#supply-chain-attack

FBI Warns of $725M Cargo Theft Surge Targeting Logistics

FBI alerts transportation industry to massive cyber-enabled cargo theft surge reaching $725 million in losses across US and Canada during 2025.

WordPress Plugin Backdoor Exposed After Five Years

Quick Page/Post Redirect plugin containing hidden backdoor code affects over 70,000 WordPress installations worldwide.

Glassworm Campaign Plants 73 Malicious VS Code Extensions

Researchers discovered 73 malicious Visual Studio Code extensions in OpenVSX that activate after updates to steal sensitive data.

Malicious elementary-data Package Steals Developer Crypto

Attackers compromised the popular elementary-data Python package on PyPI to harvest developer credentials and cryptocurrency wallets from infected systems.

Checkmarx KICS Supply Chain Attack Targets Developer Tools

Attackers compromised Docker images and VSCode extensions for Checkmarx KICS security scanner to steal sensitive data from developer environments.

NKAbuse Malware Exploits Marimo Python Notebook Flaw

Attackers exploit critical Marimo reactive Python notebook vulnerability to deploy NKAbuse malware variant through Hugging Face Spaces infrastructure.

30+ WordPress Plugins Compromised in EssentialPlugin Supply Chain Attack

Over 30 WordPress plugins from EssentialPlugin were compromised with malicious code enabling unauthorized website access, affecting thousands of installations.

Rockstar Games Hit by ShinyHunters Data Breach via Anodot

Rockstar Games suffered a data breach through compromised analytics provider Anodot, with ShinyHunters gang now leaking stolen data publicly.

OpenAI Rotates macOS Certificates After Supply Chain Attack

OpenAI revoked macOS code-signing certificates following a malicious Axios package compromise that targeted GitHub Actions workflows.

CPUID Website Compromised: CPU-Z Downloads Serve Malware

Attackers compromised CPUID's API to replace legitimate CPU-Z and HWMonitor downloads with malicious executables on the official website.

Smart Slider 3 Pro Plugin Hijacked via Supply Chain Attack

Attackers compromised the Smart Slider 3 Pro plugin update system, pushing malicious backdoors to WordPress and Joomla sites worldwide.

UNC6783 Hackers Target BPO Firms to Access Corporate Data

Google's Mandiant identifies UNC6783 threat group exploiting business process outsourcing providers to infiltrate high-value corporate targets across multiple industries.

North Korean Hackers Target Go, Rust, PHP Developers

North Korea's Contagious Interview campaign deploys malicious packages across Go, Rust, and PHP ecosystems to target developers worldwide.

Axios npm Package Hijacked, 100M+ Downloads Compromised

Attackers compromised the popular Axios JavaScript HTTP client npm package, delivering cross-platform remote access trojans to millions of developers worldwide.

TeamPCP Hackers Compromise Telnyx PyPI Package

TeamPCP threat group compromised the official Telnyx Python package on PyPI, injecting credential-stealing malware hidden in WAV audio files.

Open VSX Registry Bug Let Malicious VS Code Extensions Bypass Security

Open VSX's pre-publish scanning pipeline contained a critical flaw that allowed malicious Visual Studio Code extensions to bypass security vetting and reach the registry.

HackerOne Employee Data Exposed in Navia Breach

HackerOne confirms hundreds of employee records were compromised in a cyberattack targeting third-party vendor Navia Benefits Solutions.

TeamPCP Hackers Compromise LiteLLM Python Package in Supply Chain Attack

TeamPCP hacking group compromised the popular LiteLLM Python package on PyPI, claiming to have stolen data from hundreds of thousands of devices.

Trivy Scanner Hit by Supply Chain Attack via GitHub Actions

TeamPCP threat actors compromised the popular Trivy vulnerability scanner, distributing credential-stealing malware through official releases and GitHub Actions workflows.

Trivy Scanner Hit by Second Supply Chain Attack in Month

Aqua Security's Trivy vulnerability scanner suffered another supply chain compromise targeting GitHub Actions workflows and CI/CD secrets.