Supply Chain

6 June 2026npm ecosystem, Node.js developers, 50+ npm packages

Coordinated npm Supply Chain Attack Combines Information Stealer with Self-Propagating Worm

Threat actors have compromised over 50 npm packages to distribute IronWorm (a Rust-based information stealer with kernel rootkit capabilities) and a new Miasma worm variant capable of self-propagation. Developers using these poisoned packages face immediate risk of credential theft and persistent system compromise.

6 June 2026Toshiba, Muji, Polyfill library users

Polyfill CDN Compromise Enables Credential Theft on Toshiba and Muji Websites

Toshiba and Muji websites served malicious login prompts via a compromised polyfill library, enabling attackers to harvest user credentials from visitors. This represents a supply-chain attack exploiting third-party JavaScript dependencies.

24 May 2026Laravel Lang packages, Composer package repository, PHP developers using Laravel

Laravel Lang Supply Chain Attack: Credential Theft via Composer Tag Hijacking

Attackers compromised Laravel Lang localisation packages on Composer by exploiting GitHub version tags to inject credential-stealing malware, directly exposing developer environments to post-compromise exfiltration. This represents a high-risk supply chain breach affecting a widely-used ecosystem package.

23 May 2026U.S. Cybersecurity & Infrastructure Security Agency (CISA), AWS GovCloud

CISA Contractor Credential Exposure: Insider Threat Reveals AWS GovCloud Keys Published to Public GitHub

A CISA contractor intentionally published AWS GovCloud credentials and classified agency materials to a public GitHub repository, forcing CISA into active remediation whilst Congress demands accountability for what appears to be a deliberate insider breach.

23 May 2026Unnamed web hosting company, Multiple threat actors relying on compromised infrastructure

Dutch law enforcement dismantles bulletproof hosting infrastructure supporting organised cyber operations

Dutch financial crime authorities arrested two operators and seized 800 servers from a web hosting company that provided infrastructure for coordinated cyberattacks, interference campaigns, and disinformation operations. This represents a significant disruption to a criminal supply chain enabling multiple threat actors.

21 May 2026npm ecosystem, Node.js projects, CI/CD pipelines

npm Supply Chain Evolution: Multi-Stage Attacks and CI/CD Persistence Mechanisms Post-Shai Hulud

Unit 42 documents a shift in npm ecosystem attacks toward wormable malware, CI/CD persistence, and multi-stage payload delivery following the Shai Hulud incident. This represents an escalation in sophistication and suggests adversaries are moving beyond simple package hijacking to establish durable infrastructure.

21 May 2026GitHub, Nx Console (nrwl.angular-console), Microsoft Visual Studio Code

Supply-chain compromise through VS Code extension: GitHub's internal repos breached via poisoned Nx Console

GitHub confirmed that a breach of its internal repositories resulted from a compromised employee device running a malicious version of the Nx Console VS Code extension, after the extension's developer account was itself compromised.

20 May 2026Grafana Labs, npm ecosystem consumers, TanStack users

Grafana GitHub Breach: Source Code Exposure Limited to Development Environment, Supply Chain Risk Via npm Artifacts Remains

Grafana Labs suffered a GitHub environment breach on May 19, 2026, exposing source code and internal repositories but not production systems. The incident appears connected to a TanStack npm attack vector, raising concerns about compromised package distribution.

highSupply ChainEmerging

GitHub Internal Repository Breach Exposes Private Code: TeamPCP Claims Access to 4,000 Repositories

TeamPCP claims to have breached GitHub's internal repositories and accessed approximately 4,000 private code repositories. This represents a potential supply-chain risk if the breach is verified, as GitHub's internal systems are trusted infrastructure for the software development ecosystem.

