Build Application Firewalls Aim to Stop the Next Supply Chain Attack

Monday, May 11, 2026 at 02:06 PM UTC·Source: SecurityWeek

Updated: Monday, May 11, 2026 at 03:00 PM UTC

Executive Summary

Rather than scanning code alone, Build Application Firewalls inspect runtime behavior inside the software build pipeline. The post Build Application Firewalls Aim to Stop the Next Supply Chain Attack appeared first on SecurityWeek .

Analysis

Source Attribution

Originally published by SecurityWeek on May 11, 2026.

Related Threats

MEDIUMSupply Chain

TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain Attack

Checkmarx has confirmed that a modified version of the Jenkins AST plugin was published to the Jenkins Marketplace. "If you are using Checkmarx Jenkins AST plugin, you need to ensure that you are using the version 2.0.13-829.vc72453fa_1c16 that was published on December 17, 2025 or previously," the cybersecurity company said in a statement over the weekend. As of writing, Checkmarx has released

2h agoThe Hacker News

LOWSupply Chain

Malicious Hugging Face model masquerading as OpenAI release hits 244K downloads

A malicious Hugging Face repository posing as an OpenAI release delivered infostealer malware to Windows systems and logged 244,000 downloads before being removed, raising fresh concerns about how enterprises source and validate AI models from public repositories. The repository, named Open-OSS/privacy-filter, impersonated OpenAI’s legitimate Privacy Filter release, copied its model card almost wo

9h agoCSO Online

MEDIUMSupply Chain

Checkmarx Jenkins AST Plugin Compromised in Supply Chain Attack

A malicious version of the plugin was published to the Jenkins Marketplace late last week. The post Checkmarx Jenkins AST Plugin Compromised in Supply Chain Attack appeared first on SecurityWeek .

11h agoSecurityWeek