The Big List Of AI Supply Chain Attack Resources

Note that the following are organized in chronological order by title. Enjoy!

• 8 Charts that Explain Enterprise Generative AI Adoption in 2024 – https://synthedia.substack.com/p/8-charts-that-explain-enterprise
• 11% of data employees paste into ChatGPT is confidential – https://www.cyberhaven.com/blog/4-2-of-workers-have-pasted-company-data-into-chatgpt
• 16 Changes to the Way Enterprises Are Building and Buying Generative AI – https://a16z.com/generative-ai-enterprise-2024/
• 131 AI Statistics and Trends for 2025 – https://www.nu.edu/blog/ai-statistics-trends/
• 2024: The State of Generative AI in the Enterprise – https://menlovc.com/2024-the-state-of-generative-ai-in-the-enterprise/
• 2025 AI Business Predictions – https://www.pwc.com/us/en/tech-effect/ai-analytics/ai-predictions.html
• 2025 Predictions: AI Supply Chain Will Become One of the Most Critical Threats to Enterprises – https://www.extrahop.com/blog/amid-rising-genaI-hacking-hysteria-supply-chain-most-at-risk
• A Systematic Literature Review on Continuous Integration and Deployment (CI/CD) for Secure Cloud Computing – https://www.scitepress.org/Papers/2024/130185/130185.pdf
• AI and Cloud-Based Attacks Are Rising: Why Security Must Evolve – https://innotechtoday.com/ai-and-cloud-based-attacks-are-rising-why-security-must-evolve/
• AI adoption statistics by industries and countries: 2024 snapshot – https://ventionteams.com/solutions/ai/adoption-statistics
• AI in Supply Chain Risk Assessment: A Systematic Literature Review and Bibliometric Analysis – https://arxiv.org/html/2401.10895v2
• AI-Powered Supply Chain Attacks: A Growing Cybersecurity Threat – https://www.irejournals.com/formatedpaper/1706490.pdf
• AI statistics and trends: New research for 2025 – https://www.hostinger.com/tutorials/ai-statistics
• Ambush from All Sides: Understanding Security Threats in Open-Source Software CI/CD Pipelines – https://arxiv.org/html/2401.17606v1
• ARTIFICIAL INTELLIGENCE MARKET SIZE AND FUTURE OUTLOOK – https://www.fortunebusinessinsights.com/industry-reports/artificial-intelligence-market-100114
• Artificial Intelligence (AI) Market Size, Share, and Trends 2025 to 2034 – https://www.precedenceresearch.com/artificial-intelligence-market
• Artificial Intelligence Market Size, Share, Industry Report, 2030 – https://www.grandviewresearch.com/industry-analysis/artificial-intelligence-ai-market
• Artificial Intelligence – Worldwide – https://www.statista.com/outlook/tmo/artificial-intelligence/worldwide
• CI/CD Pipeline is Major Software Supply Chain Risk: Black Hat Researchers – https://www.esecurityplanet.com/applications/ci-cd-pipeline-software-supply-chain-risk/
• Cloudsek. “Aerospace Industry Supply Chain Attacks.” https://cloudsek.com/threatintelligence/supply-chain-attacks-aerospace/
• Copper Digital. “AI in Software Development Lifecycle.” https://copperdigital.com/blog/ai-in-software-development-lifecycle
• CWSI. “Supply Chain Security Strategies.” https://cwsi.ie/blog/supply-chain-security-critical-for-organisations/
• Cybersecurity 2025 trends: GenAI and supply chains top of the threat list – https://blog.barracuda.com/2025/04/18/cybersecurity-2025-trends-GenAI-and-supply-chains-top-of-the-threat-list
• Darkreading. “Corporate Data Leakage Through AI Tools.” https://www.darkreading.com/vulnerabilities-threats/samsung-employees-leaked-company-secrets-chatgpt
• EncryptionConsulting. “Supply Chain Security in Critical Industries.” https://www.encryptionconsulting.com/supply-chain-security-critical-industries/
