Daily Security Review
Trailer
Bonus
Episode 37
Season 1
Inside Security News : GitHub Supply Chain Attacks, Ransomware Defense, and Cloud Security
In this deep-dive episode, we untangle some of today’s most critical cybersecurity threats—from GitHub’s complex quadruple supply chain attack to the rising concerns over Kubernetes vulnerabilities and serious flaws in Next.js. 🧠💻
We kick things off with an inside look at StoneFly’s robust approach to data protection, from immutable air-gapped backups to ransomware-resistant infrastructure. Then, we unpack how a simple GitHub token compromise spiraled into a four-level attack chain targeting high-profile companies like Coinbase.
🔐 Key Takeaways:
- What went wrong in the GitHub supply chain exploit
- The anatomy of ransomware-resilient data infrastructure
- The critical importance of immutable storage and commit hash pinning
- Breaking down Kubernetes’ “Ingress Nightmare” and its real-world exploitation
- Why Next.js vulnerabilities could expose sensitive app data
Whether you're a developer, sysadmin, or cybersecurity enthusiast, this episode is a must-listen to stay ahead of the threat curve.