Tag: supply chain attack

90 Attack Reports | 0 Vulnerabilities

Attack reports

Detecting the Klue supply chain attack in Salesforce instances

On June 11, 2026, the Icarus threat group compromised Klue's backend systems, a market intelligence platform used by hundreds of enterprises to sync competitive battlecard data with CRM environments. The attackers exploited a dormant credential from an abandoned prototype integration to harvest OAu…
supply chain attack
salesforce
oauth abuse
crm data theft
2026-06-22
extortion campaign
klue compromise
Published: June 22, 2026
Downloadable IOCs: 3

3CXDesktopApp Intrusion Campaign Prevention

A sophisticated supply chain attack compromised the legitimate 3CXDesktopApp softphone application across Windows, macOS, and Linux platforms. The malicious activity involved trojanized signed installers that deployed a compromised ffmpeg.dll binary, establishing HTTPS beacons to attacker-controlle…
supply chain attack
trojanized installer
2026-06-22
3cxdesktopapp
arcfeedloader
labyrinth chollima
softphone
txrloader
Published: June 22, 2026
Downloadable IOCs: 9

Okendo Reviews Supply Chain Attack

On May 14, 2026, a supply chain attack was discovered targeting the Okendo Reviews widget, a customer review platform used by over 18,000 brands. The threat actor injected malicious JavaScript code into the legitimate widget, which is deployed on high-traffic e-commerce pages including storefronts …
remcos
netsupport
stealc
clickfix
netsupport rat
supply chain attack
javascript injection
smartapesg
smartrat
2026-06-18
okendo reviews
sectop rat
Published: June 18, 2026
Downloadable IOCs: 3

From package to postinstall payload: Inside the Mastra npm supply chain compromise

Microsoft Threat Intelligence discovered a large-scale npm supply chain attack compromising over 140 packages in the mastra and @mastra scopes. The attack originated from takeover of the ehindero npm maintainer account, which published poisoned package versions introducing easy-day-js, a malicious …
typosquatting
credential-theft
npm
supply-chain-attack
postinstall-hook
account-takeover
easy-day-js
2026-06-18
cryptocurrency-clipper
Published: June 18, 2026
Downloadable IOCs: 6

140+ npm Packages Compromised in Coordinated Supply Chain Attack

More than 140 Mastra npm packages were compromised through a supply chain attack that injected a typosquatted dependency called easy-day-js. A single npm account published malicious versions within a short timeframe, affecting packages including @mastra/core with over 918K weekly downloads. The att…
typosquatting
infostealer
cryptocurrency theft
supply chain attack
npm packages
persistence mechanism
2026-06-17
cross-platform stealer
easy-day-js
postinstall hook
Published: June 17, 2026
Downloadable IOCs: 7

From external espionage to domestic targeting

Analysis of OceanLotus activities from 2024-2026 reveals a strategic shift toward domestic espionage within Vietnam. The Vietnam-aligned APT group conducted two distinct campaigns using the SPECTRALVIPER backdoor: a supply-chain attack compromising FireAnt Metakit stock trading platform from Octobe…
supply-chain attack
2026-06-11
apt32
fireant metakit
phoreal
soundbite
stock investors
Published: June 11, 2026
Linked vulnerabilities : CVE-2017-11882
Downloadable IOCs: 16

Mini Shai-Hulud, Miasma, and Hades Worms Target Bioinformatics and MCP Developers via Malicious PyPI Wheels

A sophisticated supply chain attack campaign has expanded to 471 affected artifacts across npm and PyPI, targeting developers through malicious packages. The campaign uses three distinct delivery methods: executable .pth startup hooks, trojanized native .abi3.so extensions that execute at import ti…
typosquatting
credential theft
pypi
supply chain attack
hades
ci/cd compromise
mini shai-hulud
2026-06-08
bioinformatics
bun runtime
miasma
javascript stealer
mcp developers
native extensions
Published: June 8, 2026
Downloadable IOCs: 2

Miasma Worm Campaign Spreads with New PyPI Wave

A coordinated PyPI compromise campaign involving 37 malicious wheel artifacts across 19 packages was detected, utilizing Python startup hooks to execute credential-stealing payloads. The attack leverages .pth files for automatic execution during Python interpreter startup, downloads the Bun JavaScr…
credential theft
pypi
supply chain attack
hades
github exfiltration
mini shai-hulud
2026-06-07
bioinformatics
bun runtime
miasma
startup hooks
Published: June 7, 2026
Downloadable IOCs: 3

Preinstall to persistence: Inside the npm Miasma credential-stealing campaign

Microsoft Threat Intelligence discovered a large-scale npm supply chain attack compromising 32 malicious packages across over 90 versions under the @redhat-cloud-services scope. The compromise originated from the RedHatInsights/javascript-clients CI/CD pipeline, enabling attackers to publish trojan…
supply chain attack
github actions
2026-06-04
oidc workflow abuse
slsa provenance forgery
Published: June 4, 2026
Downloadable IOCs: 6

Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages

A supply chain attack compromised multiple @redhat-cloud-services npm packages, executing malicious payloads automatically during installation via preinstall hooks. The attack uses AES-GCM encrypted payloads and obfuscated JavaScript loaders to harvest GitHub Actions secrets, npm tokens, cloud cred…
supply chain attack
shai-hulud
ci/cd targeting
npm compromise
2026-06-01
Published: June 1, 2026
Downloadable IOCs: 5

Typosquatted npm packages used to steal cloud and CI/CD secrets

A supply chain attack targeting the npm ecosystem was identified involving 14 malicious packages published under the alias vpmdhaj. These packages typosquat well-known OpenSearch, ElasticSearch, and DevOps libraries, executing malicious payloads through npm lifecycle hooks during installation. The …
typosquatting
npm
supply-chain-attack
2026-05-29
elasticsearch
opensearch
Published: May 29, 2026
Downloadable IOCs: 4

A New Threat Actor Targeting the Cryptocurrency Industry's Software Development Infrastructure

