Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Manufacturing

20 articles

GBHackers Supply Chain GitHub May 29

Typosquatted npm Packages Steal Cloud and CI/CD Secrets

A coordinated npm supply chain attack has been uncovered targeting developers working with OpenSearch, ElasticSearch, and DevOps tooling, with attackers acti...

T1195

GBHackers →

Kaspersky Securelist Supply Chain Docker May 29

What’s in the container? Analyzing vulnerabilities, risks and protection with Kaspersky Container Security and the KIRA AI assistant

What are the main risks for container environments: vulnerabilities, supply chain attacks, configuration errors; how to improve container security and how Ka...

T1195

Kaspersky Securelist →

GBHackers Malware Google May 29

Fake Codex Remote UI Steals OpenAI Auth Tokens

A newly uncovered supply chain attack is leveraging a legitimate-looking developer tool, codexui-android, to silently steal OpenAI Codex authentication token...

T1195

GBHackers →

GBHackers Malware Microsoft May 29

MicrosoftSystem64 Malware Abuses Hugging Face for Stealthy Data Theft

A sophisticated supply chain attack targeting the npm ecosystem has been uncovered, involving a malicious package named js-logger-pack that evolved into a po...

T1041 T1195

GBHackers →

CSO Online Supply Chain IBM Red Hat May 29

IBM and Red Hat want to become the ‘security clearinghouse’ for open source applications in the enterprise

Open source code is everywhere in the enterprise; it’s estimated that upwards of 90% of Fortune 500 companies have it in their software supply chains. But op...

T1195 T1598

CSO Online →

SC Media Supply Chain Linux May 28

Linux Supply Chain How-To - PSW #928

SC Media →

SC Media Supply Chain IBM Red Hat May 28

IBM, Red Hat launch Project Lightwell to secure open-source software

IBM and Red Hat launch $5 billion effort to secure open-source software supply chains.

T1195

SC Media →

Cloudflare Blog General Cloudflare May 28

How we built Cloudflare's data platform and an AI agent on top of it

Here’s how we built Town Lake, Cloudflare's unified analytics platform, alongside Skipper, an internal AI agent running on top of it.

Cloudflare Blog →

SecurityWeek General IBM Red Hat May 28

IBM and Red Hat Commit $5 Billion to Secure Open Source Supply Chains Under “Project Lightwell”

Project Lightwell is designed to fix vulnerabilities without breaking what is already in production. The post IBM and Red Hat Commit $5 Billion to Secure Ope...

SecurityWeek →

CISA Advisories Campaigns GitHub May 28

Supply Chain Compromises Impact Nx Console and GitHub Repositories

CISA is prioritizing the response to multiple emerging software supply chain intrusion campaigns targeting developer ecosystems Continuous Integration/Contin...

T1195

CISA Advisories →

Tenable Blog Vulnerability Disclosure May 28

Download pumping: New npm deception technique for supply chain attacks

Learn how attackers exploit automated bot traffic as part of software supply chain attacks to artificially inflate download counters and mask malicious paylo...

T1195

Tenable Blog →

CSO Online General May 28

What the industrialization of exploitation means for defenders

For decades, cybersecurity was a battle of skill. Elite attackers versus elite defenders.

CSO Online →

Cyberscoop Campaigns Google CrowdStrike May 27

CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain

CrowdStrike has dismantled the Glassworm botnet in an operation aided by Google and Shadowserver, stripping the operators’ access to infrastructure that help...

Cyberscoop →

The Hacker News TTPs Google CrowdStrike May 27

GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure

CrowdStrike, in partnership with Google and the Shadowserver Foundation, has announced the simultaneous disruption of all command-and-control (C2) channels a...

T1195

The Hacker News →

SecurityWeek Supply Chain May 27

‘SymJack’ Attack Turns AI Coding Agents Into Supply Chain Attack Delivery Systems

Malicious repositories and disguised symlinks can trick AI coding agents into silently installing attacker-controlled MCP servers capable of stealing secrets...

T1195

SecurityWeek →

GBHackers Campaigns Apple SAP May 27

New Zero-Click WhatsApp Account Takeover Attack Targets iOS 16 Users

A newly uncovered zero-click attack targets iPhone users running iOS 16, allowing threat actors to hijack WhatsApp accounts without any user interaction, vis...

GBHackers →

AWS Security Blog Supply Chain Apple Amazon May 26

Well-architected best practices for software supply chain security

There have been multiple notable supply chain attacks using the npm Registry since September: Shai-Hulud, Chalk/Debug, one abusing tea.xyz tokens, and recent...

T1195 1 IOC

AWS Security Blog →

CISA Advisories Vulnerability Disclosure May 26

ABB B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)

View CSAF Summary An update is available that resolves a vulnerability identified by B&Rs internal security analysis in the product versions listed as affect...

CISA Advisories →

GBHackers Ransomware May 26

NightSpire Ransomware Abuses RDP for Stealthy Persistence

NightSpire has quickly emerged as a significant ransomware threat since its discovery in early 2025, combining classic double-extortion tactics with stealthy...

T1041

GBHackers →

Information Security Buzz General May 26

Expert panel: Passwordless security and the new identity battleground

For years, passwords were the only thing that mattered for securing our online presence, but the discussion around authentication is evolving rapidly. Passke...

Information Security Buzz →

«Previous page 1 ... 9 10 11 12 13 ... 23 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA