supply chain attack Archives • Daily CyberSecurity

GlassWASM Malware Hidden in Open VSX Extensions code

GlassWASM Malware Hidden in Open VSX Extensions

Do Son June 20, 2026

Security researchers have uncovered GlassWASM malware, a stealthy threat hiding inside trojanized Visual Studio Code extensions. Socket’s...

Mastra Supply Chain Attack Compromises 140+ npm Packages Mastra supply chain attack delivering an npm infostealer through the typosquatted easy-day-js dependency during npm install

Mastra supply chain attack delivering an npm infostealer through the typosquatted easy-day-js dependency during npm install

Mastra Supply Chain Attack Compromises 140+ npm Packages

Do Son June 17, 2026

A sweeping Mastra supply chain attack has hit the JavaScript ecosystem hard. Security firm Socket detected the...

ShapedPlugin Supply Chain Attack CVE-2026-10735, CVE-2026-49777, WordPress Plugin Malware

ShapedPlugin Supply Chain Attack Exposes WordPress Sites

Do Son June 16, 2026

A dangerous ShapedPlugin supply chain attack is currently threatening WordPress websites. Security researchers at Wordfence discovered this...

Uncanny Automator Breach: Backdoored Plugin Build Hit WordPress Sites

Do Son June 15, 2026

A serious Uncanny Automator breach has exposed customer data and pushed a malicious plugin update to live...

Massive PyPI Supply Chain Attack Staged via Malware Startup Hooks PyPI supply chain attack Socket malware detection PyPI Typosquat, Python RAT

PyPI supply chain attack Socket malware detection PyPI Typosquat, Python RAT

Massive PyPI Supply Chain Attack Staged via Malware Startup Hooks

Do Son June 7, 2026

Overview of the Global Fraud Threat Cybersecurity researchers have just detected a dangerous software campaign targeting Python...

Sicoob SDK Banking Malware Exploits NuGet Developer Channels Sicoob SDK banking malware NuGet supply chain attack

Sicoob SDK Banking Malware Exploits NuGet Developer Channels

Do Son June 3, 2026

A dangerous new supply chain threat has targeted financial software developers. Specifically, security researchers at Socket recently...

macOS Cryptocurrency Malware Powers Stealthy JINX-0164 Operations macOS cryptocurrency malware JINX-0164 developer campaign

macOS Cryptocurrency Malware Powers Stealthy JINX-0164 Operations

Do Son June 3, 2026

The Wiz Customer Incident Response Team recently uncovered a dangerous global cyber threat. Specifically, a new wave...

Weekly Threat Intelligence: May 25 to May 31, 2026 Weekly Threat Intelligence Active Vulnerability Report

Weekly Threat Intelligence: May 25 to May 31, 2026

Do Son June 1, 2026

Welcome to your weekly threat intelligence briefing. The cybersecurity landscape shifted dramatically between May 25 and May...

npm dependency confusion attack malicious packages discovered

Massive npm Dependency Confusion Attack Infiltrates Corporate Ecosystems

Do Son May 30, 2026

Microsoft Threat Intelligence researchers recently uncovered an active security breach targeting modern software developer pipelines. Specifically, a...

Microsoft Exposes Malicious Typosquat Cluster Targeting Cloud Environments npm supply chain attack credential harvesting malware

Microsoft Exposes Malicious Typosquat Cluster Targeting Cloud Environments

Do Son May 29, 2026

Urgent Alert for DevOps Engineers Microsoft security analysts recently identified an active threat vector targeting modern software...

Poisoned Code: Stealthy Malicious Go Module Backdoor Discovered in Long-Running Typosquat

Do Son May 25, 2026

Open-source software repositories remain a top target for modern cybercriminals. Recently, Socket’s Threat Research Team uncovered a...

Malicious JS Lifecycle Hooks Found Hiding Inside PHP Composer Packages PHP Supply Chain Attack Socket Composer Malicious Postinstall

Malicious JS Lifecycle Hooks Found Hiding Inside PHP Composer Packages

Do Son May 23, 2026

Security researchers at Socket have uncovered a coordinated attack targeting PHP Composer packages by hiding malicious JavaScript...

