#supply-chain — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #supply-chain, aggregated by home.social.
-
Wonder how the Medline fire will impact healthcare here in California... major supplier of surgical instruments and medical supplies.
https://www.theguardian.com/us-news/2026/jun/12/fire-california-warehouse-complex-evacuations
-
Wonder how the Medline fire will impact healthcare here in California... major supplier of surgical instruments and medical supplies.
https://www.theguardian.com/us-news/2026/jun/12/fire-california-warehouse-complex-evacuations
-
[#TRADESHOW] #China #Ningbo #International #Auto #Parts and #Aftermarket #Fair (#CAPAFAIR) 2026 from August 12 to 14, 2026, at Ningbo International #Convention and #Exhibition #Center. #Event serves as a major #B2B #business #sourcing #platform for #global #buyers, #importers, #exporters, and #SupplyChain professionals. Fair brings together #manufacturers, #industrial clusters, and service #providers across the full #automotive supply chain. https://cnbusinessforum.com/event/china-ningbo-international-auto-parts-and-aftermarket-fair-capafair-2026/
-
[#TRADESHOW] #China #Ningbo #International #Auto #Parts and #Aftermarket #Fair (#CAPAFAIR) 2026 from August 12 to 14, 2026, at Ningbo International #Convention and #Exhibition #Center. #Event serves as a major #B2B #business #sourcing #platform for #global #buyers, #importers, #exporters, and #SupplyChain professionals. Fair brings together #manufacturers, #industrial clusters, and service #providers across the full #automotive supply chain. https://cnbusinessforum.com/event/china-ningbo-international-auto-parts-and-aftermarket-fair-capafair-2026/
-
#Development #Releases
Upcoming breaking changes for npm · Version 12 tightens install defaults for security https://ilo.im/16dmos_____
#Npm #JavaScript #SupplyChain #Vulnerabilities #Security #GitHub #WebDev #Frontend #Backend -
#Development #Releases
Upcoming breaking changes for npm · Version 12 tightens install defaults for security https://ilo.im/16dmos_____
#Npm #JavaScript #SupplyChain #Vulnerabilities #Security #GitHub #WebDev #Frontend #Backend -
[#TRADESHOW] #CPHI & #PMEC #China 2026 from June 16 to 18, 2026, at the #Shanghai New #International #Expo #Center (#SNIEC). As #Asia’s leading #pharmaceutical #sourcing and #networking #platform, the #exhibition #event has more than 20 years of experience connecting #Chinese and international #pharma professionals. It serves as a key #meeting point for #innovation, #SupplyChain #collaboration, and #market expansion within the #global pharmaceutical #ecosystem. https://cnbusinessforum.com/event/cphi-pmec-china-2026/
-
[#TRADESHOW] #CPHI & #PMEC #China 2026 from June 16 to 18, 2026, at the #Shanghai New #International #Expo #Center (#SNIEC). As #Asia’s leading #pharmaceutical #sourcing and #networking #platform, the #exhibition #event has more than 20 years of experience connecting #Chinese and international #pharma professionals. It serves as a key #meeting point for #innovation, #SupplyChain #collaboration, and #market expansion within the #global pharmaceutical #ecosystem. https://cnbusinessforum.com/event/cphi-pmec-china-2026/
-
Fedora Account Compromise Raises AI Agent Supply Chain Concerns
「 Williamson updated the thread, reporting that Giovannini claimed his credentials had been compromised and denied involvement with the AI system. Williamson advised treating all actions by the account with suspicion and said he would continue to review Bugzilla history and related upstream pull requests more closely. 」
https://linuxiac.com/fedora-account-compromise-raises-ai-agent-supply-chain-concerns/
-
Fedora Account Compromise Raises AI Agent Supply Chain Concerns
「 Williamson updated the thread, reporting that Giovannini claimed his credentials had been compromised and denied involvement with the AI system. Williamson advised treating all actions by the account with suspicion and said he would continue to review Bugzilla history and related upstream pull requests more closely. 」
https://linuxiac.com/fedora-account-compromise-raises-ai-agent-supply-chain-concerns/
-
US Arms Sales to Europe Hit by Delivery Delays
European countries are facing a frustrating dilemma: they're being urged to boost defense spending, but when they try to purchase US arms, they're met with lengthy and uncertain delivery timelines, sometimes as far off as 2029-2030. This has led some, like Poland, to look elsewhere, such as to the Korean defense industry, for quicker solutions.
