Explore the evolving landscape of open source supply chain attacks in this 42-minute Linux Foundation conference talk. Dive into automated threat detection processes and discover open source tools for identifying malicious packages at scale. Examine the RED LILI attack, involving over 1,500 malicious packages from a single threat actor, and learn about the infrastructure required for such large-scale operations. Investigate the UA-Parser incident, where a legitimate account was compromised, and understand the tactics, techniques, and procedures used in account takeovers. Learn about Chain Alert, a free service for the open-source community to warn against these attacks. Analyze the "Protestware" phenomenon, exemplified by the node-ipc package incident targeting Russian and Belarusian IP addresses. Gain insights into attacker evolution, identity theft, and the trust paradox in open source software. Understand the critical nature of open source and the need for a mindset shift in addressing these security challenges.
Tracking Attackers in Open Source Supply Chain Attacks - The New Frontier
Overview
Syllabus
Introduction
Whats the problem
Open Source is Critical
Identity Theft
Attackers Targeting Open Source
Rhetoric Question
Attackers evolving
Cuteboy
Wrong Package
Package Lab
Metadata
The Trust Paradox
Change the Mindset
Summary
Taught by
Linux Foundation
Tags
Related Courses
-
Nation-State Threats in the Open-Source Software Supply Chain
-
Open Source Supply Chain Threat Landscape - A Moving Target
-
Supply Chain Attacks - Focusing on NPM Vulnerabilities and Defenses
-
Bad Actors vs Our Community - Detecting Software Supply Chain Attacks
-
Securing the Unseen: Defending Against Open Source Software Supply Chain Attacks
-
Supply Chain Armoring: Tools and Techniques for Open Source Projects
