TeamPCP's supply chain attack on Github (CanisterWorm) targeted Iran with a wiper, raising questions about the increasing risks of these attacks and their potential consequences (Steelman). The Checkmarx KICS GitHub Action compromise highlights the vulnerabilities in software supply chains, as malware was injected into all Git tags (Patterns detected: ARC-0024 Ambiguity, ARC-0043 Motte-and-Bailey). Apple's Safari bug and the new iOS exploit kit underscore the ongoing challenges in securing mobil...