In a three-week span in the spring of 2026, the security landscape shifted. Three distinct threat actors, including a North Korean state-sponsored operator launched Tier-1 supply chain attacks against widely trusted software: LiteLLM (AI infrastructure), Axios (the most downloaded JavaScript HTTP client), and CPU-Z (a trusted system utility). No perimeter was breached. The attack arrived through trusted software organizations had already approved. This is the attack vector boards need to understand: sophisticated adversaries are targeting dependencies, not defenses. Trusted software is now the weapon. The board-level question that follows is: what is our maximum probable loss if a dependency in our build pipeline is weaponized against us? Most organizations cannot answer that today.
Barry-Wehmiller transformed its global security operations with SentinelOne, achieving autonomous protection, deep visibility, and seamless integration across endpoints, identities, and infrastructure. By leveraging AI-driven detection, hyperautomation, and managed MDR services, the team reduced alert noise by 99% and shifted from manual triage to real-time, automated response. The result is faster threat containment, improved operational efficiency, and a scalable security strategy that supports global business continuity.
In this exclusive Anatomy of an Attack webinar, experts from Arete, AWS, Cloudflare, SHI, and SentinelOne walk you through the technical details of a real security incident from the front lines of a retail environment.
In this session, we’ll examine why legacy, acquisition-driven platforms create visibility gaps and hidden costs—and how a truly unified, cloud-native approach delivers better outcomes for security teams and end users alike.