Supply Chain Storm: Over 700 Laravel Lang Versions Poisoned with Malicious RCE Backdoor Laravel Lang Supply Chain Attack laravel-lang RCE Backdoor

Laravel Lang Supply Chain Attack laravel-lang RCE Backdoor

Supply Chain Storm: Over 700 Laravel Lang Versions Poisoned with Malicious RCE Backdoor

Do Son May 23, 2026

A major software supply-chain storm is brewing in the PHP ecosystem. Security firm Socket has exposed a...

Inside the Breach: How TeamPCP Poisoned a VS Code Extension to Exfiltrate 3,800 GitHub Repositories GitHub source code breach TeamPCP 2026

Inside the Breach: How TeamPCP Poisoned a VS Code Extension to Exfiltrate 3,800 GitHub Repositories

Do Son May 20, 2026

The notorious threat syndicate tracking under the moniker TeamPCP, an adversarial collective primarily renowned for orchestrating supply-chain...

The Missed Token: Grafana Labs Suffers Source Code Theft via Shai-Hulud npm Worm Campaign CVE-2023-1550 Grafana Labs Cyberattack Mini Shai-Hulud npm Worm

CVE-2023-1550 Grafana Labs Cyberattack Mini Shai-Hulud npm Worm

The Missed Token: Grafana Labs Suffers Source Code Theft via Shai-Hulud npm Worm Campaign

Do Son May 20, 2026

Grafana Labs has broken its silence regarding a targeted corporate cyberattack that culminated in the theft of...

Shai-Hulud Returns: Massive npm Supply Chain Attack Hijacks AntV Ecosystem to Scrape GitHub Runner Memory Mini Shai-Hulud npm Worm AntV Ecosystem Supply Chain Attack

Mini Shai-Hulud npm Worm AntV Ecosystem Supply Chain Attack

Shai-Hulud Returns: Massive npm Supply Chain Attack Hijacks AntV Ecosystem to Scrape GitHub Runner Memory

Do Son May 19, 2026

A massive and highly coordinated supply chain assault is currently ripping through the JavaScript developer ecosystem. Security...

Targeting 2 Million Developers: Malicious Nx Console Extension Hijacks VS Code Marketplace Nx Console Extension Supply Chain Attack VS Code Marketplace Malware 2026

Nx Console Extension Supply Chain Attack VS Code Marketplace Malware 2026

Targeting 2 Million Developers: Malicious Nx Console Extension Hijacks VS Code Marketplace

Do Son May 19, 2026

A brief but dangerous supply chain attack briefly hijacked the official Visual Studio Code marketplace, targeting over...

New “TencShell” Malware Weaponizes Open-Source Rshell via Third-Party Access TencShell Malware Rshell C2 Framework

New “TencShell” Malware Weaponizes Open-Source Rshell via Third-Party Access

Do Son May 18, 2026

Security researchers have exposed a highly stealthy attempted intrusion that weaponized an open-source framework into a potent...

JDownloader Site Breach Installs Rootkits that Kill Your Antivirus Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

JDownloader Site Breach Installs Rootkits that Kill Your Antivirus

Do Son May 13, 2026

In a sophisticated supply-chain attack, attackers compromised the official JDownloader website between May 6 and May 7,...

GemStuffer RubyGems Campaign RubyGems Data Exfiltration TanStack npm Compromise Supply Chain Attack DNS Hijacking APT28 (Fancy Bear) OpenVSX Supply Chain Attack Checkmarx Plugin Breach Stryker Cyberattack CISA Alert Trans-Regional Cyber Conflict Operation Epic Fury Cyber Operation MacroMaze APT28 Cyber Espionage Notepad++ Supply Chain Attack Lotus Blossom Group Defense Industrial Base Threats GTIG Report APT28 Operation Neusploit CVE-2026-21509 Bookworm Malware

GemStuffer: Attackers Weaponize RubyGems as a Covert Data Drop for UK Gov Scraping

Do Son May 13, 2026

Security researchers are sounding the alarm on a highly resourceful new campaign dubbed “GemStuffer.” Uncovered by Socket’s...