Canvas, Trellix, Mini Shai-Hulud: How Defenders Respond When Supply Chain Attacks Become Weekly
Show notes
What's driving the surge in weekly supply chain attacks, and why does the real defender problem start after the supplier gets hit? With 275 million records exposed and 8,809 institutions caught in the downstream fallout, organizations need a new playbook.
Join hosts Alexandra and John as they discuss:
- How ShinyHunters abused admin sessions
- RansomHouse's hypervisor-focused automation
- How Mini Shai-Hulud compromised 170+ npm packages
Two questions your organization should be asking right now:
- Do you have visibility into how trusted vendors authenticate, export, and move your data through native platform features?
- Are your software pipelines protected against poisoned packages and unauthorized publishing activity in real time?
Resources: https://linktr.ee/ReliaQuestShadowTalk
John Dilgen: Cyber Threat Intelligence Analyst at ReliaQuest, where he specializes in researching cyber threats impacting ReliaQuest customers. With a strong technical background, he previously served as an Incident Response Analyst and Trainer at ReliaQuest.
Alexandra Moore: Manager of Threat Intelligence at ReliaQuest, where she leads intelligence analysis and customer dissemination to help organizations understand and respond to emerging cyber threats. Prior to this, she established and scaled monitoring across Russian-language cybercriminal platforms at Digital Shadows, building collection and analytical coverage to support digital risk protection capabilities.