Supply Chain Attack Archives

TeamPCP Leaks AI-Generated “Shai-Hulud” Source Code Targeting NPM Ecosystems dis

TeamPCP Leaks AI-Generated “Shai-Hulud” Source Code Targeting NPM Ecosystems

Do Son May 14, 2026

Yesterday, the TeamPCP collective—a threat actor specializing in supply chain incursions—released the source code for Shai-Hulud, an...

The “Dead Man’s Switch” Alert: How the TanStack NPM Attack Wipes Your Files After Token Revocation

Do Son May 13, 2026

This week, the TanStack ecosystem—a cornerstone of modern web development—suffered a sophisticated security breach. Exploiting a procedural...

Supply Chain Alert: 84 TanStack NPM Packages Subverted in Massive GitHub Actions Exploit

Do Son May 12, 2026

The TanStack suite, a cornerstone of modern web development boasting over 50 million monthly downloads, has fallen...

Supply Chain Infiltration: JDownloader Official Site Compromised with Python Remote Access Trojan

Do Son May 11, 2026

The official portal of the venerable free download utility JDownloader was compromised by adversaries between May 6...

Malicious PyTorch Lightning Release Exfiltrates Cloud Keys and Browser Data PyTorch Lightning 2.6.3 malware

Malicious PyTorch Lightning Release Exfiltrates Cloud Keys and Browser Data

Hieu Phan Trong May 5, 2026

A compromised iteration of a widely utilized AI development tool has been identified, harboring the capability to...

Poisoning the Vault: Bitwarden CLI Compromised in Global Supply Chain Campaign Bitwarden CLI supply chain attack

Poisoning the Vault: Bitwarden CLI Compromised in Global Supply Chain Campaign

Do Son April 24, 2026

Recently, reports surfaced regarding a sophisticated subversion of Infrastructure as Code (IaC) security scanning utilities, specifically Checkmarx...

Water Curse Unleashed: Stealthy Malware Campaign Leverages 76 GitHub Accounts for Supply Chain Attacks

Do Son June 20, 2025

A new actor has emerged within cyberspace—Water Curse, a threat group that since March 2023 has been...

GitHub Phishing Exploit: New Attack Leverages OAuth Device Code Flow to Steal Access Tokens

Do Son June 17, 2025

In recent times, cybercriminals have increasingly shifted their focus from deploying malware to employing subtle manipulations rooted...

Software Supply Chain Under Attack: New Malware Infiltrates PyPI & npm with Advanced Tactics

Do Son June 17, 2025

Amid a surge in increasingly sophisticated software supply chain attacks, cybersecurity experts have identified a new wave...

Ransomware Shifts: SimpleHelp RMM Exploited for Double Extortion, Fog Blurs Lines Between Cybercrime and Espionage Play Ransomware DragonForce ransomware Nefilim ransomware Play group

Play Ransomware DragonForce ransomware Nefilim ransomware Play group

Ransomware Shifts: SimpleHelp RMM Exploited for Double Extortion, Fog Blurs Lines Between Cybercrime and Espionage

Do Son June 16, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an official warning: threat actors are actively...

Alert: Data-Wiping Malware Found in npm Packages – Act Now to Protect Your Code! vm2 sandbox escape CVE-2026-26956 Smartphone Vulnerabilities

Alert: Data-Wiping Malware Found in npm Packages – Act Now to Protect Your Code!

Do Son June 10, 2025

Two malicious packages were recently discovered within the widely used JavaScript package registry, npm. Beneath their seemingly...

NPM Supply Chain Attack: Gluestack Packages Infected with RAT!

Do Son June 9, 2025

A large-scale supply chain attack has been identified on the NPM platform: threat actors compromised 17 widely...

GitHub Trap: Fake Repositories Lure Users into Malware Nightmare! GitHub Malware

GitHub Trap: Fake Repositories Lure Users into Malware Nightmare!

Do Son June 5, 2025

A recently uncovered malicious campaign is leveraging GitHub as a trap for security professionals, gamers, and even...

Urgent Alert: RVTools Website Compromised, Spreading Malware RVTools compromise

Urgent Alert: RVTools Website Compromised, Spreading Malware

Do Son May 21, 2025

Hackers have compromised the official website of RVTools—a widely used utility for managing VMware virtual infrastructures—and replaced...

Malicious npm Package Uses Steganography and Google Calendar for Covert Attack

Do Son May 17, 2025

Malicious actors have once again targeted the npm ecosystem, this time through a package named “os-info-checker-es6”, which...

Supply Chain Attack

The “Dead Man’s Switch” Alert: How the TanStack NPM Attack Wipes Your Files After Token Revocation

Supply Chain Alert: 84 TanStack NPM Packages Subverted in Massive GitHub Actions Exploit

Supply Chain Infiltration: JDownloader Official Site Compromised with Python Remote Access Trojan

Poisoning the Vault: Bitwarden CLI Compromised in Global Supply Chain Campaign

Ransomware Shifts: SimpleHelp RMM Exploited for Double Extortion, Fog Blurs Lines Between Cybercrime and Espionage

Alert: Data-Wiping Malware Found in npm Packages – Act Now to Protect Your Code!

NPM Supply Chain Attack: Gluestack Packages Infected with RAT!

GitHub Trap: Fake Repositories Lure Users into Malware Nightmare!

Urgent Alert: RVTools Website Compromised, Spreading Malware

Malicious npm Package Uses Steganography and Google Calendar for Covert Attack

You may have missed

Big Tech Reaps What It Sows: Lenovo, Dell, and HP Finally Save Linux Firmware Service From Financial Collapse

Intentional Silence: Why Windows 11 24H2 Quietly Kills Your Music When You Close the Lid

Firefox Nightly Update: Mozilla Teases Project Nova 2026 Redesign

New Face of DNS: Cloudflare Rolls Out Modernized Dashboard Update