Technology’s “Upside Down”? Software Supply Chain

The article summarizes ReversingLabs' 2026 Software Supply Chain Security Report, warning that supply chain attacks surged in 2025 — notably a 73% rise in malicious open-source packages (predominantly npm), ~50,000 exposed developer secrets, compromises of widely-used maintainer accounts and packages with billions of downloads, and increased abuse of CI/CD, signing, and dependency mechanisms; it calls for stronger continuous monitoring, SBOMs, MFA/publisher trust, and coordinated defenses across industry and regulators.