# CCT 356: Supply Chain Attacks Are Exploding in 2026 — Here's What the NCSC Wants You to Do Page: https://stenobird.com/podcast/cissp-cyber-training-podcast-cissp-training-program-6068495/cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do Text version: https://stenobird.com/podcast/cissp-cyber-training-podcast-cissp-training-program-6068495/cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do.md Podcast: [CISSP Cyber Training Podcast - CISSP Training Program](https://stenobird.com/podcast/cissp-cyber-training-podcast-cissp-training-program-6068495) Published: 2026-06-08T11:00:00+00:00 Episode link: https://www.buzzsprout.com/2167626/episodes/19311978-cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do.mp3 Audio file: https://www.buzzsprout.com/2167626/episodes/19311978-cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do.mp3 Processing state: not_requested JSON: https://stenobird.com/v1/public/podcasts/cissp-cyber-training-podcast-cissp-training-program-6068495/episodes/cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do Duration seconds: 2498 ## Resource Send us Fan Mail Your software is only as trustworthy as the dependencies you quietly inherit and attackers know it. Today I break down the NCSC warning on software supply chain security and why open source package ecosystems have become a high-value target for real-world compromises that spread fast through CI/CD pipelines. I walk through the attack patterns that keep showing up in incidents: maintainer account compromise, expired domain takeover, typosquatting, and credential chaining. We ... ## Actions - request_transcript: `POST https://stenobird.com/v1/public/podcasts/cissp-cyber-training-podcast-cissp-training-program-6068495/episodes/cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do/transcription-requests` — Idempotently request low-priority transcript generation for this episode. - read_markdown: `GET https://stenobird.com/podcast/cissp-cyber-training-podcast-cissp-training-program-6068495/cct-356-supply-chain-attacks-are-exploding-in-2026-here-s-what-the-ncsc-wants-you-to-do.md` — Read the agent-friendly Markdown representation of this episode resource. A page view does not enqueue transcription. Agents should invoke `request_transcript` explicitly when they need this episode processed. ## Transcript Full transcripts are not published on public pages unless there is a clear rights basis.