17 threads tagged with “supply chain”
Socket discovered 10 malicious npm packages delivering infostealer malware across Windows, Linux, and macOS. What's sophisticated: 4 layers of obfuscation hide payloads, fake CAPTCHA appears legitimat…
Category: Threat Alerts / Supply Chain / Supply Chain
Koi Security discovered PhantomRaven campaign compromising 86,000+ npm downloads via Remote Dynamic Dependencies (RDD)—an obscure npm feature allowing HTTP URLs as package dependencies. What's clever:…
Category: Threat Alerts / Supply Chain / Supply Chain
Koi researchers detail PhantomRaven campaign exploiting npm's Remote Dynamic Dependencies feature that allows HTTP URLs as package dependencies. What's wild: this feature lets packages download code f…
Category: Threat Alerts / Supply Chain / Supply Chain
Researchers discovered ten malicious npm packages mimicking popular libraries such as TypeScript, React Router, and Discord.js. These packages deploy an infostealer payload built with PyInstaller, ste…
Category: Threat Intelligence / Malware / Supply Chain
F5 disclosed a prolonged nation-state intrusion targeting its internal systems. The attacker accessed customer configuration data and internal source code, leading to emergency patches and coordinated…
Category: Breach / Enterprise Security / Vendor Compromise
F5 confirmed a systems breach affecting US and UK government networks, traced to long-term unauthorized access of internal systems. The intrusion compromised portions of source code for key cybersecur…
Category: Incident / Breach Reports / Vendor Breaches
The Safepay ransomware group claimed responsibility for breaching German surveillance provider Xortec, listing the company on its leak site with a ransom deadline of October 27, 2025. The attack highl…
Category: Threat Alerts / Ransomware / Ransomware
Russia’s Federal Service for Veterinary and Phytosanitary Surveillance (Rosselkhoznadzor) suffered a large-scale DDoS attack that disrupted the Mercury and VetIS tracking systems, delaying food shipme…
Category: Nation-State / Critical Infrastructure / DDoS Attacks
Bitsight’s 2025 TRACE report reveals over 230 million exposed digital assets in the U.S., with 40% of global vulnerabilities tied to unmanaged third- and fourth-party systems. Shadow IT exposure remai…
Category: Supply Chain / Risk Management / Shadow IT
Security researchers disclosed a serious remote code execution vulnerability in the Rust library tokio-tar, affecting major projects such as uv, testcontainers, and wasmCloud. The vulnerability stems …
Category: Threat Alerts / Vulnerabilities & Exploits / Open Source Supply Chain
Microsoft and F5 faced simultaneous critical incidents: Microsoft patched three actively exploited zero-days (CVE-2025-24990, CVE-2025-59230, CVE-2025-47827) while F5 confirmed source code theft in a …
Category: Threat Alerts / Vulnerabilities & Exploits / Zero-Day Exploits
Sonatype’s Q3 2025 report reveals a 140% increase in open-source malware, with over 34,000 new malicious packages identified. The Shai-Hulud worm and npm package hijackings highlight a shift toward hi…
Category: Threat Intelligence / Malware / Open Source Threats
BleepingComputer highlights a campaign by ‘TigerJack’ abusing VSCode and OpenVSX marketplaces. Removed extensions such as 'C++ Playground' and 'HTTP Format' reappear under new accounts. Payloads inclu…
Category: Threat Alerts / Malware & Ransomware / Developer Ecosystem
Health-ISAC’s Q3 2025 Quarterly Threat Insights highlights intensifying threats to healthcare. Notable trends include the Shai-Hulud worm spreading via malicious npm packages that embed into developer…
Category: Threat Alerts / Threat Intelligence / Threat Intelligence
University of Missouri researchers report a 97%-accurate AI-driven framework to detect and explain hardware trojans in chip designs, outlined in an IEEE Access publication. The system—leveraging large…
Category: Industry News / Research & Tools / Research & Tools
Socket researchers document malicious packages across npm, PyPI, and RubyGems abusing Discord webhooks for stealthy C2 and exfiltration of secrets and host telemetry.
Category: Threat Alerts / Threat Intelligence / Threat Intelligence
The Dutch government assumed control of Chinese-owned Nexperia under the Goods Availability Act to secure chip supply for European industries.
Category: Industry News / Regulatory & Policy / Regulatory & Policy