supply chain attack Archives • Page 11 of 11 • Daily CyberSecurity

Massive E-commerce Supply Chain Attack Uncovered: Hundreds of Stores at Risk Supply Chain Attack, E-commerce Security

Massive E-commerce Supply Chain Attack Uncovered: Hundreds of Stores at Risk

Ddos May 6, 2025

The Sansec Forensics Team has uncovered a coordinated supply chain attack that has silently infected ecommerce infrastructure...

Malicious Python Packages Exploited Gmail as Covert Command-and-Control Channels Python malware, Gmail C2

Malicious Python Packages Exploited Gmail as Covert Command-and-Control Channels

Ddos May 2, 2025

In a detailed technical report, Socket’s Threat Research Team uncovered seven malicious Python packages published to the...

CVE-2025-32965: Backdoor in xrpl.js SDK Puts Crypto Wallets at Risk xrpl.js Backdoor Crypto Supply Chain Attack CVE-2025-32965

CVE-2025-32965: Backdoor in xrpl.js SDK Puts Crypto Wallets at Risk

Ddos April 24, 2025

Aikido Intel has issued an urgent alert after detecting a backdoor in multiple versions of xrpl.js, the...

Malicious npm Packages Backdoor Telegram Bot Developers npm Malware, Telegram Bots

Malicious npm Packages Backdoor Telegram Bot Developers

Ddos April 22, 2025

A new supply chain attack has been uncovered by Socket’s Threat Research Team, targeting developers who create...

Malicious npm Package Installs Reverse Shell via Payment Success Magento Credit Card Stealer npm package reverse shell

Malicious npm Package Installs Reverse Shell via Payment Success

Ddos April 16, 2025

A malicious npm package, disguised as a merchant integration for the Advcash payment platform, has been discovered...

npm Malware Targets Atomic and Exodus Wallets to Steal Crypto Funds npm malware, crypto wallet attack

npm Malware Targets Atomic and Exodus Wallets to Steal Crypto Funds

Ddos April 14, 2025

The ReversingLabs (RL) research team has uncovered a sophisticated npm-based malware campaign in which a fake npm...

Malicious NPM Packages Target PayPal Users to Steal Sensitive Data Crypto Scam, Executive Fraud business email compromise scam

Malicious NPM Packages Target PayPal Users to Steal Sensitive Data

Ddos April 14, 2025

A recent report from FortiGuard Labs has uncovered a series of malicious NPM packages designed to steal...

Cybersecurity Alert: CISA Adds Fortinet and GitHub Action Vulnerabilities to Exploited List

Ddos March 18, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has recently added two significant security vulnerabilities to its Known...

Ultralytics AI Library Hit by Supply Chain Attack: 60 Million Downloads Compromised Ultralytics Supply Chain Attack

Ultralytics AI Library Hit by Supply Chain Attack: 60 Million Downloads Compromised

Ddos December 8, 2024

Cybersecurity researchers at ReversingLabs have detailed a supply chain attack on the popular AI library, Ultralytics, which...

Solana Web3.js Library Compromised in Targeted Supply Chain Attack Solana Web3.js Supply Chain Attack

Solana Web3.js Library Compromised in Targeted Supply Chain Attack

Ddos December 3, 2024

A sophisticated supply chain attack has been identified within the widely-used @solana/web3.js JavaScript library, potentially jeopardizing the security...

Malicious PyPI Package Targets Cryptocurrency Wallets: aiocpa Campaign Exposed ML Threat Hunting policy violation

Malicious PyPI Package Targets Cryptocurrency Wallets: aiocpa Campaign Exposed

Ddos November 29, 2024

Cybersecurity researchers at ReversingLabs have uncovered a stealthy supply chain attack targeting cryptocurrency wallets via the PyPI...

Ethereum Smart Contracts Enable Evasive C2 in New Supply Chain Attack Ethereum Smart Contracts Malware

Ethereum Smart Contracts Enable Evasive C2 in New Supply Chain Attack

Ddos November 6, 2024

A recent report from the Checkmarx Security Research Team reveals a sophisticated supply chain attack targeting the...

Cryptocurrency Users Targeted by Invasive New Malware Campaign CryptoAITools

Cryptocurrency Users Targeted by Invasive New Malware Campaign

Ddos October 31, 2024

In a concerning development, cryptocurrency enthusiasts are facing a new and highly invasive malware campaign aimed at...

Supply Chain Attack on Popular Animation Library Lottie-Player Targets Web3 Users lottie-player supply chain attack

Supply Chain Attack on Popular Animation Library Lottie-Player Targets Web3 Users

Ddos October 31, 2024

In a sophisticated supply chain attack, malicious actors infiltrated the widely-used JavaScript library lottie-player, injecting code that...

Widespread Supply Chain Attack on NPM: Trojanized jQuery Discovered

Ddos July 4, 2024

A sophisticated and persistent supply chain attack targeting the popular JavaScript library jQuery has been uncovered by...

Critical Supply Chain Breach: Beware of Trojanized Notezilla, RecentX, Copywhiz Installers

Ddos June 27, 2024

Rapid7, a prominent cybersecurity firm, has uncovered a sophisticated supply chain attack targeting users of well-known Windows...

Breaking News: Widespread WordPress Plugin Compromise in Active Supply Chain Attack WordPress Supply Chain Attack

Breaking News: Widespread WordPress Plugin Compromise in Active Supply Chain Attack

Ddos June 24, 2024

WordPress, the world’s most popular content management system, is facing a significant security threat in the form...

Python Developers Targeted in Massive Supply Chain Attack; Over 170,000 Users Affected Python Supply Chain Attack

Python Developers Targeted in Massive Supply Chain Attack; Over 170,000 Users Affected

Ddos March 25, 2024

In a recently uncovered attack campaign, over 170,000 Python developers have fallen victim to a sophisticated malware...

Crypto Crack: Malicious Code Lurks in Ledger dApps, Drains Millions dApps supply chain attack

Crypto Crack: Malicious Code Lurks in Ledger dApps, Drains Millions

Ddos December 15, 2023

Ledger, a renowned manufacturer of hardware cryptocurrency wallets, has cautioned its clients about the risks associated with...