GitHub Employee Device Compromised via Malicious VS Code Extension
On May 19, 2026, a GitHub employee's device was compromised, resulting in the exfiltration of…
CISA Adds Supply Chain Attack Vulns to KEV Catalog
CISA Adds Supply Chain Attack Vulnerabilities to KEV Catalog On May 27, 2026, CISA added…
Megalodon Campaign Hits 5,000 GitHub Repositories
Megalodon Campaign Targets Over 5,000 GitHub Repositories An automated campaign, dubbed 'Megalodon', injected malicious workflow…
Nitrogen Ransomware Hits Foxconn, Steals 8TB of Data
The Nitrogen ransomware group claims to have disrupted operations at multiple Foxconn North American factories,…
Supply Chain Attack Floods npm & PyPI with Malicious Packages
Hundreds of malicious package versions were uploaded across both the npm and PyPI ecosystems in…
Nitrogen Ransomware Hits West Pharma, Foxconn Supply Chains
West Pharmaceutical Services confirmed a ransomware attack on May 4, 2026, leading to significant disruption…
Trellix Source Code Repository Breached by Unknown Threat Actor
An unauthorized party accessed a portion of Trellix’s source code repository, the cybersecurity firm confirmed…