20 May 2026GitHub, GitHub Enterprise users

19 May 2026AWS GovCloud, CISA internal systems, Cybersecurity & Infrastructure Security Agency

CISA Contractor Exposed AWS GovCloud Credentials and Internal CI/CD Infrastructure via Public GitHub Repository

A CISA contractor maintained a public GitHub repository containing AWS GovCloud credentials for highly privileged accounts and documentation of CISA's internal software build, test, and deployment processes. The exposure represents a significant compromise of US government infrastructure security practices and threat intelligence operations.

19 May 2026GitHub Actions, actions-cool/issues-helper, Any workflow using issues-helper at any version tag

GitHub Actions Tag Spoofing Attack on issues-helper Demonstrates Repository Compromise at Scale

Threat actors compromised the popular GitHub Actions workflow issues-helper by redirecting all repository tags to malicious commits, enabling CI/CD credential theft from potentially thousands of dependent workflows. This represents a sophisticated supply chain attack exploiting the trust model of GitHub Actions.

18 May 2026npm, PyPI, Docker Hub +1

Coordinated Supply Chain Attacks Target Developer Credentials Across npm, PyPI, and Docker Hub

Three separate campaigns hit major package repositories within 48 hours, targeting secrets and credentials stored in developer workstations and CI/CD pipelines. The shift from code injection to credential theft represents a fundamental escalation in supply chain attack sophistication.

15 May 2026node-ipc npm package, Node.js projects using affected versions

Supply-chain compromise in node-ipc npm package: three malicious versions distribute data-stealing backdoor

Three versions of the widely-used node-ipc npm package (9.1.6, 9.2.3, 12.0.1) were found to contain malicious code designed to exfiltrate developer secrets and credentials. This represents a direct compromise of a critical infrastructure dependency affecting Node.js projects globally.

15 May 2026OpenAI, TanStack, npm ecosystem +2

Coordinated supply chain compromise targets AI companies through TanStack and ecosystem packages

A supply chain campaign has compromised the TanStack npm library and related packages on npm and PyPI, affecting multiple AI companies including OpenAI. The attack leverages trusted open-source dependencies to distribute malicious code to downstream users.

13 May 2026Foxconn, Electronics manufacturing supply chain

Foxconn North American Operations Targeted: Supply Chain Resilience Under Pressure

Foxconn confirmed a cyberattack affecting multiple North American manufacturing facilities across six US states and Mexico, but has withheld specifics on scope and impact. The incident threatens critical supply chains for consumer electronics and automotive components.

12 May 2026Checkmarx Jenkins AST Plugin, Checkmarx, Jenkins

TeamPCP Supply Chain Attack Targets Checkmarx Jenkins Plugin: Second Compromise in Weeks

Threat actor TeamPCP compromised the Checkmarx Jenkins AST plugin on the Jenkins Marketplace, following their earlier attack on Checkmarx's KICS tool. Affected users must immediately downgrade to version 2.0.13-829.vc72453fa_1c16 or earlier to avoid potential system compromise.

10 May 2026Canvas LMS, Educational institutions (schools, colleges, universities)

Canvas LMS Supply Chain Extortion: 275M Student Records at Risk Across 9,000 Institutions

Cybercriminals breached Canvas, a learning management system serving 9,000 educational institutions, and defaced login pages with ransom demands whilst threatening to leak records for 275 million students and faculty. The attack represents a supply-chain compromise of education infrastructure affecting operational continuity at scale.

10 May 2026JDownloader, Windows users, Linux users

JDownloader Supply Chain Compromise Distributes Python RAT via Official Website

Attackers compromised the JDownloader website and replaced legitimate installers with malicious builds containing a Python-based remote access trojan, affecting both Windows and Linux users downloading from the official source.

3 May 2026Instructure Canvas

Canvas Learning Platform Incident Exposes EdTech Supply Chain Risk at Scale

Instructure, operator of Canvas, has disclosed a cybersecurity incident under investigation. Given Canvas's penetration across schools and universities globally, any compromise of user data or platform integrity could affect millions of students and educators.

