CRITICAL

⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos

The Hacker News • May 25, 2026

HIGH

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

SecurityWeek • May 12, 2026

HIGH

JDownloader website compromised to distribute malicious installers

SC Media • May 11, 2026

HIGH

Checkmarx Jenkins AST Plugin Compromised in Supply Chain Attack

SecurityWeek • May 11, 2026

HIGH

The never-ending supply chain attacks worm into SAP npm packages, other dev tools

The Register Security • Apr 30, 2026

MEDIUM

STARDUST CHOLLIMA Likely Compromises Axios npm Package

CrowdStrike •

HIGH

When PUPs Grow Fangs: Dragon Boss Solutions' $10 Supply Chain Risk

Huntress • Apr 14, 2026

HIGH

Hackers hijacked CPUID downloads, served STX RAT to victims

Help Net Security • Apr 13, 2026

HIGH

CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads

SecurityWeek • Apr 13, 2026

HIGH

Do not get high(jacked) off your own supply (chain)

Cisco Talos • Apr 03, 2026

HIGH

TeamPCP’s attack spree slows, but threat escalates with ransomware pivot

Help Net Security • Mar 30, 2026

HIGH

An AI gateway designed to steal your data

Securelist • Mar 26, 2026

HIGH

Experts warn of a ‘loud and aggressive’ extortion wave following Trivy hack

CyberScoop • Mar 24, 2026

HIGH

Trivy Supply Chain Attack: What Happened and What You Need to Know

Aqua Security • Mar 21, 2026

HIGH

Trivy Under Attack Again: Widespread GitHub Actions Tag Compromise Exposes CI/CD Secrets Attackers

Reddit r/netsec • Mar 21, 2026

HIGH

The Future of Supply Chain Backdoor Detections

Eclypsium • Mar 11, 2026