-
📰 AI Agent 'Skills' Pose Major Supply Chain Risk; New Audit Tool Finds 80% Deviate from Declared Behavior
⚠️ New AI Supply Chain Risk! 80% of AI agent 'skills' deviate from their promises, with 5% hiding multi-stage attacks for credential theft & RCE. A new audit tool, BIV, exposes the threat. #AISecurity #SupplyChain #LLM
🌐 cyber[.]netsecops[.]io
-
📰 AI Agent 'Skills' Pose Major Supply Chain Risk; New Audit Tool Finds 80% Deviate from Declared Behavior
⚠️ New AI Supply Chain Risk! 80% of AI agent 'skills' deviate from their promises, with 5% hiding multi-stage attacks for credential theft & RCE. A new audit tool, BIV, exposes the threat. #AISecurity #SupplyChain #LLM
🌐 cyber[.]netsecops[.]io
-
Nimmt Arch haben sie gesagt! Das wird toll, haben sie gesagt! 🙄
Scheiß npm. Wer das erfunden hat, sollte sowieso ewig in die supply chain und dependency hell.
-
More than 30 Red Hat npm packages were backdoored in a supply-chain attack deploying Miasma malware to steal developer credentials, cloud secrets, SSH keys, and CI/CD tokens. 🔐
Researchers say the attack used a compromised GitHub account and npm publishing flows, underscoring risks in open-source supply chains. 📦#TechNews #RedHat #npm #GitHub #Miasma #ShaiHulud #SupplyChain #OpenSource #Cybersecurity #Infosec #Security #DevOps #Linux #Malware #Developers
-
More than 30 Red Hat npm packages were backdoored in a supply-chain attack deploying Miasma malware to steal developer credentials, cloud secrets, SSH keys, and CI/CD tokens. 🔐
Researchers say the attack used a compromised GitHub account and npm publishing flows, underscoring risks in open-source supply chains. 📦#TechNews #RedHat #npm #GitHub #Miasma #ShaiHulud #SupplyChain #OpenSource #Cybersecurity #Infosec #Security #DevOps #Linux #Malware #Developers
-
-
Arch supply chain attacks: Arch Linux has a popular package repository called AUR. It's a frequent target of attacks to inject malware, so KDE is going to stop including it
https://www.linux-magazine.com/Online/News/KDE-Linux-Drops-AUR
#supplychain #security #badtech #linux #arch #aur #kde #- -
Arch supply chain attacks: Arch Linux has a popular package repository called AUR. It's a frequent target of attacks to inject malware, so KDE is going to stop including it
https://www.linux-magazine.com/Online/News/KDE-Linux-Drops-AUR
#supplychain #security #badtech #linux #arch #aur #kde #- -
Security Tip: Transparency is key to supply chain security. 🛡️ Implement a Software Bill of Materials (SBOM) for your applications. An SBOM is a formal record of all components and dependencies used in your software. When a new vulnerability is discovered, an SBOM allows your team to instantly verify if you are affected, reducing response time from days to minutes. Learn more about tracking vulnerabilities at https://cvedatabase.com #SupplyChain #SBOM #CyberSecurity
-
Security Tip: Transparency is key to supply chain security. 🛡️ Implement a Software Bill of Materials (SBOM) for your applications. An SBOM is a formal record of all components and dependencies used in your software. When a new vulnerability is discovered, an SBOM allows your team to instantly verify if you are affected, reducing response time from days to minutes. Learn more about tracking vulnerabilities at https://cvedatabase.com #SupplyChain #SBOM #CyberSecurity
-
Supply chain attack su npm: 11 pacchetti malevoli con C2 blockchain colpiscono 2,7 milioni di download crypto
