LINK Note if you are a Service Provider, you are part of the Supply Chain to the many companies that you support.
LINK Today, November 8, 2021, a NIST call is happening about this. Might be interesting to join and listen in.
LINK UA-Parser-JS NPM library was hijacked and changed to infect millions of installers with cryptominers. If you use this library make sure you didnt get a recent one in the last week or two.
LINK CISA posted about Kaseya telling everyone using their VSA service needs to turn them OFF while they are investigating what rumors say is an internal Supply-Chain attack from Kaseya into select MSPs. Looks to be pushing out REvil ransomware