RubyGems supply chain attack: malware used as a credential exfiltration dead drop
RubyGems supply chain attack: malware used as a credential exfiltration dead drop
Miasma: Red Hat Cloud Services npm Packages Hit by a Mini Shai-Hulud-Style Campaign
Mini Shai-Hulud Hits @antv: 323 npm Packages Compromised Through the atool Maintainer Account
Inside the RubyGems Supply Chain Attack: How Mend Defender Caught a Coordinated Flood Before It Spread
PhantomRaven Wave 5: New Undocumented NPM Supply Chain Campaign Targets DeFi, Cloud, and AI Developers
Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude Code to Compromise the CAP Framework
The Butlerian Jihad: Compromised Bitwarden CLI Deploys npm Worm, Poisons AI Assistants, and Dumps GitHub Secrets