Supply chain attackers are not only trying to slip malicious code into trusted software. They are trying to steal theā¦