JINX-0164, a financially motivated threat actor active since mid-2025, has been conducting sophisticated campaigns against cryptocurrency organizations. The actor employs LinkedIn-based social engineering, posing as recruiters or business partners to deliver custom macOS malware including AUDIOFIX …
social engineering
cryptocurrency
macos
supply chain attack
developer targeting
2026-05-28
audiofix
ci/cd hijacking
linkedin phishing
minirat
npm trojan
Published: May 28, 2026
Downloadable IOCs: 35

Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid…
information stealer
supply chain attack
laravel
rce backdoor
2026-05-23
developer compromise
Published: May 23, 2026
Downloadable IOCs: 2

Mini Shai-Hulud Hits TanStack npm Packages

The Mini Shai-Hulud campaign compromised 84 npm package artifacts in the TanStack namespace with credential-stealing malware targeting continuous integration systems. On May 11, 2026, attackers published 84 malicious versions across 42 TanStack packages by chaining the pull_request_target pattern, …
credential theft
npm
pypi
supply chain attack
github actions
mini shai-hulud
tanstack
2026-05-21
oidc token
Published: May 21, 2026
Downloadable IOCs: 0

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft

Microsoft identified an active supply chain attack targeting the @antv npm package ecosystem. A threat actor compromised an @antv maintainer account and published malicious versions of widely used data-visualization packages, affecting libraries like echarts-for-react with over 1 million weekly dow…
obfuscation
credential theft
privilege escalation
data exfiltration
npm
supply chain attack
github actions
ci/cd
2026-05-20
Published: May 20, 2026
Downloadable IOCs: 4

Popular node-ipc npm Package Infected with Credential Stealer

A supply chain attack has compromised the node-ipc npm package, with malicious versions 9.1.6, 9.2.3, and 12.0.1 containing obfuscated stealer and backdoor functionality. The attack vector involved takeover of a dormant maintainer account through an expired email domain. The malware fingerprints ho…
supply chain attack
credential stealer
npm package compromise
2026-05-20
developer secrets harvesting
dns exfiltration
maintainer account takeover
node-ipc compromise
Published: May 20, 2026
Downloadable IOCs: 7

Inside a Tor Backed Supply Chain Worm

A sophisticated npm supply chain attack was uncovered involving the typosquatted package crypto-javascri, designed to mimic the legitimate crypto-js library. The malware harvests npm and GitHub credentials from infected systems, hijacks maintainer accounts, and automatically republishes trojanized …
typosquatting
credential theft
cryptomining
privilege escalation
npm
supply chain attack
worm propagation
2026-05-20
tor c2
Published: May 20, 2026
Downloadable IOCs: 0

Popular Go Decimal Library Targeted by Long-Running Typosquat with DNS Backdoor

A long-running typosquatting campaign impersonated the widely used shopspring/decimal Go library by publishing github.com/shopsprint/decimal, differing by a single character. Active since November 2017, the package remained benign through seven releases until being weaponized in August 2023 with ve…
typosquatting
supply chain attack
dynamic dns
2026-05-20
c2 channel
decimal library
dns backdoor
go ecosystem
init function
Published: May 20, 2026
Downloadable IOCs: 2

Latest PyPi Compromise

A supply chain attack targeting the Microsoft DurableTask Python client compromised versions 1.4.1, 1.4.2, and 1.4.3 on PyPi. The threat actor gained access through a compromised GitHub account previously linked to attacks, using stolen credentials to dump GitHub secrets containing PyPi tokens. The…
credential theft
supply chain attack
pypi compromise
2026-05-19
aws ssm propagation
durabletask
github secrets
kubernetes lateral movement
managed.pyz
password manager
rope.pyz
transformers.pyz
Published: May 19, 2026
Downloadable IOCs: 7

The Worm That Keeps on Digging: Latest Wave

A sophisticated supply chain campaign targeting the open source developer ecosystem has emerged, compromising NPM packages in the @antv namespace, GitHub Actions including actions-cool/issues-helper, and the VSCode extension nrwl.angular-console. The malware initiates multi-stage infection chains u…
credential theft
supply chain attack
github actions
developer environments
npm packages
2026-05-19
backdoor persistence
cicd compromise
vscode extension
Published: May 19, 2026
Downloadable IOCs: 1

Active Supply Chain Attack Compromises Packages on npm

An active npm supply chain attack has compromised packages in the @antv ecosystem, affecting the maintainer account 'atool'. The attack is part of the Mini Shai-Hulud campaign, involving 639 compromised package versions across 323 unique packages. Notable affected packages include echarts-for-react…
credential theft
npm
supply chain attack
ci/cd compromise
github exfiltration
mini shai-hulud
2026-05-19
@antv packages
echarts-for-react
Published: May 19, 2026
Downloadable IOCs: 1

Copycat hits another npm package

A Shai-Hulud copycat worm has infected the npm package chalk-tempalte, appearing just five days after the original worm was open-sourced by its creators. The same threat actor also published three additional malicious npm packages containing infostealer code: @deadcode09284814/axios-util, axois-uti…
credential-theft
infostealer
npm
open-source
supply-chain-attack
shai-hulud
cryptocurrency-theft
2026-05-18
ddos-botnet
Published: May 18, 2026
Downloadable IOCs: 1

TanStack npm Packages Compromised in Ongoing Supply-Chain Attack

Socket detected 84 compromised TanStack npm package artifacts modified with credential-stealing malware targeting CI systems, including GitHub Actions. Affected packages like @tanstack/react-router have over 12 million weekly downloads. The malicious versions contain router_init.js, a heavily obfus…
credential stealer
supply-chain attack
github actions
ci/cd targeting
mini shai-hulud
npm compromise
2026-05-12
oidc token theft
router_init.js
router_runtime.js
session p2p network
tanstack_runner.js
Published: May 12, 2026
Downloadable IOCs: 3

