Tag: Supply Chain Attacks

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

Cybersecurity researchers are sounding the alarm about a new supply chain attack campaign targeting SAP-related npm Packages with …

29 April 2026

IT, News, Packages, Supply Chain Attacks
UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

The maintainer of the Axios npm package has confirmed that the supply chain compromise was the result of a highly-targeted social …

3 April 2026

Axios, IT, News, Social Engineering, Supply Chain Attacks
Huge “Shadow Layer” of Organizations Hit by Supply Chain Attacks

Security experts have claimed that the blast radius of third-party data breach incidents is far larger than at first thought, with more …

3 March 2026

Huge, IT, News, Organizations, Supply Chain Attacks
CISO’s Expert Guide To AI Supply Chain Attacks

AI-enabled supply chain attacks jumped 156% last year. Discover why traditional defenses are failing and what CISOs must do now to protect …

11 November 2025

AI, Experts, Guides, IT, Supply Chain Attacks
Supply Chain Attack “Shai-Halud” Targets 477 NPM Packages

A major supply chain attack dubbed “Shai-Halud” has impacted the JavaScript ecosystem by targeting over 477 NPM packages, raising …

17 September 2025

Malware, Open Source, Open Source Software, Packages, Supply Chain Attacks
CrowdStrike npm Packages Hit by Supply Chain Attack

A new supply chain attack has compromised multiple npm packages maintained by the crowdstrike-publisher account, marking a worrying …

16 September 2025

IT, News, Packages, Supply Chain Attacks
Popular NPM Package ‘ctrl/tinycolor’ with 2M Weekly Downloads and 40+ Others Compromised in Supply Chain Attack

The NPM ecosystem is under attack once again, with a sophisticated supply chain compromise targeting the widely-used @ctrl/tinycolor …

16 September 2025

IT, News, Packages, Supply Chain Attacks
LNER Reveals Supply Chain Attack Compromised Customer Information

The operator of one of the UK’s busiest rail lines has admitted that an unauthorized third party has accessed customer details via a …

11 September 2025

Customers, Information, IT, News, Supply Chain Attacks
Open Source Community Thwarts Massive npm Supply Chain Attack

A potential npm supply chain disaster was averted in record time after attackers took over a verified developer’s credentials. On …

9 September 2025

IT, Massive, News, Open Source Community, Supply Chain Attacks
Wealthsimple Confirms Data Breach After Supply Chain Attack

Canadian fintech firm Wealthsimple has confirmed a data breach that exposed sensitive information belonging to roughly 30,000 customers. …

8 September 2025

After, Data Breach, IT, Supply Chain Attacks, Wealthsimple
GhostAction Supply Chain Attack Compromises 3000+ Secrets

Hundreds of GitHub users and repositories have been hit by another supply chain attack, in which threat actors have already stolen more …

8 September 2025

IT, News, Secrets, Supply Chain Attacks
Open VSX Marketplace Flaw Enables Millions of Developers at Risk of Supply Chain Attacks

A newly disclosed critical vulnerability in the Open VSX Registry, the open-source marketplace for Visual Studio Code (VS Code) extensions, …

27 June 2025

Developers, Flaws, IT, News, Supply Chain Attacks

{"loadingDistance":1200,"stickyPosts":[],"nextPageLink":"https://itts.at/archives/tag/supply-chain-attacks/page/2","queryId":2}

●●●