Sunday, June 14, 2026

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library

Home
Security Creators Network
Webinars
Events
- Upcoming Events
- On-Demand Events
Sponsored Content
Chat
Library
Related Sites
Media Kit
About
- Sponsor

Analytics
AppSec
CISO
Cloud
DevOps
GRC
Identity
Incident Response
IoT / ICS
Threats / Breaches
More
Humor

malicious packages

Miasma: Red Hat Cloud Services npm Packages Hit by a Mini Shai-Hulud-Style Campaign

Alina Podoba | June 1, 2026 | malicious packages

Compromised @redhat-cloud-services npm packages drop a multi-cloud credential stealer via a malicious preinstall hook ...

Laravel-Lang Composer tag-rewrite Supply Chain Attack - image

Laravel-Lang Composer tag-rewrite Supply Chain Attack

Alina Podoba | May 23, 2026 | malicious packages

Four Laravel-Lang Composer packages were poisoned via tag rewrite ...

Mini Shai-Hulud Hits @antv: 323 npm Packages Compromised Through the atool Maintainer Account

Alina Podoba | May 19, 2026 | malicious packages

Mini Shai-Hulud strikes again: 323 npm packages compromised via @antv's atool ...

Inside the RubyGems Supply Chain Attack: How Mend Defender Caught a Coordinated Flood Before It Spread

Maciej Mensfeld | May 14, 2026 | malicious packages

How Mend.io caught a coordinated RubyGems attack and what it teaches us ...

Mini Shai-Hulud Is Back: 172 npm and PyPI Packages Compromised in Latest Wave

Tom Abai | May 12, 2026 | malicious packages

33 malicious NPM packages target DeFi, cloud, and AI developer credentials ...

PhantomRaven Wave 5: New Undocumented NPM Supply Chain Campaign Targets DeFi, Cloud, and AI Developers

Tom Abai | May 3, 2026 | malicious packages

PhantomRaven Wave 5: New Undocumented NPM Supply Chain Campaign Targets DeFi, Cloud, and AI Developers ...

CVE-2026-31431 (Copy Fail): Linux Kernel LPE

Dor Hayun | April 30, 2026 | malicious packages

New Linux 'copy_fail' LPE gives root on all major distros. Mitigate before patching ...

Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude Code to Compromise the CAP Framework

Tom Abai | April 29, 2026 | malicious packages

SAP CAP packages compromised via Claude Code in AI-assisted worm attack ...

The Butlerian Jihad: Compromised Bitwarden CLI Deploys npm Worm, Poisons AI Assistants, and Dumps GitHub Secrets

Tom Abai | April 23, 2026 | malicious packages

Mend.io tracks TeamPCP's latest supply chain attack ...

A Poisoned Xinference Package Targets AI Inference Servers - image 36

A Poisoned Xinference Package Targets AI Inference Servers

Tom Abai | April 22, 2026 | malicious packages

Three poisoned xinference releases on PyPI target AI infrastructure credentials ...

Techstrong TV

Click full-screen to enable volume control

Watch latest episodes and shows

Tech Field Day Events

Upcoming Webinars

Agentic Software Delivery in 2026: How To Bridge The Gap Between AI Ambition and Delivery Confidence

The Cost of Exposure: Managing the Operational Risks of Executive Security Incidents

Untangling the EU Cyber Resilience Act

The Software Supply Chain Just Got Harder to See

Building a Resilient Security Culture in the AI Era with AWS & Datadog

Podcast

Listen to all of our podcasts

Secure by Design

2 weeks ago | Jack Poller

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

3 weeks ago | Jack Poller

NIST’s Nine: The PQC Signature Race Moves to Round Three

3 weeks ago | Jack Poller

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

4 weeks ago | Jack Poller

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

1 month ago | Jack Poller

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

Press Releases

GoPlus's Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

Subscribe to our Newsletters

Most Read on the Boulevard

Zscaler Launches Industry-First Zero Trust Security for Agentic AI

Linux Kernel Bug Caused by Single Character Opens Path to Root Access

ServiceNow Fixes Flaw That Could Lead to Unauthorized Access to Instances

HackerOne Unveils Agentic AI Platform to Discover and Validate Vulnerabilities Faster

Survey: Organizations Take Too Long to Fix Application Vulnerabilities

ServiceNow Breach Explained: API Exposure, Risks & Security

Atomic Arch npm Campaign Adds Malicious Dependency

ServiceNow Discloses Security Incident Exposing Customer Data

Top 8 AI App Dev Platforms in 2026

CISA BOD 26-04: Frequently asked questions about the new risk-based patching directive

Industry Spotlight

Cloud Security Cybersecurity Data Privacy Data Security Featured Incident Response Industry Spotlight Malware Mobile Security Network Security News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches Vulnerabilities

Anthropic Mythos AI Model Strikes Fear in Trump Administration, U.S. Banks

April 12, 2026 Jeffrey Burt | Apr 12 Comments Off on Anthropic Mythos AI Model Strikes Fear in Trump Administration, U.S. Banks

AI and Machine Learning in Security Cybersecurity Featured Industry Spotlight Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight

The Day the Security Music Died

April 8, 2026 Alan Shimel | Apr 08 Comments Off on The Day the Security Music Died

Featured Industry Spotlight Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Uncategorized

The Lock, Not the Alarm: How Palo Alto’s Koi Acquisition Rewrites Endpoint Security

February 18, 2026 Jack Poller | Feb 18 Comments Off on The Lock, Not the Alarm: How Palo Alto’s Koi Acquisition Rewrites Endpoint Security

Top Stories

Cloud Security Cybersecurity Data Privacy Data Security Featured Identity & Access Incident Response Mobile Security Network Security News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Vulnerabilities

ServiceNow Fixes Flaw That Could Lead to Unauthorized Access to Instances

June 11, 2026 Jeffrey Burt | 3 days ago 0

AI and ML in Security Cybersecurity Featured News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Zero-Trust

Zscaler Launches Industry-First Zero Trust Security for Agentic AI

June 10, 2026 Jon Swartz | 4 days ago 0

Cloud Security Cybersecurity Data Privacy Data Security Featured Incident Response Malware Mobile Security Network Security News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threat Intelligence Vulnerabilities

Anthropic’s Mythos Can Serve Up N-Day Exploits in Minutes or Hours

June 9, 2026 Jeffrey Burt | Jun 09 0

Download Free eBook

[su_panel border="0px solid #ddd" radius="0" text_align="center" padding-top="0px" padding-bottom="0px"]

7 Must-Read eBooks for Security Professionals

[/su_panel]

Join the Community

Add your blog to Security Creators Network
Write for Security Boulevard
Bloggers Meetup and Awards
Ask a Question
Email: [email protected]

Useful Links

About
Media Kit
Sponsor Info
Copyright
TOS
DMCA Compliance Statement
Privacy Policy

Related Sites

Techstrong Group
Cloud Native Now
DevOps.com
Digital CxO
Techstrong Research
Techstrong TV
Techstrong.tv Podcast
DevOps Chat
DevOps Dozen
DevOps TV

Powered by Techstrong Group

Copyright © 2026 Techstrong Group Inc. All rights reserved.

Insert/edit link

Enter the destination URL

URL

Link Text

Open link in a new tab

Or link to existing content

Search

No search term specified. Showing recent items. Search or use up and down arrow keys to select an item.