5 Malicious NuGet Packages Impersonate Chinese UI Libraries to Distribute Crypto Wallet and Credential Stealer

Five malicious NuGet packages published under account bmrxntfj impersonate Chinese .NET libraries to deploy an infostealer targeting browser credentials, cryptocurrency wallets, SSH keys, and local files. The packages typosquat legitimate Chinese UI and infrastructure libraries, grafting .NET React…
lumma
supply chain attack
nuget
browser credential theft
2026-05-07
arrowrat
quantum
Published: May 7, 2026
Downloadable IOCs: 9

OceanLotus suspected of distributing ZiChatBot malware via wheel packages in PyPI

Between July 2025 and present, threat actors suspected to be OceanLotus distributed malicious wheel packages through PyPI targeting both Windows and Linux platforms. Three fake libraries (uuid32-utils, colorinal, and termncolor) were created to imitate legitimate packages, implementing a sophistica…
dropper
pypi
cross-platform
supply chain attack
python packages
2026-05-06
wheel packages
zichatbot
zulip c2
Published: May 6, 2026
Downloadable IOCs: 9

A rigged game: compromises gaming platform in a supply-chain attack

North Korea-aligned APT group ScarCruft executed a multiplatform supply-chain attack targeting ethnic Koreans in China's Yanbian region, an area significant for North Korean refugees and defectors. Since late 2024, the group compromised a video gaming platform dedicated to Yanbian-themed games, tro…
supply-chain attack
android trojan
2026-05-05
birdcall
gaming platform compromise
yanbian targeting
Published: May 5, 2026
Downloadable IOCs: 9

Gleaming Pisces Poisoned Python Packages Campaign Delivers PondRAT Linux and macOS Backdoors

An ongoing campaign has been discovered delivering Linux and macOS backdoors through poisoned Python packages uploaded to PyPI repository. The activity is attributed with medium confidence to Gleaming Pisces, a North Korean financially motivated threat actor affiliated with the Reconnaissance Gener…
pypi
citrine sleet
poolrat
pondrat
applejeus
supply chain attack
badcall
2026-05-04
Published: May 4, 2026
Linked vulnerabilities : CVE-2025-55182 (CVSS 10.0)
Downloadable IOCs: 13

Mini Shai-Hulud Spreads to Packagist: Malicious Intercom PHP Package Follows npm Compromise

A malicious artifact of the widely-used intercom/intercom-php package version 5.0.2 was discovered on Packagist, representing an expansion of the Mini Shai-Hulud supply chain attack from npm into the PHP ecosystem. The compromised package exploits Composer plugin execution to download Bun runtime a…
credential theft
supply chain attack
2026-05-01
mini shai-hulud
intercom
packagist compromise
Published: May 1, 2026
Downloadable IOCs: 6

Intercom’s npm Package Compromised in Ongoing Mini Shai-Hulud Worm Attack

The intercom-client npm package version 7.0.4 was compromised through a malicious GitHub account, introducing credential-stealing malware into a widely used Node.js SDK with approximately 360,000 weekly downloads. The attack deployed two malicious files: setup.mjs, executed via preinstall hook to d…
supply chain attack
2026-04-30
ci/cd targeting
github account compromise
mini shai-hulud
npm compromise
Published: April 30, 2026
Downloadable IOCs: 2

PyPI Package Compromised in Supply Chain Attack

The popular PyPI package lightning experienced a supply chain attack affecting versions 2.6.2 and 2.6.3, published on April 30, 2026. The compromise introduced malicious code that executes automatically upon module import, downloading Bun JavaScript runtime and executing an 11MB obfuscated payload.…
pypi
supply chain attack
shai-hulud
2026-04-30
ci/cd targeting
github poisoning
npm worm
Published: April 30, 2026
Downloadable IOCs: 1

Supply Chain Attack Hits SAP CAP and Cloud MTA npm Packages

Multiple npm packages in the SAP JavaScript and cloud application development ecosystem were compromised in a suspected supply chain attack. Affected packages include [email protected], @cap-js/[email protected], @cap-js/[email protected], and @cap-js/[email protected]. The compromised versions introduced malicio…
obfuscation
credential-theft
supply-chain-attack
github-abuse
2026-04-30
bun-binary
ci-cd-compromise
npm-packages
sap-cap
Published: April 30, 2026
Downloadable IOCs: 4

Supply Chain Campaign Targets SAP npm Packages with Credential-Stealing Malware

A supply chain operation dubbed 'Mini Shai Hulud' compromised SAP-related npm packages by injecting malicious preinstall scripts that execute during installation. The campaign leverages multi-stage payloads to harvest developer and CI/CD secrets from GitHub, npm, and major cloud providers, exfiltra…
credential theft
supply chain attack
ci/cd compromise
npm packages
2026-04-30
github exfiltration
mini shai hulud
sap ecosystem
Published: April 30, 2026
Downloadable IOCs: 10

73 Open VSX Sleeper Extensions Linked to Malware Show New Activations

The GlassWorm campaign targeting Open VSX has escalated with 73 newly identified impersonation extensions. These sleeper extensions were initially published without malicious payloads by newly created GitHub accounts, appearing benign to build trust and credibility. At least six extensions have bee…
impersonation
supply chain attack
glassworm
2026-04-27
ide compromise
open vsx
sleeper extensions
transitive delivery
vsix payload
Published: April 27, 2026
Downloadable IOCs: 3

Supply Chain Poisoning via PyPI Repository Compromise

Xinference, an open-source distributed AI model inference framework, suffered a supply chain attack when attackers compromised PyPI release credentials of maintainers and published three malicious versions (2.6.0, 2.6.1, 2.6.2) on April 22, 2026. The malicious code, encoded in Base64 layers within …
credential theft
supply chain attack
base64 encoding
teampcp
2026-04-27
ai framework
cloud exploitation
pypi compromise
xinference
Published: April 27, 2026
Downloadable IOCs: 3

npm Packages Hit with TeamPCP-Style CanisterWorm Malware

Malicious npm packages associated with Namastex.ai were compromised with malware exhibiting tradecraft similar to TeamPCP's CanisterWorm campaign. The attack targeted packages including @automagik/genie and pgserve, implementing install-time execution that harvests credentials, environment variable…
worm
credential theft
npm
pypi
supply chain attack
self-propagating
canisterworm
2026-04-22
icp canister
Published: April 22, 2026
Downloadable IOCs: 7

