Contents
1. Software Suppy Chain Attacks
https://www.dni.gov/files/NCSC/documents/supplychain/Software_Supply_Chain_Attacks.pdf
https://www.sonatype.com/resources/software-supply-chain-management-an-introduction
https://docs.microsoft.com/en-us/microsoft-365/security/intelligence/supply-chain-malware
Supply chain attacks are an emerging kind of threat that target software developers and suppliers. The goal is to access source codes, build processes, or update mechanisms by infecting legitimate apps to distribute malware.