Skip to content

Chronicles of Compromise
Blog Posts

Chronicles of Compromise

Supply Chain Attacks

March 20, 2026

The XZ Utils Backdoor (2024)

In March 2024, a backdoor hidden in XZ Utils, an essential Linux compression tool, was discovered. The attacker, posing as a trusted contributor for over two years, exploited community trust to embed malicious code capable of compromising millions of servers. The operation highlights the increasing threat of supply chain attacks and the significance of vigilance…
Read more →
March 14, 2026

SolarWinds Supply Chain Attack (2020)

In early 2020, a routine software update for SolarWinds’ Orion contained hidden malware, SUNBURST, leading to a global cyber-espionage campaign. Discovered by FireEye in December 2020, the breach highlighted vulnerabilities in trust and supply chains, with attackers, linked to Russian intelligence, exploiting a single vendor to access numerous networks for strategic data gathering.
Read more →
March 6, 2026

NotPetya: The Cyber Attack That Wasn’t Ransomware

On June 27, 2017, the NotPetya cyber attack began in Ukraine, initially appearing as ransomware but ultimately functioning as wiper malware, aimed at destroying systems. Spreading globally, it disrupted major companies and caused over $10 billion in damages. The attack highlighted vulnerabilities in supply chains and the geopolitical implications of cyber warfare.
Read more →

Designed with WordPress

Subscribe Subscribed
- Chronicles of Compromise
- Already have a WordPress.com account? Log in now.