Void Dokkaebi Uses Fake Job Interview Lure to Spread Malware via Code Repositories

Void Dokkaebi, also known as Famous Chollima, has evolved its operations into a self-propagating supply chain threat targeting software developers. The North Korea-aligned group uses fabricated job interviews to lure developers into cloning malicious repositories. Once compromised, the victim's mac…
north korea
beavertail
supply chain attack
invisibleferret
ottercookie
2026-04-21
blockchain infrastructure
dev#popper rat
developer targeting
fake job interview
git history tampering
omnistealer
repository poisoning
vs code exploitation
worm propagation
Published: April 21, 2026
Downloadable IOCs: 10

Fake recruiter campaign targets crypto developers with RAT

A sophisticated fake recruitment campaign named 'graphalgo' has been active since May 2025, targeting JavaScript and Python developers in the cryptocurrency sector. Attackers approach victims through LinkedIn, Facebook, and Reddit with fabricated job opportunities from fake blockchain companies lik…
north korea
supply chain attack
blockchain
2026-04-13
bigmathex
bigmathix
bigmathlib
bigmathutils
bignum
bignumberx
bignumex
bignumx
bigpyx
cryptocurrency targeting
fake recruitment
graphalgo
graphchain
graphdict
graphex
graphflowx
graphflux
graphhub
graphkitx
graphlibcore
graphlibx
graphlink
graphnet
graphnetworkx
graphnode
graphorbit
graphrix
graphsync
javascript developers
netstruct
npm packages
pypi packages
python developers
terminal-kleur
terminalcolor256
Published: April 13, 2026
Downloadable IOCs: 61

NPM Package Supply Chain Compromise Leads to RAT Deployment

A supply chain attack targeting the Axios npm package has been identified after threat actors compromised the npm account of the company's lead developer. Malicious versions ([email protected] and [email protected]) were published containing a hidden dependency that executed postinstall scripts during npm in…
rat
supply chain attack
npm package compromise
2026-04-10
axios package
ci/cd pipelines
dependency poisoning
developer environments
postinstall script
rat deployment
Published: April 10, 2026
Downloadable IOCs: 2

North Korea's Contagious Interview Campaign Spreads Across 5 Ecosystems, Delivering Staged RAT Payloads

A North Korean threat operation has published malicious packages across npm, PyPI, Go Modules, crates.io, and Packagist, impersonating legitimate developer tooling. The campaign uses GitHub aliases including golangorg and aokisasakidev to distribute staged malware loaders that contact actor-control…
rat
north korea
credential theft
contagious interview
supply chain attack
cryptocurrency wallet
2026-04-08
cross-ecosystem
developer tooling
pypi npm
staged loader
Published: April 8, 2026
Downloadable IOCs: 3

Detections for the Axios supply chain compromise

A supply chain attack targeting Axios npm package versions 1.14.1 and 0.30.4 introduced a malicious transitive dependency ([email protected]) that executed during installation. The attack deploys cross-platform payloads across Linux, Windows, and macOS through a consistent pattern: Node.js spaw…
supply chain attack
axios
2026-04-07
post-install execution
Published: April 7, 2026
Downloadable IOCs: 9

Inside the Axios supply chain compromise - one RAT to rule them all

Elastic Security Labs identified a supply chain compromise of the axios npm package, one of the most depended-upon packages in the JavaScript ecosystem with approximately 100 million weekly downloads. The attacker compromised a maintainer account and published backdoored versions that delivered a c…
javascript
supply chain attack
axios
2026-04-01
npm package compromise
Published: April 1, 2026
Downloadable IOCs: 3

Axios Front-End Library npm Supply Chain Poisoning Alert

On March 31, NSFOCUS CERT detected that the npm repository of the HTTP client library Axios was poisoned by the supply chain. The attacker bypassed the normal GitHub Actions CI/CD pipeline of the project, changed the account email address of the axios maintainer to an anonymous ProtonMail address, …
supply chain
npm
supply chain attack
axios
2026-04-01
Published: April 1, 2026
Downloadable IOCs: 1

Weaponizing the Protectors: TeamPCPs Multi-Stage Supply Chain Attack on Security Infrastructure

Between late February and March 2026, threat group TeamPCP conducted a highly calculated, escalating sequence of supply chain threats. It systematically compromised widely trusted open-source security tools, including the vulnerability scanners Trivy and KICS and the popular AI gateway LiteLLM. The…
wiper
supply chain attack
CVE-2025-55182
canisterworm
2026-04-01
teampcp
Published: April 1, 2026
Linked vulnerabilities : CVE-2025-55182 (CVSS 10.0)
Downloadable IOCs: 36

Axios NPM Distribution Compromised in Supply Chain Attack

An unknown threat actor compromised the npm account of an axios maintainer, publishing two malicious versions of the package. These versions introduced a dependency on plain-crypto-js, a newly created malicious package. Despite quick removal, axios's widespread usage led to rapid exposure. The mali…
npm
remote access trojan
supply chain attack
axios
2026-03-31
credential compromise
plain-crypto-js
Published: March 31, 2026
Downloadable IOCs: 6

TeamPCP’s Telnyx Attack Marks a Shift in Tactics Beyond LiteLLM

TeamPCP launched a sophisticated attack on the Telnyx Python SDK, publishing malicious versions 4.87.1 and 4.87.2 to PyPI. The attack represents an evolution from their previous LiteLLM campaign, incorporating WAV-based steganography, split-file code injection, and expanded platform support. The pa…
persistence
steganography
credential theft
pypi
multi-platform
base64 encoding
supply-chain attack
2026-03-30
wav files
Published: March 30, 2026
Downloadable IOCs: 5

