2025 in Review: The Year Supply Chain Became the Attack Surface
2025 will be remembered for one dominant trend: attackers systematically targeted the connections between organizations rather than organizations themselves.
#supply-chain
3 articles
Red Hat GitLab Breach: When Consulting Artifacts Become Attack Blueprints
The Crimson Collective claimed 570GB from Red Hat's GitLab, including 800 Customer Engagement Reports with credentials, VPN configs, and infrastructure details for major enterprises.
Ransomware Hits Aviation: Third-Party Risk Goes Systemic
A ransomware attack on Collins Aerospace's MUSE system halted passenger processing at Heathrow, Brussels, and Berlin airports. One vendor, one attack, industry-wide disruption.