A sophisticated software supply chain attack has been discovered targeting developers using Strapi. Attackers published 36 … 36 Malicious npm Strapi Packages Used in Targeted Supply Chain Attack Read more
software supply chain
Axios npm Supply Chain Attack: Detection, Risks, and Mitigation Guide
On March 31, 2026, the cybersecurity community faced a major wake-up call when a widely trusted … Axios npm Supply Chain Attack: Detection, Risks, and Mitigation Guide Read more
Backdoored Telnyx Python SDK on PyPI Steals Credentials Across Platforms
A new software supply chain attack has targeted developers after threat actors compromised the Telnyx Python … Backdoored Telnyx Python SDK on PyPI Steals Credentials Across PlatformsRead more
Malicious Axios Package Delivers WAVESHAPER.V2 Backdoor in Supply Chain Attack
A major software supply chain attack has impacted the JavaScript ecosystem after threat actors compromised the … Malicious Axios Package Delivers WAVESHAPER.V2 Backdoor in Supply Chain AttackRead more
CanisterWorm Spreads Through npm Accounts Stealing Tokens
A new supply chain malware campaign called CanisterWorm is targeting the npm ecosystem by compromising publisher … CanisterWorm Spreads Through npm Accounts Stealing TokensRead more
Trivy Supply Chain Attack Enables CI/CD Credential Theft
Supply chain attacks targeting developer tools are becoming one of the most dangerous threats in modern … Trivy Supply Chain Attack Enables CI/CD Credential TheftRead more