Telnyx Python SDK Compromised to Deliver Credential-Stealing Malware

A supply chain attack affecting the telnyx Python package on PyPI has been identified. Malicious versions 4.87.1 and 4.87.2 contained embedded credential-harvesting malware. The attack employs a three-stage runtime chain on Linux/macOS using audio steganography for delivery, in-memory execution of …
steganography
pypi
supply-chain-attack
credential-harvesting
2026-03-28
fileless-execution
hybrid-encryption
telnyx
Published: March 28, 2026
Downloadable IOCs: 3

AI Infrastructure Supply Chain Poisoning Alert

A supply chain poisoning attack on LiteLLM, a popular AI model gateway, was detected by NSFOCUS Technology CERT. The TeamPCP group compromised the Trivy security scanning tool used in LiteLLM's release process, allowing them to publish malicious versions 1.82.7 and 1.82.8 on PyPI. These versions co…
credential theft
kubernetes
pypi
supply chain attack
ai infrastructure
open source
litellm
2026-03-27
software security
Published: March 27, 2026
Downloadable IOCs: 4

GlassWorm attack installs fake browser extension for surveillance

GlassWorm is a sophisticated malware targeting developers through compromised code repositories and package managers. It executes in stages, starting with a stealthy infection that fingerprints the machine and fetches further payloads via the Solana blockchain. The malware steals sensitive data, in…
infostealer
cryptocurrency
developers
remote access trojan
supply chain attack
blockchain
browser extension
2026-03-26
glassworm
Published: March 26, 2026
Downloadable IOCs: 1

Supply Chain Attack: Malicious PyPI Packages

TeamPCP has launched a supply chain attack targeting LiteLLM, an open-source Python library used in 36% of cloud environments. Malicious versions 1.82.7 and 1.82.8 were published on PyPI, employing sophisticated techniques for payload delivery and persistence. The compromised packages exploit Pytho…
cloud security
pypi
supply chain attack
2026-03-25
litellm
Published: March 25, 2026
Downloadable IOCs: 1

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

On March 19, 2026, Trivy, an open-source vulnerability scanner, was compromised in a sophisticated CI/CD supply chain attack. Threat actors, identified as TeamPCP, injected credential-stealing malware into official Trivy releases, affecting the core binary and GitHub Actions. The attack exploited m…
credential theft
supply chain attack
trivy
2026-03-25
Published: March 25, 2026
Downloadable IOCs: 2

Supply chain compromise spreads from Trivy to Checkmarx GitHub Actions

A threat actor known as TeamPCP expanded its supply chain attack from Aqua Security's Trivy to Checkmarx's AST GitHub Action. The attack, which began on March 19, 2026, involved injecting a credential-stealing payload into CI/CD pipelines across thousands of repositories. The malicious code harvest…
supply chain attack
teampcp cloud stealer
2026-03-24
ci/cd compromise
Published: March 24, 2026
Downloadable IOCs: 0

KICS GitHub Action Compromised: TeamPCP Supply Chain Attack

The KICS GitHub Action, an open-source infrastructure as code security scanner by Checkmarx, was compromised by TeamPCP, the group behind the recent Trivy attack. Between 12:58 and 16:50 UTC on March 23, 35 tags were hijacked, exposing users to credential-stealing malware. The attack involved stagi…
credential theft
supply chain attack
cloud credentials
2026-03-24
infrastructure as code
kics
Published: March 24, 2026
Downloadable IOCs: 4

GhostClaw expands beyond npm: GitHub repositories and AI workflows deliver macOS infostealer

The GhostClaw malware campaign has expanded its distribution methods beyond npm packages to include GitHub repositories and AI-assisted development workflows. The attackers impersonate legitimate tools and utilize multi-stage payloads to steal credentials and retrieve additional malicious code. The…
credential-theft
macos
github
supply-chain-attack
2026-03-23
ghostclaw
ghostloader
Published: March 23, 2026
Downloadable IOCs: 16

Widespread GitHub Actions Tag Compromise Exposes CI/CD Secrets

A new supply chain attack targeting Trivy has compromised 75 out of 76 version tags in the aquasecurity/trivy-action GitHub repository. The attacker force-pushed these tags to serve malicious payloads, effectively turning trusted version references into a distribution mechanism for an infostealer. …
infostealer
exfiltration
credential theft
supply chain attack
github actions
ci/cd
2026-03-20
teampcp cloud stealer
trivy
typosquat
Published: March 20, 2026
Downloadable IOCs: 2

New Malware Targets Users of Cobra DocGuard Software

A novel and stealthy threat called Infostealer.Speagle has been discovered, hijacking the functionality of Cobra DocGuard, a legitimate security software. This malware collects sensitive information from infected computers and transmits it to a compromised Cobra DocGuard server, masking the data ex…
plugx
korplug
data exfiltration
evasion techniques
supply chain attack
2026-03-19
ballistic missiles
cobra docguard
infostealer.speagle
Published: March 19, 2026
Downloadable IOCs: 7

An AI-Powered Bot Actively Exploiting GitHub Actions - Microsoft, DataDog, and CNCF Projects Hit So Far

A week-long automated attack campaign targeted CI/CD pipelines across major open source repositories, achieving remote code execution in multiple targets. The attacker, an autonomous bot called hackerbot-claw, used five different exploitation techniques and successfully exfiltrated a GitHub token w…
remote code execution
supply chain attack
token theft
github actions
2026-03-03
autonomous bot
ci/cd
open source
Published: March 3, 2026
Downloadable IOCs: 4

Funnull Resurfaces: Exposing RingH23 Arsenal and MacCMS Supply Chain Attacks

The report details the resurgence of the Funnull cybercriminal group, now utilizing a new arsenal called RingH23. It exposes their tactics, including compromising GoEdge CDN nodes, poisoning the MacCMS supply chain, and deploying sophisticated malware components like Badredis2s, Badnginx2s, and Bad…
cryptocurrency theft
supply chain attack
traffic hijacking
2026-03-02
badhide2s
badnginx2s
badredis2s
cdn poisoning
maccms
ringh23
v2deck
Published: March 2, 2026
Downloadable IOCs: 40

