DevSec Station
DevSec Station is a security focused podcast for software developers who want to create amazing applications. Hosted by Tanya Janca, also known as SheHacksPurple, these short lessons will help you level up.
Episodes
3 episodes
NPM Supply Chain Attack: Active Worm Stealing Tokens, SSH Keys, and Credentials
🚨 Emergency DevSec Station update.There’s an active npm supply chain attack happening right now.Malicious npm packages are running install scripts that quietly steal: • SSH keys • AWS credentials ...
How Modern Supply Chain Attacks Really Happen (Step-by-Step Breakdown for Developers)
What if a supply chain attack didn’t start with a complex exploit… but something completely normal?A typo. A copy-paste. Even an AI suggestion.In this episode, Tanya Janca breaks down how modern supply ...
Developers Are Now Targets: How Supply Chain Attacks Actually Reach You
Developers are no longer just building software. They’re being targeted directly.In this episode, Tanya Janca explains how supply chain attacks reach developers through everyday tools, packages, and workflows.These...