as you know it Why CISOs need to be more flexible in the AI era
How to survive supply chain attacks
2026-05-25 · via Risky Business Media

Risky Business Features Podcast

May 25, 2026

Presented by

James Wilson

James Wilson

Technology Editor

In this podcast James Wilson chats with Brad Arkin about why software supply chain attacks have gone from rare, once-in-a-while disasters to an operational problem affecting mainstream enterprises almost daily.

AI has made attackers faster, and “vibe coding” means the number of environments pulling packages from the internet has gone to the moon. It also means legacy tooling that seeks out the bad packages and cleans them up isn’t enough. Package cooldown windows won’t fix this either.

But all hope is not lost! Tune in to this podcast to find out how you can get a grip on the disaster de jour!

How to survive supply chain attacks

0:00 / 36:51

Subscribe  

Logo

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。