Malicious Go 'crypto' Module Steals Passwords and Deploys Rekoobe Backdoor

A malicious Go module impersonating the legitimate golang.org/x/crypto has been discovered, containing a backdoor in ssh/terminal/terminal.go. This module captures passwords, exfiltrates them, and executes remote commands. The attack chain includes a Linux stager that installs an SSH key for persis…
backdoor
golang
supply-chain-attack
2026-02-27
cryptography-impersonation
github-abuse
linux-malware
password-theft
rekoobe
Published: February 27, 2026
Downloadable IOCs: 10

Four Malicious NuGet Packages Target ASP.NET Developers With JIT Hooking and Credential Exfiltration

A NuGet supply chain attack involving four malicious packages targeting ASP.NET web application developers has been discovered. The campaign deploys a multi-stage payload where NCryptYo acts as a dropper, establishing a local proxy, while companion packages exfiltrate ASP.NET Identity data and acce…
backdoor
obfuscation
typosquatting
supply-chain-attack
asp.net
nuget
2026-02-24
credential-exfiltration
domoauth2_
iraoauth2.0
jit-manipulation
ncryptyo
simplewriter_
Published: February 24, 2026
Downloadable IOCs: 4

Malicious OpenClaw Skills Used to Distribute Atomic MacOS Stealer

A new campaign exploits OpenClaw skills to distribute the Atomic MacOS Stealer (AMOS). This evolution in supply chain attacks manipulates AI agentic workflows to install malware. The campaign spans multiple repositories with hundreds of malicious skills uploaded to ClawHub and SkillsMP. The infecti…
stealer
macos
amos
supply chain attack
atomic macos stealer (amos)
clawhub
openclaw
2026-02-23
ai manipulation
skillsmp
Published: February 23, 2026
Downloadable IOCs: 29

Law Firm Sites Hijacked in Suspected Supply-Chain Attack

GrayCharlie, a threat actor active since mid-2023, compromises WordPress sites to inject links redirecting visitors to NetSupport RAT payloads via fake browser updates or ClickFix mechanisms. These infections often lead to Stealc and SectopRAT deployments. The group's infrastructure is primarily li…
wordpress
stealc
clickfix
netsupport rat
sectoprat
supply-chain attack
2026-02-18
fake browser updates
hz hosting ltd
law firms
mivocloud
Published: February 18, 2026
Downloadable IOCs: 147

The tablet conqueror and the links between major Android botnets

A new Android backdoor called Keenadu has been discovered embedded in the firmware of several tablet brands. It infects the libandroid_runtime.so library during firmware building, injecting itself into every app launched on the device. Keenadu provides attackers unrestricted control over victims' d…
backdoor
android
ad fraud
botnets
triada
supply chain attack
badbox
firmware
nova
vo1d
2026-02-17
keenadu
Published: February 17, 2026
Downloadable IOCs: 6

Investigation on the EmEditor Supply Chain Cyberattack

A recent supply chain attack targeting EmEditor users has been uncovered, involving watering hole tactics. The investigation reveals multiple domains masquerading as EmEditor-related sites, all registered through NameSilo LLC in December 2025. The domains resolve to various IP addresses, with some …
powershell
command and control
watering hole
supply chain attack
domain masquerading
emeditor
2026-02-09
Published: February 9, 2026
Downloadable IOCs: 4

341 Malicious Clawed Skills Found by the Bot They Were Targeting

A massive malware campaign dubbed ClawHavoc has been uncovered in the ClawHub marketplace, targeting OpenClaw bots and their users. An AI bot named Alex, working with security researcher Oren Yomtov, discovered 341 malicious skills, including 335 from a single campaign. The malware, identified as A…
typosquatting
amos
supply chain attack
crypto wallets
2026-02-04
atomic stealer (amos)
bot security
clawhub
malicious skills
openclaw
Published: February 4, 2026
Downloadable IOCs: 13

Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw

Almost 400 fake crypto trading add-ons in the Moltbot/OpenClaw AI assistant project have been discovered, potentially leading users to install information-stealing malware. These add-ons, known as skills, masquerade as cryptocurrency trading automation tools and target various platforms. The malici…
social engineering
cryptocurrency
information-stealing
endpoint security
supply chain attack
2026-02-04
openclaw
ai agents
ai assistant
Published: February 4, 2026
Downloadable IOCs: 1

NuGet malware targets crypto wallets, OAuth tokens

ReversingLabs discovered malicious packages on NuGet targeting the crypto ecosystem. The campaign, starting in July 2025, involved 14 packages impersonating legitimate crypto-related tools. The malware aimed to steal crypto funds by redirecting transactions or exfiltrating secrets for wallet access…
cryptocurrency
supply chain attack
oauth
homoglyphs
2025-12-17
coinbase.net.api
googleads.api
netherеum.all
nuget
version bumping
wallet stealer
Published: December 17, 2025
Downloadable IOCs: 0

Defending Against Sha1-Hulud: The Second Coming

A new variant of the NPM supply chain attack, dubbed Sha1-Hulud, has emerged with enhanced capabilities. Unlike its predecessor, this attack executes in the preinstall phase, targeting popular packages such as Postman, Zapier, and AsyncAPI. The malware harvests credentials across AWS, Azure, and GC…
persistence
npm
supply chain attack
package compromise
2025-11-27
github actions
sha1-hulud
cloud credentials
software development
Published: November 27, 2025
Downloadable IOCs: 3

Shai-Hulud 2.0: Aggressive & Automated, One Of Fastest Spreading NPM Supply Chain Attacks Ever Observed

In November 2025, security researchers identified Shai-Hulud 2.0, an aggressive and automated supply-chain attack targeting the npm ecosystem. This second wave of the Shai-Hulud campaign demonstrated unprecedented automation and propagation speed, compromising hundreds of npm packages within hours.…
backdoor
worm
credential harvesting
npm
github
automation
supply-chain attack
2025-11-27
shai-hulud 2.0
Published: November 27, 2025
Downloadable IOCs: 4

