Supply-Chain

SAP-Linked npm Packages Compromised in Credential-Stealing Supply Chain Attack

Cybersecurity experts have uncovered a sophisticated supply chain attack targeting SAP-related npm packages, exposing developers and enterprise environments to large-scale credential theft. The campaign, identified as “Mini Shai-Hulud,” has been linked to techniques previously associated with the TeamPCP threat actor group. Compromised Packages in SAP Ecosystem The attack impacted several widely used packages within SAP’s JavaScript and […]

SAP-Linked npm Packages Compromised in Credential-Stealing Supply Chain Attack Read More »

New DPRK Campaign Uses AI-Injected npm Malware, Fake Companies, and RATs in Cyber Attacks

Cybersecurity researchers have uncovered a sophisticated cyber campaign linked to North Korean threat actors, combining AI-generated malicious code, fake corporate identities, and advanced malware to compromise developers, particularly in the Web3 and cryptocurrency ecosystem. The operation, tracked as PromptMink, has been attributed to Famous Chollima, also known as Shifty Corsair, a group previously associated with long-running

New DPRK Campaign Uses AI-Injected npm Malware, Fake Companies, and RATs in Cyber Attacks Read More »

Bitwarden CLI Breached in Ongoing Supply Chain Attack Linked to Checkmarx

A significant cybersecurity incident has emerged involving the popular password management system Bitwarden, with its command-line interface becoming the target of a sophisticated attack campaign linked to compromised software development infrastructure. Security researchers from JFrog and Socket have disclosed that version 2026.4.0 of the @bitwarden/cli package contained malicious code embedded within a file named ‘bw1.js’.

Bitwarden CLI Breached in Ongoing Supply Chain Attack Linked to Checkmarx Read More »

Malicious KICS Docker Images and VS Code Extensions Target Checkmarx in Supply Chain Attack

A serious software supply chain attack has been uncovered targeting developer tools associated with Checkmarx. Security researchers warn that compromised Docker images and Visual Studio Code extensions were used to steal sensitive data and spread malware across development environments. Poisoned Docker Images Discovered According to findings from Socket, attackers managed to manipulate the official “checkmarx/kics” Docker Hub

Malicious KICS Docker Images and VS Code Extensions Target Checkmarx in Supply Chain Attack Read More »

Backdoored Smart Slider 3 Pro Update Delivered via Compromised Nextend Servers in Supply Chain Attack

A serious software supply chain attack has been uncovered involving the popular WordPress plugin Smart Slider 3, where attackers compromised the update infrastructure to distribute a malicious version containing a hidden backdoor. According to security researchers at Patchstack, the affected release is Smart Slider 3 Pro version 3.5.1.35. The plugin, widely used across more than 800,000 websites,

Backdoored Smart Slider 3 Pro Update Delivered via Compromised Nextend Servers in Supply Chain Attack Read More »

North Korea-Linked Hackers Distribute Over 1,700 Malicious Packages Across npm, PyPI, Go, and Rust Ecosystems

A large-scale software supply chain attack linked to North Korean threat actors has been uncovered, involving the of more than 1,700 malicious packages across multiple developer ecosystems, including npm, PyPI, Go, Rust, and Packagist. The campaign, tracked as Contagious Interview, demonstrates a coordinated effort to infiltrate developer environments by disguising malware as legitimate development tools.

North Korea-Linked Hackers Distribute Over 1,700 Malicious Packages Across npm, PyPI, Go, and Rust Ecosystems Read More »

Axios Supply Chain Attack Delivers Cross-Platform RAT Through Compromised npm Account

A major supply chain security incident has impacted Axios, one of the most widely used HTTP clients in the JavaScript ecosystem. Attackers successfully introduced malicious code into the npm package by compromising a maintainer account, enabling the distribution of a cross-platform remote access trojan (RAT). Compromised npm Account Used to Publish Malicious Versions Security researchers revealed

Axios Supply Chain Attack Delivers Cross-Platform RAT Through Compromised npm Account Read More »

OpenAI Fixes ChatGPT Data Exfiltration Flaw and Codex Vulnerability Exposing GitHub Tokens

A critical security issue affecting AI systems has been resolved after researchers discovered vulnerabilities in ChatGPT and Codex that could have exposed sensitive user data and developer credentials. ChatGPT Flaw Enabled Covert Data Exfiltration Researchers from Check Point uncovered a previously unknown weakness in ChatGPT that allowed hidden data exfiltration without user awareness. The flaw made it possible for

OpenAI Fixes ChatGPT Data Exfiltration Flaw and Codex Vulnerability Exposing GitHub Tokens Read More »

TeamPCP Distributes Malicious Telnyx Packages on PyPI, Conceals Data Stealer Inside WAV Files

A new software supply chain attack has been uncovered involving TeamPCP, the same threat group previously linked to compromises of Trivy, KICS, and litellm. This time, the attackers targeted the widely used Telnyx Python package by uploading malicious versions to the Python Package Index (PyPI). Malicious Versions Disguised as Legitimate Updates Security researchers revealed that

TeamPCP Distributes Malicious Telnyx Packages on PyPI, Conceals Data Stealer Inside WAV Files Read More »

TeamPCP Backdoors LiteLLM Versions 1.82.7 to 1.82.8 Through Trivy CI CD Supply Chain Compromise

A major supply chain attack campaign has emerged as TeamPCP, the threat actor behind previous Trivy and KICS compromises, has backdoored the popular Python package LiteLLM. Versions 1.82.7 and 1.82.8, released on March 24, 2026, contained a credential harvester, Kubernetes lateral movement toolkit, and a persistent systemd backdoor. Security vendors including Endor Labs and JFrog confirmed the malicious

TeamPCP Backdoors LiteLLM Versions 1.82.7 to 1.82.8 Through Trivy CI CD Supply Chain Compromise Read More »