Tag

Supply Chain Security

All articles tagged with #supply chain security

security16 days ago•3 min saved

Fake OpenAI Privacy Filter Repo Delivers Windows Infostealer on Hugging Face

A clone of OpenAI's Privacy Filter on Hugging Face impersonated the legitimate model to distribute a Windows infostealer via a loader that downloads payloads through Base64, JSON Keeper, and PowerShell, then sets up a one-shot scheduled task to run the final malware and exfiltrate data (screenshots, crypto wallets, browser data) to a remote domain while attempting to evade detection by disabling AMSI/ETW; the repo peaked at #1 with about 244,000 downloads before being disabled, and researchers link it to similar loaders and ValleyRAT-related campaigns targeting open-source ecosystems.

via The Hacker News|

#huggingface #infostealer #malware

business1 month ago•4 min saved

US-backed rare-earth group seals $2.8bn Brazil deal to secure supply chain

USA Rare Earth will acquire Serra Verde in Goiás, Brazil, for $2.8 billion in a cash-and-stock deal, creating a fully integrated rare-earths platform in the US; Serra Verde is expected to account for about half of heavy rare earths outside China by 2027, underscoring Washington’s push to diversify critical minerals away from China.

via Financial Times|

#brazil #business #mining

security6 months ago•2 min saved

Major React Native Security Flaws Endanger Millions of Developers

A critical security vulnerability in the '@react-native-community/cli' npm package, affecting millions of developers, allowed remote attackers to execute arbitrary OS commands via the Metro development server. The flaw, tracked as CVE-2025-11953 with a CVSS score of 9.8, has been patched in version 20.0.0, highlighting the importance of security scanning in the software supply chain.

via The Hacker News|

#cve-2025-11953 #react-native #remote-attack

world7 months ago•5 min saved

Trump Strengthens US-Japan Alliance and Secures Rare Earths Supply

The US and Japan have established a framework to enhance cooperation in securing the supply of critical minerals and rare earths through joint investments, project development, regulatory streamlining, and international collaboration, aiming to strengthen their supply chains and support advanced technologies.

via The White House (.gov)|

#critical-minerals #mining-and-processing #rare-earths

world7 months ago•4 min saved

U.S. and Australia Strengthen Critical Minerals Ties with New Agreements

The US and Australia have established a framework to enhance cooperation and investment in securing the supply of critical minerals and rare earths vital for technology and defense industries, including joint project identification, financing, permitting reforms, and establishing a rapid response group to address supply vulnerabilities.

via The White House (.gov)|

#critical-minerals #mining-investment #rare-earths