The Evolution of Qilin RaaS

Qilin ransomware is used for domain-wide encryption, and a ransom is then demanded for the decryption keys and/or to prevent the publication of the stolen data. Qilin affiliates are recruited from cybercrime forums to use the Qilin RaaS platform, which handles payload generation, the publication of…
phishing
ransomware
bitcoin
qilin
ryuk
raas
tor
supply chain attack
nova
2025-10-08
onion
fin12
alphvblackcat
kela
agenda
wikileaks
Published: October 8, 2025
Downloadable IOCs: 5

Shai-Hulud worm infects npm packages

A self-propagating malware called Shai-Hulud has infected over 500 npm packages, including one with over two million weekly downloads. The worm steals sensitive data, exposes private repositories, and hijacks victim credentials to spread further. It executes when an infected package is installed, c…
worm
data-theft
npm
github
supply-chain-attack
package-infection
shai-hulud
2025-09-25
self-propagating
Published: September 25, 2025
Downloadable IOCs: 0

Malicious PyPI Packages Deliver SilentSync RAT

Two malicious Python packages, sisaws and secmeasure, were discovered in the Python Package Index (PyPI) repository. These packages, created by the same author, deliver a Remote Access Trojan (RAT) called SilentSync. The RAT is capable of remote command execution, file exfiltration, screen capturin…
rat
python
typosquatting
supply chain
data theft
remote access
pypi
data-exfiltration
supply-chain-attack
browser-data-theft
2025-09-18
silentsync
2025-09-19
python packages
Published: September 19, 2025
Downloadable IOCs: 0

Ethereum smart contracts used to push malicious code on npm

A novel technique utilizing Ethereum smart contracts was discovered in two npm packages to conceal malicious commands for installing downloader malware. The packages, colortoolsv2 and mimelib2, are part of a larger campaign targeting npm and GitHub. The attackers created sophisticated GitHub reposi…
social engineering
cryptocurrency
npm
supply chain attack
ethereum
2025-09-04
smart contracts
colortoolsv2
mimelib2
Published: September 4, 2025
Downloadable IOCs: 0

Google and Microsoft Trusted Them. 2.3 Million Users Installed Them. They Were Malware.

A coordinated campaign of 18 malicious browser extensions infected 2.3 million users across Chrome and Edge. These extensions, including a color picker tool, appeared legitimate with verified badges and high install counts. The RedDirection campaign implemented sophisticated browser hijacking mecha…
supply chain attack
chrome
edge
browser extension
2025-07-10
reddirection
trust exploitation
verification bypass
Published: July 10, 2025
Downloadable IOCs: 7

Malicious pull request infects VS Code extension

A VS Code extension for Ethereum smart contract development, ETHcode, was compromised through a GitHub pull request. The attacker, using a newly created account, submitted a PR that introduced a malicious dependency and code to execute it. The compromise was subtle, involving only two lines of code…
github
vs code
supply chain attack
ethereum
javascript obfuscation
2025-07-09
ethcode
keythereum-utils
pull request
Published: July 9, 2025
Downloadable IOCs: 0

Threat actor Banana Squad exploits GitHub repos in new campaign

ReversingLabs researchers have uncovered a new campaign by the threat actor Banana Squad, involving over 60 GitHub repositories containing hundreds of trojanized Python files. The attackers create fake user accounts to host malicious repositories that mimic legitimate ones, using a technique that h…
backdoor
python
open-source
github
stealth techniques
supply chain attack
software supply chain
open-source security
code obfuscation
2025-06-19
2025-06-20
trojanized repositories
Published: June 20, 2025
Downloadable IOCs: 275

Beware of AI Pickpockets: Pickai Backdoor Spreading Through ComfyUI Vulnerability

A new backdoor named Pickai is exploiting ComfyUI vulnerabilities to spread and steal sensitive AI data. Developed in C++, Pickai offers remote command execution and reverse shell capabilities with strong persistence and evasion techniques. It uses multiple C2 servers for redundancy and has infecte…
backdoor
evasion
vulnerability
persistence
c2
supply chain attack
2025-06-13
pickai
comfyui
ai data theft
Published: June 13, 2025
Downloadable IOCs: 9

PyPI Supply Chain Attack Uncovered: Colorama and Colorizr Name Confusion

A malicious package campaign targeting Python and NPM users on Windows and Linux has been discovered. The attack uses typo-squatting and name-confusion tactics against the popular colorama Python package and the similar colorizr JavaScript package. Multiple packages with risky payloads were uploade…
typosquatting
remote-access
npm
pypi
data-exfiltration
supply-chain-attack
2025-06-02
colorama
colorizr
Published: June 2, 2025
Downloadable IOCs: 2

Malicious attack method on hosted ML models now targets PyPI

A new malicious campaign has been discovered targeting the Python Package Index (PyPI) by exploiting the Pickle file format in machine learning models. Three malicious packages posing as an Alibaba AI Labs SDK were detected, containing infostealer payloads hidden inside PyTorch models. The packages…
infostealer
ai
pypi
machine learning
supply chain attack
pytorch
2025-05-26
pickle format
Published: May 26, 2025
Downloadable IOCs: 2

Backdoor implant discovered on PyPI posing as debugging utility

A sophisticated malicious package named 'dbgpkg' was detected on PyPI, masquerading as a Python debugging utility. The package implants a backdoor on systems, enabling execution of malicious code and data exfiltration. It uses function wrapping techniques to evade detection and is believed to be pa…
backdoor
russia
ukraine
pypi
supply chain attack
hacktivist
2025-05-15
dbgpkg
function wrapping
global socket toolkit
requestsdev
discordpydebug
Published: May 15, 2025
Downloadable IOCs: 0

PyPI package targets Solana developers

A malicious PyPI package named solana-token has been discovered targeting Solana blockchain developers. The package, downloaded over 600 times, attempts to steal source code and developer secrets from infected machines. It uses suspicious behaviors like communicating with IP addresses on non-standa…
infostealer
cryptocurrency
exfiltration
open-source
pypi
blockchain
supply-chain-attack
2025-05-13
solana
solana-token
Published: May 13, 2025
Downloadable IOCs: 0

