Episode

CCT 356: Supply Chain Attacks Are Exploding in 2026 — Here's What the NCSC Wants You to Do

Podcast

CISSP Cyber Training Podcast - CISSP Training Program

Published

Jun 8, 2026

Duration seconds

2498

Processing state

not_requested

Canonical source

https://www.buzzsprout.com/2167626/episodes/19311978-cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do.mp3

Audio

https://www.buzzsprout.com/2167626/episodes/19311978-cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do.mp3

JSON

/v1/public/podcasts/cissp-cyber-training-podcast-cissp-training-program-6068495/episodes/cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do

Markdown

/podcast/cissp-cyber-training-podcast-cissp-training-program-6068495/cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do.md

Actions

• POST https://stenobird.com/v1/public/podcasts/cissp-cyber-training-podcast-cissp-training-program-6068495/episodes/cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do/transcription-requests
  Idempotently request low-priority transcript generation for this episode.
• GET https://stenobird.com/podcast/cissp-cyber-training-podcast-cissp-training-program-6068495/cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do.md
  Read the agent-friendly Markdown representation of this episode resource.

Summary

Send us Fan Mail Your software is only as trustworthy as the dependencies you quietly inherit and attackers know it. Today I break down the NCSC warning on software supply chain security and why open source package ecosystems have become a high-value target for real-world compromises that spread fast through CI/CD pipelines. I walk through the attack patterns that keep showing up in incidents: maintainer account compromise, expired domain takeover, typosquatting, and credential chaining. We ...