‘Next-gen’ supply chain attacks are up 430% in the past year, Sonatype report says. Attackers are increasingly getting proactive by infiltrating open source projects with compromised components. The most recent example of a next-gen software supply chain attack was discovered lurking on GitHub in May. Researchers found a piece of malware called Octopus Scanner that targeted users involved in developing NetBeans projects. It followed closely on the heels of an attack found this spring by researchers with ReversingLabs that used a typosquatting approach.”]