Supply Chain Attack is a kind of cyber attack that targets trusted 3rd parties, and
1. Statistics
According Kaspersky, 31% of enterprise business had been impacted by a supply chain attack in 2025.
2. Remarkable incidents (ordered by date)
2.3. 2026
-
https://notepad-plus-plus.org/news/hijacked-incident-info-update/[Notepad Hijacked by State-Sponsored Hackers] - Notepad
3. See Also
-
A Javascript package called
left-padwas a package with 11 lines of code suddenly took down from NPM in March 2016, which occured failure of building software all around the world. It included Meta, PayPal, and Netflix.-
This is the incident called left-pad incident.
-
This is not a case of Supply Chain Attack, but it is considered one of the biggest events shows what happens if the trusted 3rd party become unaccessible or sometimes infected.
-
The developer Azer Koรงulu wrote an essay about the incident on his blog. (Internet Archive)
-