Security News > 2023 > October > Software Supply Chain Security Attacks Up 200%: New Sonatype Research
Sonatype's 9th annual State of the Software Supply Chain also covers regulations and how AI could help developers protect organizations from security risks.
Attacks on software supply chains increased dramatically in 2023, with an increase of 200% compared to 2022, according to Sonatype's new report.
This research from Sonatype, a U.S.-based company specializing in software supply chain management and security, also covers developers' challenges and the possible benefits to using AI security solutions.
According to Sonatype's report, 2022 saw a massive increase of malicious attacks on the open source software supply chain, which has kept growing in 2023.
Sonatype's research is in line with the European Union Agency for Cybersecurity's reporting in late 2022 that the compromise of software supply chains through software dependencies is the number one emerging threat.
Software supply chain security is complex and is impacted by various factors.
News URL
https://www.techrepublic.com/article/sonatype-state-software-supply-chain-security/
Related news
- Google Adds New Pixel Security Features to Block 2G Exploits and Baseband Attacks (source)
- WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks (source)
- Supply Chain Attacks Can Exploit Entry Points in Python, npm, and Open-Source Ecosystems (source)
- EDRSilencer red team tool used in attacks to bypass security (source)
- ISC2 Security Congress 2024: The Landscape of Nation-State Cyber Attacks (source)
- LottieFiles hit in npm supply chain attack targeting users' crypto (source)
- LottieFiles hacked in supply chain attack to steal users’ crypto (source)
- LottieFiles supply chain attack exposes users to malicious crypto wallet drainer (source)
- Stop LUCR-3 Attacks: Learn Key Identity Security Tactics in This Expert Webinar (source)
- T-Mobile US 'monitoring' China's 'industry-wide attack' amid fresh security breach fears (source)