Explore modern supply chain attacks and defense strategies in this 51-minute Black Hat conference talk. Gain practical guidance on defending against and responding to supply chain compromises, applicable to both SecOps and App Development professionals. Delve into real-world examples from GitHub, Office, and LinkedIn to understand supply chain risks. Learn about Microsoft's defense strategies, cloud security, and the importance of Cyber Defense Operations Centers. Examine the role of people in security, risk assessment techniques, and the concept of "assume breach." Discover practical advice on inventory management, services, and hardware security, including IoT considerations. Understand the significance of organizational culture and response strategies in cybersecurity. Leave with actionable insights on best practices, addressing small details, and embracing a holistic approach to supply chain security.