supply chain attack Archives • Daily CyberSecurity

Weekly Threat Intelligence: May 25 to May 31, 2026 Weekly Threat Intelligence Active Vulnerability Report

Weekly Threat Intelligence: May 25 to May 31, 2026

Ddos June 1, 2026

Welcome to your weekly threat intelligence briefing. The cybersecurity landscape shifted dramatically between May 25 and May...

npm dependency confusion attack malicious packages discovered

Massive npm Dependency Confusion Attack Infiltrates Corporate Ecosystems

Ddos May 30, 2026

Microsoft Threat Intelligence researchers recently uncovered an active security breach targeting modern software developer pipelines. Specifically, a...

Microsoft Exposes Malicious Typosquat Cluster Targeting Cloud Environments npm supply chain attack credential harvesting malware

Microsoft Exposes Malicious Typosquat Cluster Targeting Cloud Environments

Ddos May 29, 2026

Urgent Alert for DevOps Engineers Microsoft security analysts recently identified an active threat vector targeting modern software...

Poisoned Code: Stealthy Malicious Go Module Backdoor Discovered in Long-Running Typosquat

Ddos May 25, 2026

Open-source software repositories remain a top target for modern cybercriminals. Recently, Socket’s Threat Research Team uncovered a...

Malicious JS Lifecycle Hooks Found Hiding Inside PHP Composer Packages PHP Supply Chain Attack Socket Composer Malicious Postinstall

Malicious JS Lifecycle Hooks Found Hiding Inside PHP Composer Packages

Ddos May 23, 2026

Security researchers at Socket have uncovered a coordinated attack targeting PHP Composer packages by hiding malicious JavaScript...

Supply Chain Storm: Over 700 Laravel Lang Versions Poisoned with Malicious RCE Backdoor Laravel Lang Supply Chain Attack laravel-lang RCE Backdoor

Laravel Lang Supply Chain Attack laravel-lang RCE Backdoor

Supply Chain Storm: Over 700 Laravel Lang Versions Poisoned with Malicious RCE Backdoor

Ddos May 23, 2026

A major software supply-chain storm is brewing in the PHP ecosystem. Security firm Socket has exposed a...

Inside the Breach: How TeamPCP Poisoned a VS Code Extension to Exfiltrate 3,800 GitHub Repositories GitHub source code breach TeamPCP 2026

Inside the Breach: How TeamPCP Poisoned a VS Code Extension to Exfiltrate 3,800 GitHub Repositories

Ddos May 20, 2026

The notorious threat syndicate tracking under the moniker TeamPCP, an adversarial collective primarily renowned for orchestrating supply-chain...

The Missed Token: Grafana Labs Suffers Source Code Theft via Shai-Hulud npm Worm Campaign CVE-2023-1550 Grafana Labs Cyberattack Mini Shai-Hulud npm Worm

CVE-2023-1550 Grafana Labs Cyberattack Mini Shai-Hulud npm Worm

The Missed Token: Grafana Labs Suffers Source Code Theft via Shai-Hulud npm Worm Campaign

Ddos May 20, 2026

Grafana Labs has broken its silence regarding a targeted corporate cyberattack that culminated in the theft of...

Shai-Hulud Returns: Massive npm Supply Chain Attack Hijacks AntV Ecosystem to Scrape GitHub Runner Memory Mini Shai-Hulud npm Worm AntV Ecosystem Supply Chain Attack

Mini Shai-Hulud npm Worm AntV Ecosystem Supply Chain Attack

Shai-Hulud Returns: Massive npm Supply Chain Attack Hijacks AntV Ecosystem to Scrape GitHub Runner Memory

Ddos May 19, 2026

A massive and highly coordinated supply chain assault is currently ripping through the JavaScript developer ecosystem. Security...

Targeting 2 Million Developers: Malicious Nx Console Extension Hijacks VS Code Marketplace Nx Console Extension Supply Chain Attack VS Code Marketplace Malware 2026

Nx Console Extension Supply Chain Attack VS Code Marketplace Malware 2026

Targeting 2 Million Developers: Malicious Nx Console Extension Hijacks VS Code Marketplace

Ddos May 19, 2026

A brief but dangerous supply chain attack briefly hijacked the official Visual Studio Code marketplace, targeting over...