Disruption of Drone Supply Chains Through Coordinated Multi-Wave Attacks in Taiwan

Earth Ammit, a Chinese-linked threat actor, conducted two campaigns targeting drone supply chains in Taiwan and South Korea from 2023 to 2024. The VENOM campaign focused on software service providers using open-source tools, while TIDRONE targeted military industries with custom malware. Their tact…
south korea
taiwan
supply chain attack
2025-05-13
drone industry
venom campaign
custom backdoor
screencap
fiber-based
clntend
venfrpc
cxclnt
tidrone campagin
military sector
Published: May 13, 2025
Downloadable IOCs: 29

wget to Wipeout: Malicious Go Modules Fetch Destructive Payload

Socket's research team discovered a supply-chain attack targeting Go developers through three malicious modules: prototransform, go-mcp, and tlsproxy. These modules used obfuscation techniques to deliver a disk-wiping payload, exploiting the open nature of Go's ecosystem. The attack leveraged names…
linux
obfuscation
data destruction
2025-05-02
supply-chain attack
disk-wiper
go modules
namespace confusion
Published: May 2, 2025
Downloadable IOCs: 2

Malicious PyPi Package Detected Stealing Crypto Tokens

A malicious PyPI package named ccxt-mexc-futures has been discovered by security researchers. This package claims to extend the capabilities of the legitimate CCXT library for cryptocurrency trading, specifically for futures trading on the MEXC exchange. However, it actually hijacks user orders and…
cryptocurrency
pypi
supply-chain-attack
2025-04-16
api-hijacking
ccxt
mexc
Published: April 16, 2025
Downloadable IOCs: 2

Typosquatted Go Packages Deliver Malware Loader Targeting Li...

A malicious campaign is targeting the Go ecosystem with typosquatted packages that install hidden loader malware on Linux and macOS systems. The threat actor has published at least seven packages impersonating popular Go libraries, using array-based string obfuscation to hide malicious commands. Th…
linux
obfuscation
typosquatting
macos
supply-chain-attack
2025-04-04
elf-malware
go-packages
f0eee999
Published: April 4, 2025
Downloadable IOCs: 0

Over 150K websites hit by full-page hijack linking to Chinese gambling sites

In February, C/Side uncovered a threat actor targeting over 35,000 websites with a malicious full-page hijack injection. C/Side continued to monitor this actor’s activities and have identified new tactics and techniques. They’ve scaled up their operations significantly, as we now estimate that appr…
javascript
cyber
chinese
credit card skimmer
supply chain attack
magecart
2025-03-27
february
blog
c/side
client-side
web
development
client/side
cyber security
security
pci dss v4
browser attack
formjacking
website vulnerability scanner
data breaches
content security policies
tag manager
browser side script
javascript security
html entity
uiux changesthe
bet365
english
williamhill
id parameter
css position
Published: March 27, 2025
Downloadable IOCs: 15

From Credit Card Skimming to Exploiting Zero-Days

XE Group, a cybercriminal organization active since 2013, has evolved from credit card skimming to exploiting zero-day vulnerabilities. The group initially focused on web vulnerabilities and supply chain attacks but has now shifted to targeted information theft in manufacturing and distribution sec…
powershell
zero-day
meterpreter
aspxspy
webshell
supply-chain-attack
2025-02-03
CVE-2024-57968
CVE-2025-25181
information-theft
remote-access-trojan
sql-injection
persistent-access
Published: February 3, 2025
Linked vulnerabilities : CVE-2024-57968 (CVSS 9.9), CVE-2025-25181 (CVSS 5.8), CVE-2019-18935, CVE-2017-9248
Downloadable IOCs: 17

Compromised ultralytics PyPI package delivers crypto coinminer

A malicious version of the popular AI library ultralytics was published on PyPI, containing downloader code for the XMRig coinminer. The compromise was achieved by exploiting a known GitHub Actions script injection. Two versions, 8.3.41 and 8.3.42, were affected before a clean version 8.3.43 was re…
xmrig
coinminer
pypi
2024-12-07
ultralytics
supply-chain-attack
Published: December 7, 2024
Downloadable IOCs: 0

Differential analysis raises red flags over @lottiefiles/lottie-player

ReversingLabs researchers discovered malicious versions of the popular npm package @lottiefiles/lottie-player. Versions 2.0.5, 2.0.6, and 2.0.7 were compromised and used to spread malicious code designed to steal crypto wallet assets. The attackers altered the lottie-player.js file, replacing its c…
npm
cryptocurrency theft
supply chain attack
2024-11-22
package compromise
open-source security
differential analysis
Published: November 22, 2024
Downloadable IOCs: 0

Threat Assessment: Distributors of BlackSuit Ransomware

Ignoble Scorpius, previously known as Royal ransomware, has rebranded as BlackSuit ransomware and increased its activity since March 2024. The group has targeted at least 93 victims globally, with a focus on the construction and manufacturing industries. Their initial ransom demands average 1.6% of…
ransomware
extortion
cobalt strike
credential theft
gootloader
lateral movement
mimikatz
data exfiltration
blacksuit
systembc
supply chain attack
2024-11-20
nanodump
Published: November 20, 2024
Downloadable IOCs: 2

Triad Nexus: FUNNULL CDN hosting DGA domains for suspect Chinese sites

Silent Push has uncovered a large-scale malicious infrastructure dubbed 'Triad Nexus' hosted on the FUNNULL content delivery network. The investigation revealed over 200,000 unique hostnames, with 95% created using Domain Generation Algorithms. FUNNULL is linked to hosting suspect gambling websites…
phishing
dga
gambling
2024-10-23
supply chain attack
funnull
triad nexus
suncity group
cdn
Published: October 23, 2024
Downloadable IOCs: 70
Click here to see more Attack Reports