Supply Chain Attack

Line-art world map outline with two small flag pins and a small package box between them; the package carries a red dot.

Nation-State Cyber Threats

ESET APT Report: Sandworm's DynoWiper Hits Polish Energy, Lazarus Compromises Axios npm

ESET's October 2025 - March 2026 APT report names two findings defenders cannot ignore: a Polish energy company hit in December 2025 by a new wiper, DynoWiper, attributed to Sandworm with medium confidence, and the npm package axios compromised by attackers ESET ties to Lazarus.

28 May 2026

Line-art computer at the center of four connected nodes — a blockchain block, a calendar tile, a torrent-share icon, and a server tower; the central computer carries a red dot.

Supply Chain Attack

GlassWorm Takedown: CrowdStrike, Google, and Shadowserver Hit All Four C2 Channels at Once

CrowdStrike's Counter Adversary Operations team, with Google and the Shadowserver Foundation, executed a simultaneous takedown of all four GlassWorm command-and-control channels — Solana, BitTorrent DHT, Google Calendar, and direct servers — on May 26-27, 2026.

27 May 2026

Line-art chat-bubble icon attached to a small download-arrow above a generic installer-box icon, with one flat red dot on the chat bubble.

Supply Chain Attack

SymJack, Fake Claude Installers, and AI-Chatbot SEO Cryptojacking Hit the Same Trust Surface

Three independently disclosed campaigns in the May 26-27 cycle treat AI tools as a single trust surface — SymJack at the agent layer, fake installers impersonating Claude and ChatGPT at the brand layer, and AI chatbot recommendations at the discovery layer.

27 May 2026

Line-art row of three package boxes feeding connector lines into a small chat-assistant window; one box carries a single flat red dot.

Supply Chain Attack

TrapDoor Supply-Chain Attack Hits npm, PyPI, and Crates.io — and Poisons AI Coding Assistants

Socket disclosed TrapDoor, a coordinated attack that planted more than 34 malicious packages across npm, PyPI, and Crates.io at once. Its novel move: poisoned .cursorrules and CLAUDE.md files designed to trick a developer's AI coding assistant.

25 May 2026

Line-art illustration of two stacked manifest cards, the upper one tagged with a git-branch mark and carrying a small hidden parcel; the parcel bears a red dot.

Supply Chain Attack

Packagist Supply-Chain Attack Hid Its Malware in package.json, Not composer.json

A coordinated attack on Packagist, the PHP package registry, poisoned eight Composer packages by hiding malicious code in package.json — the JavaScript manifest — instead of composer.json, exploiting the blind spot where PHP and JavaScript toolchains coexist but are reviewed separately.

24 May 2026

Line-art conveyor belt carrying parcels toward a closed gate; a maintainer figure with a key stands at the gate, and one waiting parcel carries a red dot.

Supply Chain Attack

npm Makes Staged Publishing Generally Available — a 2FA-Gated Step Now Guards the Registry

GitHub has made npm staged publishing generally available. A direct publish no longer ships a package; the tarball waits in a stage queue until a maintainer passes a 2FA challenge to approve it. It is the first ecosystem-level structural answer to the 2026 supply-chain wave.

24 May 2026

Line-art git branch graph with commit nodes and a fork curving off; a version-tag pennant sits on the fork and carries a single red dot, beside a small PHP elephant icon.

Supply Chain Attack

Laravel-Lang Supply-Chain Attack: 700+ Malicious Git Tags, Official Repo Untouched

Researchers found more than 700 malicious version tags published across the Laravel-Lang PHP project on May 22-23, 2026 — yet the official repositories were never modified. The attacker pointed Git tags at a fork they controlled to drop a credential stealer.

23 May 2026

Line-art grid of code-repository folder icons with a shark gliding below, its dorsal fin cutting up through the grid; one folder by the fin carries a red dot.

Supply Chain Attack

Megalodon Campaign Backdoored 5,561 GitHub Repositories via Poisoned CI/CD Workflows

An automated campaign called Megalodon pushed 5,718 malicious commits to 5,561 GitHub repositories in six hours, hiding secret-stealing payloads inside CI/CD workflow files. It weaponizes the merge — the most routine action in software development.

22 May 2026

Line-art illustration of an npm package with a fractured green check-mark badge on teal background, with one flat red dot accent.

Application Security

Shai-Hulud Is Now Generating Valid Sigstore Provenance Badges for Its Malicious npm Packages

Mini Shai-Hulud pushed ~42 malicious packages through a compromised @antv maintainer account on May 19 with valid Sigstore Fulcio certificates and Rekor entries. The green "verified" badge defenders have been trusting now sits on malicious code.

19 May 2026

Supply Chain Attack

RubyGems Just Shut Down New Signups After 'Hundreds' of Malicious Packages Hit the Registry

RubyGems temporarily turned off new signups after what its security partner called a major malicious attack — hundreds of packages, DDoS, spam, and exploits hitting at once. The halt is the response model defenders should remember.

13 May 2026

Dev workstation with code monitor, three converging attacker arrows, deployment pipeline.

Application Security

Three Unrelated Threat Actors Just Arrived at the Same Conclusion — Your Developers Are the Beachhead

Three unrelated threat actors arrived at the same conclusion in March and April: the developer workstation is the best ROI beachhead. CSO Online's framing — the Developer Credential Economy — is the editorial line CISOs should adopt this quarter.

13 May 2026

A worm twisting through three stacked package boxes with binary fragments, a signed certificate cracking.

Application Security

Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, and 170 Packages

TeamPCP's Mini Shai-Hulud worm hit 170+ packages May 11, including TanStack, Mistral AI, and Guardrails AI. First npm worm to ship valid SLSA Build Level 3 provenance for malicious code.

12 May 2026

See all