Tag

#supply chain attack

9 stories taggedsupply chain attack.

Photoreal news-editorial style, 16:9 framing, full-frame edge-to-edge composition
Threat Intelligence

Iran-Linked Hackers Hit Israeli IT Firms to Reach High-Value Targets

A group tied to Iran used a flexible, plug-in-style hacking toolkit to break into IT service providers in Israel, then moved through those companies to attack their clients.

2 min
Photoreal news-editorial style, 16:9 framing, full-frame edge-to-edge composition
Threat Intelligence

North Korean Hackers Poisoned Over 100 Open Source Packages to Spy on Developers

A campaign called PolinRider has quietly corrupted legitimate software building blocks used by developers worldwide, planting tools that steal data and leave a hidden door open for attackers.

3 min
Photoreal news-editorial photograph, 16:9 framing, top-down overhead view of a modern developer workstation with a dark mechanical keyboard and a large monitor
AI Security

An AI Coding Tool Built Into Millions of Developer Setups Had a Flaw That Could Hand Hackers Your Cloud Keys

A security hole in Amazon's AI coding assistant let criminals steal cloud passwords just by getting a developer to open a poisoned folder. It's patched — but the attack method is spreading.

3 min
Threat Intelligence

ShapedPlugin's Update Channel Hijacked, Pro Plugins Shipped with Backdoor

Attackers slipped malicious code into licensed Pro releases by compromising the vendor's own build pipeline — a clean supply-chain hit on WordPress installs.

2 min
Ransomware

War Room Debrief: How a Fictional Grocery Chain Got Crushed by APT 64

A tabletop exercise at Infosecurity Europe put ransomware, AI poisoning, and deepfake CEO videos inside a simulated supermarket attack. The blue team held the line. The red team shorted the stock anyway.

2 min
Threat Intelligence

OceanLotus Turns SPECTRALVIPER on Vietnamese Investors and a Construction Firm

Two campaigns, one toolset. The Vietnam-aligned crew spent eighteen months inside a state-linked infrastructure builder before pivoting to a supply chain hit on retail stock investors.

3 min
AI Security

The Hades Campaign: Malware That Deceives AI Security Systems

A sophisticated supply chain attack exploits AI analysis, targeting Python environments with silent payloads.

2 min
Vulnerabilities

Miasma Campaign Infects Red Hat npm Packages

Latest supply chain attack reveals persistent threat of credential theft

2 min
AI Security

SymJack: How a Rogue Symlink Turns Your AI Coding Agent Into a Supply Chain Weapon

A newly documented attack technique exploits AI coding agents through malicious repositories and disguised symlinks, silently planting attacker-controlled MCP servers deep inside developer environments.

3 min
© 2026 Threat Vectr