Hacker News with Generative AI: Supply Chain

Supply Chain Attacks on Linux Distributions (fenrisk.com)
Supply chain attacks have been a trendy topic in the past years. Rather than directly attacking their primary target, attackers infiltrate less secure assets, such as software depenencies, firmware, or service providers, to introduce malicious code. In turn, these components also have their own layers of dependencies, and we can start to understand why this becomes a very complex problem.

Security, Linux, Supply Chain, Cybersecurity

26 points by ramimac 15 days ago | 1 comments

Lack of copper, reliance on imports more critical to US than "rare earth" metals (npr.org)
In recent weeks, you've likely heard a lot about rare-earth substances, thanks to President Trump's stalled efforts to secure a minerals deal with Ukraine and his talk of annexing Greenland. These vital substances fuel the growing renewables and electric-vehicle industries. However, many experts warn that the shortage of another crucial metal, used in electronics, wiring and even plumbing could be just as concerning.

Copper, Metals, Mining, Politics, Supply Chain

24 points by ck2 18 days ago | 16 comments

Decathlon's Chinese subcontractor is suspected of using forced Uyghur labor [video] (youtube.com)

Human Rights, China, Labor, Supply Chain, Video

13 points by suraci 24 days ago | 0 comments

Tesla gets more than 20% of parts from Mexico, it will be affected by tariffs (electrek.co)
Tesla gets more than 20% of its parts from Mexico, as well as some from Canada on top of it. So, yes, Tesla will be negatively affected by the tariffs.

Tesla, Tariffs, Mexico, Automotive Industry, Supply Chain

109 points by zfg 28 days ago | 151 comments

Silk Typhoon targeting IT supply chain (microsoft.com)
Executive summary: Microsoft Threat Intelligence identified a shift in tactics by Silk Typhoon, a Chinese espionage group, now targeting common IT solutions like remote management tools and cloud applications to gain initial access.

Cybersecurity, Espionage, China, IT, Supply Chain

4 points by uberdru 28 days ago | 0 comments

Flexport Intelligence (flexport.com)

Logistics, Supply Chain, Data Analytics

33 points by corvustwo 37 days ago | 1 comments

Explainable Linear Programs (jeremykun.com)
Back in 2020, when I worked in the supply chain side of Google, I had a fun and impactful side project related to human-level explanations of linear programs.

Linear Programming, Optimization, Machine Learning, Supply Chain

98 points by matt_d 54 days ago | 31 comments

GeForce RTX 5090 and 5080 sell out almost instantly (pcworld.com)
No points for guessing this one in advance. The morning of the official retail launch for Nvidia’s next-gen GeForce RTX 50-series graphics cards, they’re almost impossible to actually order at online stores in the United States just an hour after the sales began.

Graphics Cards, Hardware, Gaming, Supply Chain

7 points by belter 62 days ago | 1 comments

Investigating an “evil” RJ45 dongle (lcamtuf.substack.com)
When it comes to information security headlines, a good rule of thumb is that claims about about widespread supply-chain sabotage are usually false.

Information Security, Hardware, Supply Chain

508 points by zdw 75 days ago | 169 comments

Apple Hit with Criminal Complaints over Congo Mineral Trade (macrumors.com)
Apple's subsidiaries in France and Belgium have had criminal complaints filed against them by the Democratic Republic of Congo, which is accusing the tech giant of using conflict minerals in its product supply chain (via Reuters).

Apple, Conflict Minerals, Supply Chain, Legal Issues, Congo

4 points by mgh2 106 days ago | 0 comments

A transformer supply crisis bottlenecks energy projects (ieee.org)
A transformer supply crisis bottlenecks energy projects

Energy, Supply Chain, Infrastructure, Technology, Transformers

115 points by TaurenHunter 111 days ago | 108 comments

The bad news: the US is 100% reliant on imported gallium, primarily from China (twitter.com)

Supply Chain, China, United States, Minerals

10 points by dtquad 120 days ago | 2 comments

Supply Chain Attack Detected in Solana/Web3.js Library (socket.dev)
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.

Security, Web3, Javascript, Cryptocurrency, Supply Chain

17 points by feross 120 days ago | 0 comments

Beekeepers halt honey awards over fraud in global supply chain (theguardian.com)
The World Beekeeping Awards will not award a prize for honey next year after warnings of widespread fraud in the global supply chain.

Beekeeping, Food Industry, Fraud, Awards, Supply Chain

203 points by a_w 123 days ago | 232 comments

The Biggest EV Maker Has the Industry's Worst Human Rights Appraisal (wired.com)
The race to keep pace with EV development could be taking a dark turn. Amnesty International has released a report claiming the world’s leading EV makers are failing to adequately demonstrate how they address human rights risks in their mineral supply chains, which gather vital materials for making electric car batteries.

