In 2024, an attempted supply chain attack on the XZ-utils compression library occurred, which utilized a 'benevolent stranger' playbook involving long-term social engineering to gain trust within the project.

Authors

• Person: Not available Organization: Sonatype
  State of the Software Supply Chain Report | 10 Year Look - Sonatype

Sources

• State of the Software Supply Chain Report | 10 Year Look - Sonatype www.sonatype.com Sonatype via serper

Referenced by nodes (1)

• social engineering concept