Canvas, Trellix, Mini Shai-Hulud: How Defenders Respond When Supply Chain Attacks Become Weekly

Canvas, Trellix, Mini Shai-Hulud: How Defenders Respond When Supply Chain Attacks Become Weekly

From ShadowTalk: Powered by ReliaQuest by ReliaQuest

May 14, 2026 · 32 min

About this episode

The episode discusses the rise in supply chain attacks and the challenges defenders face after suppliers are compromised.

What's driving the surge in weekly supply chain attacks, and why does the real defender problem start after the supplier gets hit? With 275 million records exposed and 8,809 institutions caught in the downstream fallout, organizations need a new playbook. Join hosts Alexandra and John as they discuss: How ShinyHunters abused admin sessionsRansomHouse's hypervisor-focused automationHow Mini Shai-Hulud compromised 170+ npm packages Two questions your organization should be asking right now...

People in this episode

Hosts: Alexandra, John

Topics covered

  • supply chain attacks
  • cybersecurity
  • data exposure
  • defender challenges
  • automation in attacks
  • npm package security

Keywords

  • supply chain
  • cybersecurity
  • data breach
  • defenders
  • automation
  • npm packages
  • ShinyHunters
  • RansomHouse

Mentioned in this episode

Organizations: ShinyHunters, RansomHouse

Products: Mini Shai-Hulud

Places: npm

More episodes of ShadowTalk: Powered by ReliaQuest

Explore listener stats, chart rankings, contacts and more on the ShadowTalk: Powered by ReliaQuest podcast page.