3초 만에 20개 npm 패키지를 오염시킨 자동화 Supply Chain Attack
Miasma campaign poisons 20-plus npm packages, hunts for developer secrets
Miasma campaign poisons 20-plus npm packages, hunts for developer secrets
408개 AUR 패키지 대상의 커밋 메타데이터 위조 공급망 공격 발생
Russia-linked threat group put ChatGPT to work from lure to payload
Google says criminals used AI-built zero-day in planned mass hack spree
신뢰 기반 소셜 엔지니어링을 통한 Root Certificate 탈취 및 기기 제어 공격
Russia's Fancy Bear still attacking routers to boost fake sites, NCSC warns
Germany Doxes "UNKN," Head of RU Ransomware Gangs REvil, GandCrab
I Traced a "Cute" Minecraft Phishing Site to a C2 Server in Chicago
Security news weekly round-up - 3rd April 2026
They thought they were downloading Claude Code source. They got a nasty dose of malware instead
Don't open that WhatsApp message, Microsoft warns
PyPI Supply Chain Attack Compromises LiteLLM, Enabling the Exfiltration of Sensitive Information
PyPI의 litellm 1.82.8 패키지가 .pth 파일 자동 실행 기능을 악용해 API 키·SSH 키·클라우드 토큰 등 모든 자격 증명을 탈취