30 April 2026Quick Page/Post Redirect plugin

Five-year dormant backdoor in 70k-site WordPress plugin exposes supply-chain timing risk

The Quick Page/Post Redirect WordPress plugin contained a backdoor injected five years ago that remained undetected across 70,000+ installations, allowing arbitrary code execution. This demonstrates how supply-chain compromises can persist for years within popular plugins before discovery.

30 April 2026SAP npm packages, SAP developers, organisations using SAP development tools

SAP npm supply-chain compromise reveals persistent TeamPCP targeting of enterprise developer infrastructure

Official SAP npm packages were compromised to inject credential-stealing malware, directly compromising developers' authentication tokens and local systems. This represents a high-impact supply-chain attack against enterprise development environments at scale.

LAPSUS$ Breach of Checkmarx Exposes AppSec Tools and Internal Development Practices

LAPSUS$ threat group confirmed leaking proprietary source code and internal data stolen from Checkmarx's private GitHub repositories. The breach affects a major application security vendor and raises concerns about the security posture of tools trusted to protect enterprise software supply chains.

29 April 2026Checkmarx

29 April 2026Vimeo, Anodot

Anodot breach cascades to Vimeo: third-party monitoring tools as attack surface

Vimeo disclosed unauthorised access to customer and user data following a breach at Anodot, a third-party data anomaly detection service integrated into Vimeo's infrastructure. This exposes the risk of supply-chain compromise through monitoring and analytics vendors.

28 April 2026OpenVSX, VS Code, Open VSX Registry

GlassWorm's dormant extension network exposes supply-chain blindness in open-source IDE ecosystems

73 malicious extensions in OpenVSX remained undetected until post-install activation, demonstrating that update mechanisms in extension marketplaces can be weaponised to bypass initial vetting and achieve code execution at developer workstations.

27 April 2026Itron Inc., Electric utilities, Gas utilities +1

Itron breach exposes critical infrastructure operator's internal IT security gaps

Itron, a major provider of software and hardware to electric, gas, and water utilities globally, disclosed unauthorised access to internal IT systems via SEC filing. The breach is significant because compromised systems at critical infrastructure software vendors can enable downstream attacks on utility networks serving millions.

24 April 2026Checkmarx KICS, Docker Hub, VSCode Extension Marketplace +1

Checkmarx KICS Supply-Chain Compromise: Multi-Vector Attack on Developer Infrastructure

Attackers compromised Docker images, VSCode extensions, and Open VSX packages for the Checkmarx KICS static analysis tool to steal credentials and sensitive data from developer environments. The compromise affects any developer using these distribution channels.

24 April 2026Bitwarden CLI, npm ecosystem, developers using @bitwarden/cli

NPM supply-chain compromise: Bitwarden CLI trojanised to harvest developer credentials at scale

Attackers uploaded a malicious @bitwarden/cli package to npm that stole developer credentials and could propagate to downstream projects. The compromise was discovered and remediated rapidly, but represents a successful attack on a trusted security tool distribution channel.

20 April 2026Vercel, Context.ai

Third-party AI tool compromise enables supply-chain attack against Vercel infrastructure

Vercel suffered a breach originating from a compromised Context.ai account used by an employee, allowing attackers to pivot into internal systems via Google Workspace takeover. The incident exposes how AI tooling adoption introduces new attack surfaces in security-sensitive environments.

Vercel breach exposes developer infrastructure at scale: supply-chain risk for thousands of deployed applications

Vercel, a major cloud deployment platform used by thousands of companies, has confirmed a security incident with threat actors claiming to possess stolen data and attempting to sell it. This represents a significant supply-chain risk given Vercel's position in the modern development workflow and the potential scope of compromised customer environments.

20 April 2026Vercel

17 April 2026Marimo, Hugging Face Spaces, Python notebook users

Marimo notebook vulnerability weaponised for malware distribution via Hugging Face trusted infrastructure

Attackers exploited a flaw in Marimo (a reactive Python notebook framework) to execute arbitrary code and deploy NKAbuse malware variants through Hugging Face Spaces, a platform trusted by ML researchers and developers. This represents a supply-chain attack exploiting both a software vulnerability and the trust model of a widely-used ML hosting platform.

