supply-chain

Malware distributed via ILSpy WordPress domain breach

• malware
• supply-chain

Malware distributed via ILSpy WordPress domain breach

SC Staff April 7, 2026

Malicious actors have breached the official WordPress site for open-source decompiler ILSpy to compromise developers with malware...

Read More Read more about Malware distributed via ILSpy WordPress domain breach

Malicious PyPI package enables Claude prompt, data compromise

• aiml
• data-security
• supply-chain

Malicious PyPI package enables Claude prompt, data compromise

SC Staff April 7, 2026

Malicious PyPI package enables Claude prompt, data compromise GBHackers News reports that threat actors have been distributing...

Read More Read more about Malicious PyPI package enables Claude prompt, data compromise

Acquisition reform is materializing, but the harder test still lies ahead

• supply-chain

Acquisition reform is materializing, but the harder test still lies ahead

Val Moon April 7, 2026

The Pentagon is finally getting serious about procurement reform, but the proof will be in the pudding.

Read More Read more about Acquisition reform is materializing, but the harder test still lies ahead

The Axios npm breach taught us the need for a personal zero-trust

• application-security
• devsecops
• supply-chain
• zero-trust

The Axios npm breach taught us the need for a personal zero-trust

Aaron Beardslee April 7, 2026

Security pros need to develop a mental zero-trust that trusts nothing and tests everything.

Read More Read more about The Axios npm breach taught us the need for a personal zero-trust

Thousands of European tourist sites impacted by ticketing platform breach

• ransomware
• supply-chain

Thousands of European tourist sites impacted by ticketing platform breach

SC Staff April 6, 2026

Nearly 3,500 museums, monuments, and cultural sites across Europe had their online reservations disrupted following a cyberattack...

Read More Read more about Thousands of European tourist sites impacted by ticketing platform breach

Extensive compromise facilitated by dozens of illicit npm packages

• malware
• supply-chain

Extensive compromise facilitated by dozens of illicit npm packages

SC Staff April 6, 2026

Thirty-six malicious npm packages masquerading as Strapi CMS plugins have been spreading multiple payloads enabling Redis and PostgreSQL abuse,...

Read More Read more about Extensive compromise facilitated by dozens of illicit npm packages

Multiple EU entities impacted by European Commission breach, CERT-EU says

• data-security
• supply-chain

Multiple EU entities impacted by European Commission breach, CERT-EU says

SC Staff April 3, 2026

At least 29 other European Union entities were disclosed by CERT-EU to have had their data compromised...

Read More Read more about Multiple EU entities impacted by European Commission breach, CERT-EU says

Third-party hack affirmed by Nissan after Everest ransomware assertions

• ransomware
• supply-chain

Third-party hack affirmed by Nissan after Everest ransomware assertions

SC Staff April 2, 2026

Major Japanese multinational automaker Nissan has confirmed having its data compromised in a cyberattack against a third-party...

Read More Read more about Third-party hack affirmed by Nissan after Everest ransomware assertions

What Is A Router? (And all things AI) – PSW #920

• ai-benefitsrisks
• aiml
• supply-chain

What Is A Router? (And all things AI) – PSW #920

Paul Asadoorian April 2, 2026

Read More Read more about What Is A Router? (And all things AI) – PSW #920

Trivy supply chain intrusion reportedly compromises Cisco source code

• data-security
• supply-chain
• vulnerability-management

Trivy supply chain intrusion reportedly compromises Cisco source code

SC Staff April 1, 2026

Cisco was reported to have had its source code stolen by threat actors following an attack linked...

Read More Read more about Trivy supply chain intrusion reportedly compromises Cisco source code