#supply-chain

3 articles

News3

Dark server room with red warning lights and code displays

Xygeni GitHub Action Compromised in Supply Chain Attack

Attackers compromised AppSec vendor Xygeni's GitHub Action through tag poisoning, operating a command-and-control implant for up to one week.

Mar 11, 09:22 PM2 min

Computer screen showing npm package installation with security warnings and malicious code indicators

High

Cyber Attacks

PhantomRaven Campaign Hits npm with 88 Malicious Packages

New PhantomRaven supply-chain attack targets JavaScript developers through 88 malicious npm packages designed to steal sensitive development data.

Mar 11, 06:09 PM2 min

Telecommunications server room with network equipment under red warning lights

Medium

Data Breaches

Ericsson US Hit by Data Breach Through Service Provider

Ericsson's U.S. subsidiary disclosed a data breach on March 9, 2026, after attackers compromised a third-party service provider and stole employee and customer data.

Mar 9, 08:07 PM2 min