Electric Vehicles, Human Rights, Supply Chain, Amnesty International

7 points by adrian_mrd 128 days ago | 0 comments

Stores don't sell your favorite product anymore. That's on purpose (cnn.com)

Consumerism, Business Strategy, Supply Chain

5 points by elsewhen 145 days ago | 0 comments

China blocks Skydio battery supply (ft.com)

China, Drones, Trade, Supply Chain, Geopolitics

6 points by FriedPickles 148 days ago | 1 comments

China Tightens Its Hold on Minerals Needed to Make Computer Chips (nytimes.com)
The vise-tight grip that China wields over the mining and refining of rare minerals, crucial ingredients of today’s most advanced technologies, is about to become even stronger.

China, Minerals, Technology, Economics, Supply Chain

6 points by mikhael 156 days ago | 0 comments

US Government Says Relying on Chinese Lithium Batteries Is Too Risky (wired.com)
A new document shows the Department of Homeland Security is concerned that Chinese investment in lithium batteries to power energy grids will make them a threat to US supply chain security.

US Government, Lithium Batteries, Supply Chain, Security, China

5 points by CrypticShift 164 days ago | 0 comments

Growing Cannabis and Opium Poppies May Be Key to U.S. Supply Chains (nytimes.com)
After supply chain disruptions that made critical medicines scarce, a federal effort is underway to ensure domestic stocks of pharmaceutical ingredients.

Pharmaceuticals, Supply Chain, Cannabis, Opium

4 points by bookofjoe 166 days ago | 1 comments

Datacenter Anatomy Part 1: Electrical Systems (semianalysis.com)
The surge in power demand triggered by AI has huge macro and micro implications and supply is tight.

Datacenters, Electrical Engineering, AI, Supply Chain

4 points by edward28 170 days ago | 0 comments

McDonald's says Tyson and other suppliers fixed beef prices (bloomberglaw.com)
McDonald’s is suing some of its suppliers over allegations they conspired to sell the fast-food chain beef at artificially inflated prices, in violation of federal antitrust laws, according to a new lawsuit Friday.

Antitrust, Lawsuits, Fast Food, Beef, Supply Chain

36 points by hhs 179 days ago | 30 comments

Helene ravaged the NC plant that makes 60% of the country's IV fluid supply (arstechnica.com)
Hospitals nationwide are bracing for a possible shortage of essential intravenous fluids after the cataclysmic storm inundated a vital manufacturing plant in North Carolina.

Natural Disasters, Healthcare, Manufacturing, Supply Chain

16 points by pkilgore 180 days ago | 4 comments

Dockworkers at ports from Maine to Texas go on strike (apnews.com)
PHILADELPHIA (AP) — Dockworkers at ports from Maine to Texas began walking picket lines early Tuesday in a strike over wages and automation that could reignite inflation and cause shortages of goods if it goes on more than a few weeks.

Labor Unions, Strikes, Economics, Supply Chain

150 points by mikeocool 184 days ago | 305 comments

Essential node in global semiconductor supply chain hit by Hurricane Helene (npr.org)
A tiny town in North Carolina that’s just been devastated by hurricane Helene could end up severely disrupting the global supply chain for microchips and solar panels.

Semiconductors, Supply Chain, Natural Disasters, North Carolina

234 points by notamy 184 days ago | 71 comments

Britain buys semiconductor factory for defence purposes (ukdefencejournal.org.uk)
The UK government has acquired a semiconductor factory in Newton Aycliffe, County Durham, in a move to strengthen the defence supply chain and support the Armed Forces.

Defense, Semiconductor, Government, Supply Chain, UK

220 points by incognitojam 186 days ago | 116 comments

Gitlab patches bug that could expose a CI/CD pipeline to supply chain attack (scmagazine.com)
GitLab patched 17 bugs, including a critical flaw with a CVSS score of 9.9 that could let an attacker trigger a pipeline as an arbitrary user, leading to privileged escalation, data exfiltration, and a software supply chain compromise.

Cybersecurity, Software, Supply Chain, GitLab, Vulnerability

9 points by LinuxBender 199 days ago | 2 comments

AMD laptop OEMs decry poor support, chip supply, and communication (tomshardware.com)

AMD, Laptops, Hardware, Supply Chain, Communication

14 points by walterbell 200 days ago | 5 comments

Taiwan Exports to US Surpass China Record to Hit Monthly High (bnnbloomberg.ca)
Taiwan’s exports to the US topped the record for any month’s shipments to China, underscoring rapidly shifting East Asian supply chains.

Taiwan, Exports, China, Trade, Supply Chain

6 points by kvee 205 days ago | 0 comments

Small grocers feel squeezed by suppliers, and shoppers bear the pain (washingtonpost.com)

Grocery Stores, Economics, Supply Chain

4 points by howard941 220 days ago | 0 comments