• Exposed Hugging Face API tokens offered full access to Meta’s Llama 2 – https://www.theregister.com/2023/12/04/exposed_hugging_face_api_tokens/
• ExtraHop. “Securing the AI Supply Chain.” https://www.extrahop.com/resources/papers/securing-ai-supply-chain/
• FLOWBREAKING ATTACKS: EXPOSING ARCHITECTURAL VULNERABILITIES IN AI SYSTEMS – https://www.ve3.global/flowbreaking-attacks-exposing-architectural-vulnerabilities-in-ai-systems/
• Fortinet. “Dependency Confusion Attacks.” https://www.fortinet.com/blog/industry-trends/dependency-confusion-attacks
• Future of artificial intelligence and its influence on supply chain risk management – A systematic review – https://www.sciencedirect.com/science/article/abs/pii/S0360835222002765
• Generative AI Under Attack: Flowbreaking Exploits Trigger Data Leaks – https://www.forbes.com/sites/nizangpackin/2024/11/26/generative-ai-under-attack-flowbreaking-exploits-trigger-data-leaks/
• How compromised DevOps tools are used in supply chain attacks – https://cloudprotection.withsecure.com/blog/how-compromised-devops-tools-are-used-in-supply-chain-attacks/
• Introducing ChatGPT – https://openai.com/index/chatgpt/
• Kaspersky uncovers year-long PyPI supply chain attack using AI chatbot tools as lure  – https://www.kaspersky.com/about/press-releases/kaspersky-uncovers-year-long-pypi-supply-chain-attack-using-ai-chatbot-tools-as-lure
• LLM Threats-LLM Supply Chain.png – https://github.com/jsotiro/ThreatModels/blob/main/LLM%20Threats-LLM%20Supply%20Chain.png
• New “Slopsquatting” Threat Emerges from AI-Generated Code Hallucinations – https://hackread.com/slopsquatting-threat-ai-generated-code-hallucinations/
• Open-Source AI in the Enterprise: Insights from a Survey of IT Leaders – https://www.anaconda.com/blog/anaconda-state-of-enterprise-open-source-ai
• Open source in the age of AI – https://www.mckinsey.com/capabilities/mckinsey-digital/our-insights/tech-forward/open-source-in-the-age-of-ai
• Outshift by Cisco. “Okta Breach Impact on AI Companies.” https://outshift.cisco.com/security-news/okta-breach-october-2023
• OWASP Foundation- https://owasp.org/
• OWASP Top 10 for Large Language Model Applications – https://owasp.org/www-project-top-10-for-large-language-model-applications/
• Poisoning the Pipeline: The Growing Threat of AI Supply Chain Attacks – https://www.linkedin.com/pulse/poisoning-pipeline-growing-threat-ai-supply-chain-attacks-singh-mqpac
• Samsung Bans ChatGPT Among Employees After Sensitive Code Leak – https://www.forbes.com/sites/siladityaray/2023/05/02/samsung-bans-chatgpt-and-other-chatbots-for-employees-after-sensitive-code-leak/
• SecurityIntelligence. “AI Software Supply Chain Security.” https://securityintelligence.com/posts/ai-software-supply-chain-security/
• SupplyChainBrain. “Manufacturing Supply Chain Vulnerabilities.” https://www.supplychainbrain.com/articles/36420-ransomware-attacks-on-manufacturing-supply-chains-to-get-worse
• The Hacker News. “AI-Driven Cyberattacks: How Artificial Intelligence is Changing the Threat Landscape.” https://thehackernews.com/2023/05/ai-driven-cyberattacks-how-artificial.html
• Towards Action Hijacking of Large Language Model-based Agent – https://arxiv.org/html/2412.10807v1
• Ultralytics YOLO AI model compromised in supply chain attack – https://www.techtarget.com/searchsecurity/news/366616877/Ultralytics-YOLO-AI-model-compromised-in-supply-chain-attack
• What Is Dependency Chain Abuse? – https://www.paloaltonetworks.com/cyberpedia/dependency-chain-abuse-cicd-sec3

Thanks for reading!