14 April 2026OpenAI, macOS applications signed by OpenAI, organisations using GitHub Actions with npm dependencies

OpenAI's macOS certificate rotation exposes supply chain risk in CI/CD pipelines via compromised npm packages

OpenAI discovered that malicious Axios npm packages executed within a GitHub Actions workflow and compromised macOS code-signing certificates used for application distribution. The incident highlights how CI/CD environments remain attractive targets for attackers seeking to inject malware into signed, trusted applications.

14 April 2026Rockstar Games, Anodot

Rockstar Games Analytics Breach via Anodot Supply-Chain Compromise Exposes Third-Party Data Risks

ShinyHunters gang leaked analytics data stolen from Rockstar Games following a breach at Anodot, a third-party analytics provider. This illustrates how trusted vendor compromises can expose major game publishers to data exfiltration without direct infrastructure compromise.

11 April 2026CPUID, CPU-Z, HWMonitor

CPUID supply-chain compromise exposes millions to malware via trusted hardware tools

Attackers compromised CPUID's API and modified download links on the official website to serve malicious versions of CPU-Z and HWMonitor, two ubiquitous hardware monitoring tools. This represents a high-impact supply-chain attack affecting potentially millions of end-users who trust these downloads.

5 April 2026npm registry, Strapi CMS, Node.js developers +2

NPM supply-chain attack: 36 Strapi lookalike packages deploy database exploits and persistent implants

Researchers identified 36 malicious npm packages masquerading as Strapi CMS plugins that exploit Redis and PostgreSQL instances, harvest credentials, deploy reverse shells, and install persistent implants. This represents a coordinated supply-chain attack targeting development environments with potential access to production infrastructure.

5 April 2026Axios, npm ecosystem

North Korean actors used Microsoft Teams spoofing to compromise Axios npm package maintainer

A developer maintaining the widely-used Axios HTTP client was socially engineered via a fake Microsoft Teams error message, leading to credential compromise and potential package poisoning. This demonstrates how supply-chain attacks exploit human trust in familiar platforms rather than technical defences.

2 April 2026TrueConf conference servers, TrueConf clients

TrueConf zero-day enables supply-chain malware distribution across unified communications infrastructure

Attackers are exploiting an unpatched zero-day in TrueConf conference servers to inject malicious updates that propagate to all connected client endpoints, turning legitimate software distribution channels into attack vectors.

mediumSupply ChainContained

Anthropic's Claude Code source leaked via NPM: supply-chain exposure without credential compromise

Anthropic accidentally published Claude Code's closed-source implementation to NPM, exposing proprietary code but not customer data or authentication credentials. The leak represents a supply-chain accident rather than an exploitable vulnerability, though source code disclosure carries competitive and reverse-engineering risks.

1 April 2026Anthropic Claude Code, NPM ecosystem

28 March 2026Amazon Web Services, European Commission

EU Commission's AWS compromise reveals persistent gaps in cloud security governance at institutional level

A threat actor obtained unauthorised access to the European Commission's Amazon Web Services environment, triggering an ongoing investigation. The incident highlights how even well-resourced government bodies remain vulnerable to cloud misconfigurations and identity compromise.

28 March 2026Telnyx Python package on PyPI, Python developers and applications using compromised versions

TeamPCP Exploits PyPI Trust Model with Steganographic Malware Distribution via Compromised Telnyx Package

TeamPCP compromised the legitimate Telnyx package on PyPI and uploaded malicious versions that extract credential-stealing malware from embedded WAV files. This represents a direct attack on Python's package supply chain affecting any developer who installed the backdoored version.

22 March 2026Trivy, npm package repository, 47 npm packages

CanisterWorm Supply Chain Cascade: How Trivy Compromise Enabled Self-Propagating npm Contamination

Threat actors compromised the Trivy security scanner and weaponized the breach to deploy CanisterWorm, a self-spreadingmalware leveraging ICP canisters, across 47 npm packages. This represents a particularly dangerous supply chain attack where defensive tooling becomes the attack vector.

