Software supply chain compromises, dependency attacks, and ecosystem risks.
26 items
Itron, a major provider of software and hardware to electric, gas, and water utilities globally, disclosed unauthorised access to internal IT systems via SEC filing. The breach is significant because compromised systems at critical infrastructure software vendors can enable downstream attacks on utility networks serving millions.
Attackers compromised Docker images, VSCode extensions, and Open VSX packages for the Checkmarx KICS static analysis tool to steal credentials and sensitive data from developer environments. The compromise affects any developer using these distribution channels.
Attackers uploaded a malicious @bitwarden/cli package to npm that stole developer credentials and could propagate to downstream projects. The compromise was discovered and remediated rapidly, but represents a successful attack on a trusted security tool distribution channel.
Vercel suffered a breach originating from a compromised Context.ai account used by an employee, allowing attackers to pivot into internal systems via Google Workspace takeover. The incident exposes how AI tooling adoption introduces new attack surfaces in security-sensitive environments.
Vercel, a major cloud deployment platform used by thousands of companies, has confirmed a security incident with threat actors claiming to possess stolen data and attempting to sell it. This represents a significant supply-chain risk given Vercel's position in the modern development workflow and the potential scope of compromised customer environments.
Attackers exploited a flaw in Marimo (a reactive Python notebook framework) to execute arbitrary code and deploy NKAbuse malware variants through Hugging Face Spaces, a platform trusted by ML researchers and developers. This represents a supply-chain attack exploiting both a software vulnerability and the trust model of a widely-used ML hosting platform.
OpenAI discovered that malicious Axios npm packages executed within a GitHub Actions workflow and compromised macOS code-signing certificates used for application distribution. The incident highlights how CI/CD environments remain attractive targets for attackers seeking to inject malware into signed, trusted applications.
ShinyHunters gang leaked analytics data stolen from Rockstar Games following a breach at Anodot, a third-party analytics provider. This illustrates how trusted vendor compromises can expose major game publishers to data exfiltration without direct infrastructure compromise.
Attackers compromised CPUID's API and modified download links on the official website to serve malicious versions of CPU-Z and HWMonitor, two ubiquitous hardware monitoring tools. This represents a high-impact supply-chain attack affecting potentially millions of end-users who trust these downloads.
Researchers identified 36 malicious npm packages masquerading as Strapi CMS plugins that exploit Redis and PostgreSQL instances, harvest credentials, deploy reverse shells, and install persistent implants. This represents a coordinated supply-chain attack targeting development environments with potential access to production infrastructure.
A developer maintaining the widely-used Axios HTTP client was socially engineered via a fake Microsoft Teams error message, leading to credential compromise and potential package poisoning. This demonstrates how supply-chain attacks exploit human trust in familiar platforms rather than technical defences.
Attackers are exploiting an unpatched zero-day in TrueConf conference servers to inject malicious updates that propagate to all connected client endpoints, turning legitimate software distribution channels into attack vectors.
Anthropic accidentally published Claude Code's closed-source implementation to NPM, exposing proprietary code but not customer data or authentication credentials. The leak represents a supply-chain accident rather than an exploitable vulnerability, though source code disclosure carries competitive and reverse-engineering risks.
A threat actor obtained unauthorised access to the European Commission's Amazon Web Services environment, triggering an ongoing investigation. The incident highlights how even well-resourced government bodies remain vulnerable to cloud misconfigurations and identity compromise.
TeamPCP compromised the legitimate Telnyx package on PyPI and uploaded malicious versions that extract credential-stealing malware from embedded WAV files. This represents a direct attack on Python's package supply chain affecting any developer who installed the backdoored version.
Threat actors compromised the Trivy security scanner and weaponized the breach to deploy CanisterWorm, a self-spreadingmalware leveraging ICP canisters, across 47 npm packages. This represents a particularly dangerous supply chain attack where defensive tooling becomes the attack vector.
Trivy, a widely-used vulnerability scanner, was breached by TeamPCP and weaponized to distribute infostealer malware through official releases and GitHub Actions integrations. This represents a direct attack on the CI/CD pipelines of thousands of organizations relying on Trivy for security.
GlassWorm threat actors are exploiting extensionPack and extensionDependencies features in Open VSX to achieve transitive malware propagation across 72+ extensions, significantly improving attack efficiency and evading detection. This represents a watershed moment in IDE-based supply-chain attacks targeting developer environments.
AppsFlyer's Web SDK was compromised and served malicious JavaScript designed to steal cryptocurrency from end-users. This supply-chain attack affected all downstream applications integrating the SDK until remediation.
Eight malicious games on Steam were used to distribute malware to an unknown number of victims. The FBI is actively soliciting victim reports, indicating this represents a significant supply-chain compromise affecting a trusted distribution platform with millions of users.
Microsoft's February 2026 security updates introduced a regression affecting Samsung laptop users running Windows 11, rendering C: drives inaccessible and preventing application launches. This represents a critical post-patch quality assurance failure with widespread operational impact.
Siemens SIDIS Prime versions before 4.0.800 contain 23 vulnerabilities across OpenSSL, SQLite, and Node.js packages, creating a critical attack surface in industrial control environments that depend on this software.
A Florida woman was sentenced to 22 months in prison for trafficking thousands of stolen Microsoft Certificate of Authenticity (COA) labels, highlighting vulnerabilities in software supply chain integrity.
UFP Technologies, a medical device manufacturer, has been hit by a cyberattack that compromised its IT systems and data. The incident could impact patient care and data privacy.
A supply chain attack targeting a widely-used npm package injected cryptocurrency-stealing malware, affecting over 12 million weekly downloads before detection.
A supply chain attack targeting the popular tj-actions/changed-files GitHub Action compromised CI/CD secrets across thousands of repositories by injecting malicious code that exfiltrated secrets to workflow logs.