A new class of supply chain attacks named 'slopsquatting' has emerged from the increased use of generative AI tools for coding and the model's tendency to "hallucinate" non-existent package names.

Fueled by the rise of artificial intelligence and its associated infrastructure, many technology ETFs have experienced ...

If anything, Trump's delay in some of his tariff plans is extending the uncertainty that has already begun to drag on business and consumer sentiment.

At Microsoft, we’ve worked with leading innovators across industries, helping them not just experiment with AI, but deploy it ...

All sessions from SecurityWeek’s 2025 Supply Chain & Third-Party Risk Security Summit are now available to view on demand. Enjoy this event as top security experts unpack the biggest software supply ...

KUALA LUMPUR, March 20 — Microsoft said its artificial intelligence (AI) infrastructure rollout in Malaysia remains on track despite concerns over potential disruptions in the supply of advanced AI ...

When bad code makes it into the software supply chain, the consequences can be deeply unpleasant – as was the case in several recent high-profile cases name-checked in the paper’s title: "Closing the ...

Despite the small number, the potential security repercussions are still significant as some repositories are very popular and could be used in further supply chain attacks. That said, owners of ...

“TSMC investing in the US provides for a substantial step up in our supply chain resilience ... Taiwan also faces an ever-present risk of earthquakes. “The most important thing is to ...

Worst supply chain attacks The paper, Closing the Chain: How to reduce your risk of being SolarWinds, log4J or XZ Utils, deals with three of the worst supply chain compromises in recent years ...

This document has been published in the Federal Register. Use the PDF linked in the document sidebar for the official electronic format.