malicious – Seite 2 – Wolfinisoftware.de

security

‘SymJack’ Attack Turns AI Coding Agents Into Supply Chain Attack Delivery Systems

27.05.2026

Malicious repositories and disguised symlinks can trick AI coding agents into silently installing attacker-controlled MCP servers capable of stealing secrets, compromising CI pipelines, and deploying malicious code. The post ‘SymJack’ Attack Turns AI Coding Agents Into Supply Chain Attack Delivery Systems appeared first on SecurityWeek.

Mehr lesen →

soc

TrapDoor: Malicious npm, PyPI, Crates.io Packages Target Developer Secrets & AI Tooling

25.05.2026

TrapDoor: Malicious npm, PyPI, Crates.io Packages Target Developer Secrets & AI Tooling Researchers identified a coordinated supply chain malware campaign named TrapDoor, involving waves of malicious packages across npm, PyPI, and Crates.io. Public reports tie the activity to credential theft and environment compromise, with an emphasis on developer secrets, crypto assets, and persistence on workstations […]

Mehr lesen →

security

Hundreds of Malicious Packages Force RubyGems to Suspend Registrations

13.05.2026

More than 500 packages were pushed during the attack, but the target appears to have been RubyGems itself rather than users. The post Hundreds of Malicious Packages Force RubyGems to Suspend Registrations appeared first on SecurityWeek.

Mehr lesen →

security

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

12.05.2026

Over 400 malicious versions of 170 packages were published as part of the new Mini Shai-Hulud campaign. The post TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack appeared first on SecurityWeek.

Mehr lesen →

security

Checkmarx Jenkins AST Plugin Compromised in Supply Chain Attack

11.05.2026

A malicious version of the plugin was published to the Jenkins Marketplace late last week. The post Checkmarx Jenkins AST Plugin Compromised in Supply Chain Attack appeared first on SecurityWeek.

Mehr lesen →

security

Fake OpenAI repository on Hugging Face pushes infostealer malware

09.05.2026

A malicious Hugging Face repository that reached the platform’s trending list impersonated OpenAI’s „Privacy Filter“ project to deliver information-stealing malware to Windows users. […]

Mehr lesen →

security

‚TrustFall‘ Convention Exposes Claude Code Execution Risk

07.05.2026

Malicious repositories can trigger code execution in Claude Code, Cursor CLI, Gemini CLI, and CoPilot CLI with minimal or no user interaction, thanks to skimpy warning dialogs.

Mehr lesen →

security

Microsoft Warns of Sophisticated Phishing Campaign Targeting US Organizations

05.05.2026

The malicious emails claim to contain a conduct report and lure victims to a Microsoft phishing website that leverages AitM. The post Microsoft Warns of Sophisticated Phishing Campaign Targeting US Organizations appeared first on SecurityWeek.

Mehr lesen →

security

Backdoored PyTorch Lightning package drops credential stealer

04.05.2026

A malicious version of the PyTorch Lightning package published on the Python Package Index (PyPI) delivers a credential-stealing payload targeting browsers, environment files, and cloud services. […]

Mehr lesen →

security

SANS Stormcast Monday, May 4th, 2026: Malicious Homebrew Ads; Wireshark Update; Digicert False Positive; cPanel Exploited

04.05.2026

Malicious Ad for Homebrew Leads to MacSync Stealer https://isc.sans.edu/diary/Malicious%20Ad%20for%20Homebrew%20Leads%20to%20MacSync%20Stealer/32942 Wireshark Update https://www.wireshark.org/docs/relnotes/wireshark-4.6.5.html Digicert Microsoft Defender False Positive https://www.reddit.com/r/cybersecurity/comments/1t2hfsh/mde_flagging_digi_cert_certificate_as_malicious/ https://bugzilla.mozilla.org/show_bug.cgi?id=2033170 cPanel Exploited https://support.cpanel.net/hc/en-us/articles/40073787579671-Security-CVE-2026-41940-cPanel-WHM-WP2-Security-Update-04-28-2026

Mehr lesen →

Tag: malicious