Cyfirma ha scoperto undici pacchetti npm malevoli che prendono di mira sviluppatori blockchain e Web3: il solo pacchetto moralis-sdk ha raggiunto 2,7 milioni di download. La campagna usa typosquatting, lifecycle hooks npm, furto di wallet crypto e — novità significativa — smart contract Ethereum come infrastruttura di comando e controllo. -
Supply chain attack su npm: 11 pacchetti malevoli con C2 blockchain colpiscono 2,7 milioni di download crypto
Cyfirma ha scoperto undici pacchetti npm malevoli che prendono di mira sviluppatori blockchain e Web3: il solo pacchetto moralis-sdk ha raggiunto 2,7 milioni di download. La campagna usa typosquatting, lifecycle hooks npm, furto di wallet crypto e — novità significativa — smart contract Ethereum come infrastruttura di comando e controllo. -
Il worm Miasma disabilita 73 repository Microsoft su GitHub in 105 secondi: supply chain attack prende di mira gli AI coding agent
Il worm Miasma, attribuito al gruppo TeamPCP, ha colpito le organizzazioni Azure e Microsoft su GitHub, piantando payload nei file di configurazione di Claude Code, Gemini CLI, Cursor e VS Code. GitHub ha disabilitato 73 repository in due ondate automatizzate in soli 105 secondi. -
Il worm Miasma disabilita 73 repository Microsoft su GitHub in 105 secondi: supply chain attack prende di mira gli AI coding agent
Il worm Miasma, attribuito al gruppo TeamPCP, ha colpito le organizzazioni Azure e Microsoft su GitHub, piantando payload nei file di configurazione di Claude Code, Gemini CLI, Cursor e VS Code. GitHub ha disabilitato 73 repository in due ondate automatizzate in soli 105 secondi. -
[#TRADESHOW] #China #Ningbo #International #Auto #Parts and #Aftermarket #Fair (#CAPAFAIR) 2026 from August 12 to 14, 2026, at Ningbo International #Convention and #Exhibition #Center. #Event serves as a major #B2B #business #sourcing #platform for #global #buyers, #importers, #exporters, and #SupplyChain professionals. Fair brings together #manufacturers, #industrial clusters, and service #providers across the full #automotive supply chain. https://cnbusinessforum.com/event/china-ningbo-international-auto-parts-and-aftermarket-fair-capafair-2026/
-
[#TRADESHOW] #China #Ningbo #International #Auto #Parts and #Aftermarket #Fair (#CAPAFAIR) 2026 from August 12 to 14, 2026, at Ningbo International #Convention and #Exhibition #Center. #Event serves as a major #B2B #business #sourcing #platform for #global #buyers, #importers, #exporters, and #SupplyChain professionals. Fair brings together #manufacturers, #industrial clusters, and service #providers across the full #automotive supply chain. https://cnbusinessforum.com/event/china-ningbo-international-auto-parts-and-aftermarket-fair-capafair-2026/
-
🛡️ Sicurezza nella Supply Chain, la rotta della geopolitica by Secsolution
Notizie, Tecnologie, Soluzioni, Approfondimenti, Formazione per i professionisti della security in Italia
#SovranitaTecnologica #sicurezzaOT #supplychain #protezioneperimetrale #formazioneNormativa -
Taiwan taucht in meinem Alltag erstaunlich oft auf.
Nicht als Schlagzeile. Nicht als Reiseziel.
Sondern als Teil von Lieferketten, Technologie und Diagnostik. Manchmal reicht ein Blick auf die Herkunft eines einzelnen Bauteils, um zu merken, wie eng unsere Welt inzwischen miteinander verbunden ist. -
Taiwan taucht in meinem Alltag erstaunlich oft auf.
Nicht als Schlagzeile. Nicht als Reiseziel.
