Name: AppSec Aus Melb #13 - Lessons From Open Source Supply Chain Malware
Start: 2025-11-13T17:30:00+11:00
End: 2025-11-13T19:30:00+11:00
Location: Atlassian Melbourne

**Event Confirmation Form!**

➡️ We kindly request you fill out this **event confirmation form** to confirm your attendance for the event and your dietary requirements - [https://forms.gle/P86kagEaKKZ6hg4h6](https://forms.gle/P86kagEaKKZ6hg4h6)
\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-\-

## **What's On? 👀**

**Speaker:** Cameron Townshend (https://www.linkedin.com/in/cameron-townshend-6bb4897/)

**Title:** Open Source Supply Chain Malware: Lessons from NX, Chalk and the Shai-Hulud Worm

**Abstract:**
Open source ecosystems are under silent siege. In this talk, we’ll unpack three major malware campaigns — **NX**, **Chalk**, and the **Shai-Hulud Worm** — that infiltrated trusted packages and spread through CI/CD pipelines. You’ll learn how these attacks were engineered, why traditional defences missed them, and what practical steps developers and defenders can take to secure the software supply chain before the next breach hits.

## **Location** 📍

Atlassian Melbourne
Queens & Collins Building, Level 20, 100 Queen Street, Melbourne VIC 3000

## **Agenda ⏰**

* 5:30 - Food is served
* 6:15 - Session start
* 7:30 - Post-event networking

\-\-\-
Note: Please complete the event confirmation form: [https://forms.gle/P86kagEaKKZ6hg4h6](https://forms.gle/P86kagEaKKZ6hg4h6)

Kumar Soorya

larriquin

Kaif Ahsan

AppSec Australia

Technology

Cloud Computing

Web Security

Network Security

Information Security

DevOps

Cloud Security

Computer Security

Application Security

Web Application Security

DevSecOps

AppSec Aus Melb #13 - Lessons From Open Source Supply Chain Malware

Social Networking

Software Development

Atlassian Melbourne

Share

AppSec Australia

AppSec Aus Melb #13 - Lessons From Open Source Supply Chain Malware

AppSec Australia

Details

Members are also interested in