22 March 2026Trivy, GitHub Actions, Organizations using Trivy in CI/CD workflows

Trivy Supply-Chain Compromise: When Security Tools Become Attack Vectors

Trivy, a widely-used vulnerability scanner, was breached by TeamPCP and weaponized to distribute infostealer malware through official releases and GitHub Actions integrations. This represents a direct attack on the CI/CD pipelines of thousands of organizations relying on Trivy for security.

15 March 2026Open VSX Registry, Visual Studio Code Community, Open VSX Extension Developers +1

GlassWorm Supply-Chain Escalation: Transitive Dependency Injection via Open VSX Registry

GlassWorm threat actors are exploiting extensionPack and extensionDependencies features in Open VSX to achieve transitive malware propagation across 72+ extensions, significantly improving attack efficiency and evading detection. This represents a watershed moment in IDE-based supply-chain attacks targeting developer environments.

15 March 2026AppsFlyer Web SDK, Applications using AppsFlyer Web SDK

AppsFlyer SDK Supply-Chain Compromise: Malicious JavaScript Injected at Distribution Point

AppsFlyer's Web SDK was compromised and served malicious JavaScript designed to steal cryptocurrency from end-users. This supply-chain attack affected all downstream applications integrating the SDK until remediation.

14 March 2026Steam, Valve, Steam users/gamers

Steam Supply Chain Compromise: Eight Malicious Games as Vector for Widespread Malware Distribution

Eight malicious games on Steam were used to distribute malware to an unknown number of victims. The FBI is actively soliciting victim reports, indicating this represents a significant supply-chain compromise affecting a trusted distribution platform with millions of users.

14 March 2026Microsoft Windows 11, Samsung laptops

Windows 11 February 2026 Patch Causes C: Drive Access Loss on Samsung Systems - Post-Patch Regression

Microsoft's February 2026 security updates introduced a regression affecting Samsung laptop users running Windows 11, rendering C: drives inaccessible and preventing application launches. This represents a critical post-patch quality assurance failure with widespread operational impact.

CVE-2024-29857CVE-2024-30171CVE-2024-30172CVE-2024-41996CVE-2025-6965CVE-2025-7783CVE-2025-9230CVE-2025-9232CVE-2025-9670CVE-2025-12816CVE-2025-15284CVE-2025-58751CVE-2025-58752CVE-2025-58754CVE-2025-62522CVE-2025-64718CVE-2025-64756CVE-2025-66030CVE-2025-66031CVE-2025-66035CVE-2025-66412CVE-2025-69277CVE-2026-22610

Siemens SIDIS Prime Supply Chain Vulnerability Storm - 23 CVEs from Outdated Dependencies

Siemens SIDIS Prime versions before 4.0.800 contain 23 vulnerabilities across OpenSSL, SQLite, and Node.js packages, creating a critical attack surface in industrial control environments that depend on this software.

13 March 2026Siemens SIDIS Prime <4.0.800

Fraudulent Microsoft COA Trafficking Exposes Supply Chain Risks

A Florida woman was sentenced to 22 months in prison for trafficking thousands of stolen Microsoft Certificate of Authenticity (COA) labels, highlighting vulnerabilities in software supply chain integrity.

3 March 2026Microsoft

26 February 2026UFP Technologies

Cyberattack Compromises Medical Device Manufacturer’s Data

UFP Technologies, a medical device manufacturer, has been hit by a cyberattack that compromised its IT systems and data. The incident could impact patient care and data privacy.

18 August 2025npm ecosystem, Node.js developers

npm Supply Chain Attack Compromises Popular Event-Stream Successor Package

A supply chain attack targeting a widely-used npm package injected cryptocurrency-stealing malware, affecting over 12 million weekly downloads before detection.