Software supply chain attacks are the current buzzword in security and many in the community only attribute these attacks with nation states. However, in the past year, there have been many non-nation state software supply chain attacks which are more likely to impact an enterprise. This talk will delve into three case studies of software supply chain attacks from 2021 and the principles that will prevent their propagation.