New “TencShell” Malware Weaponizes Open-Source Rshell via Third-Party Access TencShell Malware Rshell C2 Framework

New “TencShell” Malware Weaponizes Open-Source Rshell via Third-Party Access

Ddos May 18, 2026

Security researchers have exposed a highly stealthy attempted intrusion that weaponized an open-source framework into a potent...

JDownloader Site Breach Installs Rootkits that Kill Your Antivirus Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

JDownloader Site Breach Installs Rootkits that Kill Your Antivirus

Ddos May 13, 2026

In a sophisticated supply-chain attack, attackers compromised the official JDownloader website between May 6 and May 7,...

GemStuffer RubyGems Campaign RubyGems Data Exfiltration TanStack npm Compromise Supply Chain Attack DNS Hijacking APT28 (Fancy Bear) OpenVSX Supply Chain Attack Checkmarx Plugin Breach Stryker Cyberattack CISA Alert Trans-Regional Cyber Conflict Operation Epic Fury Cyber Operation MacroMaze APT28 Cyber Espionage Notepad++ Supply Chain Attack Lotus Blossom Group Defense Industrial Base Threats GTIG Report APT28 Operation Neusploit CVE-2026-21509 Bookworm Malware

GemStuffer: Attackers Weaponize RubyGems as a Covert Data Drop for UK Gov Scraping

Ddos May 13, 2026

Security researchers are sounding the alarm on a highly resourceful new campaign dubbed “GemStuffer.” Uncovered by Socket’s...

9.8 Severity Alert: Malicious Git Branches Can Hijack Your WebdriverIO Build Servers WebdriverIO Command Injection CVE-2026-25244

9.8 Severity Alert: Malicious Git Branches Can Hijack Your WebdriverIO Build Servers

Ddos May 13, 2026

A critical security vulnerability has been found in WebdriverIO, a popular open-source test automation framework used for...

Supply Chain Siege: 84 TanStack Packages Compromised to Steal GitHub Secrets

Ddos May 12, 2026

The software supply chain has just weathered another high-impact assault. The Socket Threat Research team has uncovered...

Trust Hijacked: Official JDownloader Website Breached to Distribute Malicious Installers JDownloader Breach Supply Chain Attack

Trust Hijacked: Official JDownloader Website Breached to Distribute Malicious Installers

Ddos May 9, 2026

When millions of users rely on a popular utility, the implicit trust placed in its official download...

Highly Evasive NuGet Supply Chain Attack Hijacks 65,000 .NET Build Servers NuGet Supply Chain Attack .NET Malware

Highly Evasive NuGet Supply Chain Attack Hijacks 65,000 .NET Build Servers

Ddos May 8, 2026

A highly sophisticated software supply chain attack has compromised tens of thousands of developer workstations and CI/CD...

OceanLotus Hijacks PyPI to Deploy “ZiChatBot” via Enterprise Chat APIs Acreed Infostealer, BNB Smart Chain CVE-2023-20269 exploit

OceanLotus Hijacks PyPI to Deploy “ZiChatBot” via Enterprise Chat APIs

Ddos May 7, 2026

In a calculated move that signals the expansion of state-sponsored threats into open-source repositories, researchers at Kaspersky...

New Quasar Linux (QLNX) RAT Hijacks Cloud Keys and NPM Tokens Quasar Linux RAT Supply Chain Hijacking

New Quasar Linux (QLNX) RAT Hijacks Cloud Keys and NPM Tokens

Ddos May 6, 2026

A previously undocumented Linux remote access trojan (RAT) has been exposed for its surgical precision in targeting...

DAEMON Tools Supply Chain Attack QUIC RAT Malware

Trojanized Tools: DAEMON Tools Supply Chain Attack Compromises Global Systems

Ddos May 6, 2026

Kaspersky has uncovered a sophisticated supply chain attack targeting DAEMON Tools, the widely used disk imaging software....