3초 만에 20개 npm 패키지를 오염시킨 자동화 Supply Chain Attack
Miasma campaign poisons 20-plus npm packages, hunts for developer secrets
Miasma campaign poisons 20-plus npm packages, hunts for developer secrets
Pink is the latest goon squad to use fake helpdesk calls to steal creds
Lone attacker published 14 malicious npm packages mimicking popular OpenSearch, Elasticsearch libraries
GitHub Internal Repositories Breached: Source Code and Internal Data Allegedly Exfiltrated in 2026 Supply Chain Attack
Worm rubs out competitor's malware, then takes control
Anatomy of a Low-Detection Credential Phishing Campaign
Bot her emails: most modern phishing campaigns are AI-enabled
Defending Your Code: Surviving the 2026 Node and Python Supply Chain Attacks
The Bitwarden CLI Just Got Backdoored. Here's What the Supply Chain Attack Actually Did.
The Vercel breach: OAuth attack exposes risk in platform environment variables
macOS ClickFix attacks deliver AppleScript stealers to snarf credentials, wallets
신뢰 기반 소셜 엔지니어링을 통한 Root Certificate 탈취 및 기기 제어 공격