Latest Supply Chain Attack news

One North Korea-linked threat cluster now publishes malicious packages across npm, PyPI, Go Modules, crates.io, and Packagist in parallel, reusing the same staging infrastructure and loader patterns. Socket has tracked more than 1,700 packages tied to the broader Contagious Interview …

Ten high-impact npm maintainers, including the engineers behind Fastify, Lodash, dotenv, and Express, were approached using the same playbook that compromised Axios. Tay attributes the campaign to UNC1069, the DPRK-nexus group that spent eight years perfecting fake interviews against crypto …

A single false parameter passed to .NET's Response.Redirect() kept the admin panel rendering after a redirect. watchTowr chained it to RCE on 30,000 internet-facing ShareFile servers. Patched March 10, disclosed April 2.

A zero-day in TrueConf's update mechanism let a China-linked actor distribute Havoc C2 implants to dozens of Southeast Asian government agencies through a single compromised server. CVE-2026-3502 (CVSS 7.8) required no signature bypass because there was no signature check. Patched …

A 57 MB source map shipped inside the npm package exposed Claude Code's full TypeScript codebase. System prompts, unreleased features like KAIROS and ULTRAPLAN, internal codenames, and a subsystem called "Undercover Mode" are now public.

Hijacked maintainer account pushed two poisoned Axios versions to npm, delivering a cross-platform RAT to macOS, Windows, and Linux. The library has 100 million weekly downloads. Both versions have been removed, but anyone who installed them should assume full compromise.

Three days after LiteLLM, TeamPCP hit the Telnyx Python SDK on PyPI. Malicious versions 4.87.1 and 4.87.2 hid a credential stealer inside WAV audio files. The RSA-4096 key is byte-for-byte identical to the LiteLLM payload.

Stolen Trivy credentials gave TeamPCP a PyPI publishing token for LiteLLM, the most popular LLM proxy in Python. Malicious versions ran on every Python process, not just LiteLLM imports, exfiltrating SSH keys, cloud credentials, and crypto wallets. Roughly 500,000 exfiltrations …

Roughly 100 GB of customer data reportedly stolen from Crunchyroll through a compromised Telus Digital employee in India. The breach traces through a three-link supply chain starting with the 2025 Salesloft Drift compromise. Crunchyroll has been silent for 11 days.

A 24-day supply chain campaign hit Aqua Security's Trivy scanner, 75 GitHub Actions tags, and 66+ npm packages. TeamPCP stole CI/CD secrets from 10,000+ workflows using memory scraping and spawned a self-propagating npm worm with decentralized C2. One payload wiped …

A supply-chain operation planted 72 malicious VS Code extensions on Open VSX using transitive dependencies that bypass initial review. The same GlassWorm threat actor injected Unicode payloads into 151 GitHub repos with LLM-generated cover commits.

A domain registrar hijack turned the AppsFlyer Web SDK into a crypto-stealing weapon for nearly 14 hours. The injected code swapped wallet addresses on every website loading the script. Independent analysis found a seven-module interception framework far beyond a simple …

The Qilin ransomware gang has breached Hayden Safe & Lock, a company selling physical safes and vaults. Physical locks couldn't stop digital extortion. Alongside them, critical electronics manufacturer G-Way Microwave has also been compromised.