Supply Chain Attacks

Feeds to Scour
SubscribedAll
Scoured 153 posts in 23.6 ms

Shai-Hulud copycat campaign targets Python developers through PyPI typosquatting

 🔓Open Source Software  Content type: Blog
about.gitlab.com·

Hades PyPI Malware: Miasma Campaign Exploits .pth Startup Hooks

 🌐ActivityPub Protocol
sh.itjust.works·

I Replaced Our Commercial Artifact Registry With a Free One After a 5× Renewal Price Hike.

 📦Binary Packaging  Content type: Blog
medium.com
·

Massive PyPI Supply Chain Attack Harvests Cloud Credentials via Python Startup Hooks

 Developer Experience
orca.security·

Shai-Hulud Descends to Hades: Miasma Worm Campaign Spreads with New PyPI Wave

 🌱Bootstrapping  Content type: Blog
socket.dev·

Shai-Hulud Hades PyPI Campaign: 19 Packages Trojanized via Wheel Startup Hooks

 🔄GitHub Actions  Content type: Blog
socradar.io·

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

 🤖AI
securityweek.com·

debsecan-mcp v0.1.2 released to PyPI

 🤖Agent Protocols  Content type: Blog
copyninja.in·

Glone: A CLI to back up all your GitHub repositories

 🔓Open Source Software  Content type: Code
github.com··Hacker News

Software supply chain attacks: check your dependencies

 🚢Trade  Content type: Blog
ncsc.gov.uk·

NCSC Warns Of Rising Software Supply Chain Attacks Targeting Open-Source Packages

 🔧Developer tools
petri.com·

GitHub nukes 70+ Microsoft repos, breaks CI/CD pipelines, following suspected worm infections

 🔧Developer tools  Content type: News
theregister.com··Hacker News

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

 🔄GitHub Actions  Content type: News
bleepingcomputer.com·

The Day Rust’s Time Utilities Started Stealing Secrets

 🦀New Rust Features  Content type: Blog
medium.com
·

someone actually leaked the Miasma supply chain attack toolkit source code on github

 🔓Open Source Software
safedep.io··Hacker News, r/programming
Less-relevant results

Microsoft pulled 73 GitHub repos after malware attack — but still won’t say who’s compromised

 💻Coding Agents
thenewstack.io·

Release v0.2.90 · anthropics/claude-agent-sdk-python

 💻Claude Code  Content type: Code
github.com·

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

 🎭Claude
thehackernews.com·

Slixmpp 1.16.0 – XMPP/Jabber Library for Python – SleekXMPP

 🔌API Design Theory  Content type: Blog
blog.mathieui.net··Hacker News

Anthropic Helps JFrog Govern the Software Supply Chain

 💻Claude Code
pymnts.com·

Keyboard Shortcuts

Navigation

Next / previous item
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Browse
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help