Supply Chain

Software supply chain security and third-party risks.

Sophisticated Supply Chain Attack Discovered in Popular Python Packages

Security researchers have discovered a coordinated supply chain attack affecting multiple popular Python packages on PyPI, with backdoored versions downloaded over 500,000 times.

Linda Nakashima·May 17, 2026·5 min

Supply Chain

REvil Ransomware Hits Kaseya VSA in Massive Supply-Chain Attack

The REvil ransomware crew exploited a zero-day in Kaseya's VSA remote-management software to encrypt systems at an estimated 1,500 downstream businesses through approximately 60 managed service providers.

Michael Thornton·Jul 3, 2021·6 min