Sondern als Teil von Lieferketten, Technologie und Diagnostik. Manchmal reicht ein Blick auf die Herkunft eines einzelnen Bauteils, um zu merken, wie eng unsere Welt inzwischen miteinander verbunden ist. -
If the projected harm is severe enough, the CFIB argued, a general strike should not be permitted to occur. The federation also called for greater ...#CanadaLabourCodeCLC #CanadianFederationofIndependentBusinessCFIB #supplychain
CFIB urges Ottawa to shield supply chains in Canada Labour Code reforms -
#Ruby Fights Supply-Chain Attacks With Filter Offering 'Cooldown' Before Installing New #Packages
#security #supplychain -
#Ruby Fights Supply-Chain Attacks With Filter Offering 'Cooldown' Before Installing New #Packages
#security #supplychain -
AI agents are now reading code and dependencies at scale, which means the landscape of supply chain risk has officially shifted 🛡️.
We are diving into why build time matters and how you can add a Snyk scan to your build hook on Upsun to keep things secure.
It is time to address what these fixes catch and where you still need to keep a watchful eye in this new AI era 💡
-
AI agents are now reading code and dependencies at scale, which means the landscape of supply chain risk has officially shifted 🛡️.
We are diving into why build time matters and how you can add a Snyk scan to your build hook on Upsun to keep things secure.
It is time to address what these fixes catch and where you still need to keep a watchful eye in this new AI era 💡
-
[#TRADESHOW] #CPHI & #PMEC #China 2026 from June 16 to 18, 2026, at the #Shanghai New #International #Expo #Center (#SNIEC). As #Asia’s leading #pharmaceutical #sourcing and #networking #platform, the #exhibition #event has more than 20 years of experience connecting #Chinese and international #pharma professionals. It serves as a key #meeting point for #innovation, #SupplyChain #collaboration, and #market expansion within the #global pharmaceutical #ecosystem. https://cnbusinessforum.com/event/cphi-pmec-china-2026/
-
[#TRADESHOW] #CPHI & #PMEC #China 2026 from June 16 to 18, 2026, at the #Shanghai New #International #Expo #Center (#SNIEC). As #Asia’s leading #pharmaceutical #sourcing and #networking #platform, the #exhibition #event has more than 20 years of experience connecting #Chinese and international #pharma professionals. It serves as a key #meeting point for #innovation, #SupplyChain #collaboration, and #market expansion within the #global pharmaceutical #ecosystem. https://cnbusinessforum.com/event/cphi-pmec-china-2026/
-
Cold chain logistics is evolving fast and last-mile delivery is at the center of it all.
AI routing. IoT temperature monitoring. Micro-fulfillment centers.
Discover how smart tech is solving the toughest delivery challenges in 2026.
https://www.sstechsystem.com/blog/last-mile-delivery-in-cold-chain-logistics/#ColdChain #LastMileDelivery #LogisticsTech #SupplyChain #ColdChainLogistics #AILogistics #RouteOptimization #TemperatureControl #SSTechSystem #FoodLogistics #PharmaLogistics #business #ITconsultancy
-
Il metallo dell'AI: stagno a +40% in sei mesi e il rally non è finito
https://www.metallirari.com/metallo-ai-stagno-piu-40-percento-sei-mesi-rally-non-finito/
Lo stagno ha guadagnato il 40% in sei mesi in Cina, spinto dalla domanda di server AI e semiconduttori avanzati. Analisi dei fattori di offerta e geopolitica che tengono i prezzi ai massimi storici.
#stagno #tin #intelligenzaartificiale #AI #materieprime #commodities #semiconduttori #prezzimaterie #metalliindustriali #supplychain #geopolitica #chipAI #metallistrategici -
Ich habe festgestellt, dass moderne Diagnostik, KI und Lieferketten viel enger miteinander verbunden sind, als ich dachte.
Wenn über KI gesprochen wird, reden viele über Modelle. Aber irgendwo dazwischen stehen Fabriken, Stromnetze, Logistik und Menschen. Und erstaunlich oft führt diese Spur irgendwann nach Taiwan.
#AI #Taiwan #SupplyChain #Tech #DigitalInfrastructure #Mastodon
-
Supply chain nel mirino: white paper Italsicurezza per aziende e specialisti: La sicurezza della supply chain e’ sempre piu’ centrale per la continuita’ operativa delle imprese. Centri logistici e magazzini rappresentano oggi infrastrutture strategiche,...
#sicurezza #supplychain #Italsicurezza #systemintegrator #security http://dlvr.it/TSybXJ
