Sign up to save your podcasts
Or
Share Supply‑Chain Siege: Fake NPM Packages + the New AI Threat Landscape
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Supply‑Chain Siege: Fake NPM Packages + the New AI Threat Landscape
### 🔢 Episode Information
|-------|-------|
| **Title** | Supply‑Chain Siege: Fake NPM Packages + the New AI Threat Landscape |
| **Episode Number** | 3x31 |
| **Hosts** | Professor CyberRisk & Cyber Cowboy |
| **Guests** | None this episode |
---
### 👀 Overview
Attackers keep evolving their tactics, and defenders can stay one step ahead by tightening supply‑chain hygiene. In this episode we dive into:
1️⃣ The latest npm registry breach – 46,000 counterfeit packages flooding the ecosystem.
2️⃣ Four support stories that show how policy, data protection, visibility, and AI infrastructure are all part of the same threat matrix.
---
### 🗣️ Topics Covered
- **npm Supply‑Chain Attack** – How a worm‑like spam operation can compromise millions of projects.
- **Policy & Vendor Risk** – EU’s ban on Huawei/ZTE as a real‑world example of hardware risk management.
- **Data Resilience** – IBM Safeguarded Copy and immutable snapshots for ransomware protection.
- **Visibility & Detection** – ThreatBook NDR’s top marks in Gartner Peer Insights™ 2025.
- **AI Infrastructure Hardening** – Microsoft’s Atlanta AI “Super Factory” and what it means for zero‑trust architecture.
---
| Title | URL |
|-------|-----|
| **Bitdefender Threat Map** | https://threatmap.bitdefender.com/ |
| **Checkpoint Live Cyber Threat Map** | https://threatmap.checkpoint.com/ |
| **Kaspersky Cyber Threat Map** | https://cybermap.kaspersky.com/ |
| **Talos Intelligence – ebc_spam Map** | https://talosintelligence.com/ebc_spam |
---
### 📚 Resources & Links
- **npm audit guide:** https://docs.npmjs.com/cli/npm-audit
- **Snyk dependency‑monitoring:** https://snyk.io/
- **IBM Safeguarded Copy whitepaper** – (link provided in episode)
- **ThreatBook NDR product page** – https://threatbook.ai/nrd
---
### 🚀 Call to Action
1. **Subscribe**: Stay updated on the latest cybersecurity threats.
2. **Leave a Review**: Let us know what you think.
3. **Join the Conversation**: Follow our community and ask questions.
---
### 🎙 Sponsor (if applicable)
> No sponsors this episode
---
### 📲 Podcast Socials & Website
| Platform | Link |
|----------|------|
| **Website** | https://www.youvealreadybeenhacked.com |
| **X** | @professorcyberrisk |
| **YouTube** | https://www.youtube.com/@YABHPodcast |
| **Discord/Community Forum** | https://discord.gg/cz3xdsrqAE
View all episodes
By Professor CyberRisk
5
44 ratings
### 🔢 Episode Information
|-------|-------|
| **Title** | Supply‑Chain Siege: Fake NPM Packages + the New AI Threat Landscape |
| **Episode Number** | 3x31 |
| **Hosts** | Professor CyberRisk & Cyber Cowboy |
| **Guests** | None this episode |
---
### 👀 Overview
Attackers keep evolving their tactics, and defenders can stay one step ahead by tightening supply‑chain hygiene. In this episode we dive into:
1️⃣ The latest npm registry breach – 46,000 counterfeit packages flooding the ecosystem.
2️⃣ Four support stories that show how policy, data protection, visibility, and AI infrastructure are all part of the same threat matrix.
---
### 🗣️ Topics Covered
- **npm Supply‑Chain Attack** – How a worm‑like spam operation can compromise millions of projects.
- **Policy & Vendor Risk** – EU’s ban on Huawei/ZTE as a real‑world example of hardware risk management.
- **Data Resilience** – IBM Safeguarded Copy and immutable snapshots for ransomware protection.
- **Visibility & Detection** – ThreatBook NDR’s top marks in Gartner Peer Insights™ 2025.
- **AI Infrastructure Hardening** – Microsoft’s Atlanta AI “Super Factory” and what it means for zero‑trust architecture.
---
| Title | URL |
|-------|-----|
| **Bitdefender Threat Map** | https://threatmap.bitdefender.com/ |
| **Checkpoint Live Cyber Threat Map** | https://threatmap.checkpoint.com/ |
| **Kaspersky Cyber Threat Map** | https://cybermap.kaspersky.com/ |
| **Talos Intelligence – ebc_spam Map** | https://talosintelligence.com/ebc_spam |
---
### 📚 Resources & Links
- **npm audit guide:** https://docs.npmjs.com/cli/npm-audit
- **Snyk dependency‑monitoring:** https://snyk.io/
- **IBM Safeguarded Copy whitepaper** – (link provided in episode)
- **ThreatBook NDR product page** – https://threatbook.ai/nrd
---
### 🚀 Call to Action
1. **Subscribe**: Stay updated on the latest cybersecurity threats.
2. **Leave a Review**: Let us know what you think.
3. **Join the Conversation**: Follow our community and ask questions.
---
### 🎙 Sponsor (if applicable)
> No sponsors this episode
---
### 📲 Podcast Socials & Website
| Platform | Link |
|----------|------|
| **Website** | https://www.youvealreadybeenhacked.com |
| **X** | @professorcyberrisk |
| **YouTube** | https://www.youtube.com/@YABHPodcast |
| **Discord/Community Forum** | https://discord.gg/cz3xdsrqAE