BestHub
Sign in
Tag

Supply chain attack

1 views collected around this technical thread.

AntTech
AntTech
Jun 16, 2025 · Information Security

Uncovering New Attack Vectors in Model Context Protocols: Risks and Defenses

A comprehensive study reveals that Model Context Protocol (MCP) platforms lack strict vetting, users struggle to detect malicious servers, and current large language models cannot effectively resist MCP‑level injection attacks, highlighting critical security challenges and proposing mitigation strategies.

Information SecurityLLM securityMCP
0 likes · 11 min read
Uncovering New Attack Vectors in Model Context Protocols: Risks and Defenses
Code Mala Tang
Code Mala Tang
Dec 19, 2024 · Information Security

How a Supply‑Chain Attack Compromised Vant and Rspack – Frontend Security Lessons

A recent supply‑chain poisoning incident injected malicious post‑install scripts into the popular Vant component library and Rspack build tool, stealing cloud credentials and mining Monero, prompting developers to upgrade to safe versions and reconsider npm dependency risks.

RspackSupply chain attackVant
0 likes · 5 min read
How a Supply‑Chain Attack Compromised Vant and Rspack – Frontend Security Lessons
Code Mala Tang
Code Mala Tang
Jun 28, 2024 · Information Security

What Happened When a Polyfill CDN Was Hijacked? Lessons for Secure Web Development

A June 2024 security breach compromised a popular JavaScript polyfill CDN, injecting malicious code that redirected over 100,000 sites, prompting warnings from Google and GitHub and highlighting best practices for protecting web applications from CDN‑based supply‑chain attacks.

CDNInformation SecuritySecurity
0 likes · 6 min read
What Happened When a Polyfill CDN Was Hijacked? Lessons for Secure Web Development