Back to Blog

supply chain attack

4 posts
Poisoned Trivy scanner led to malicious LiteLLM releases on PyPI
supply chain attack
Supply Chain Security
Python Security

Poisoned Trivy scanner led to malicious LiteLLM releases on PyPI

Poisoned Trivy scanner led to malicious LiteLLM releases on PyPI | 2026 The LiteLLM incident is what modern software supply-chain compromise looks like when one...

March 25, 2026
5 min read
Lucas Oliveira
Trivy GitHub Action compromise exposed CI/CD secrets in a stealth supply-chain attack
supply chain attack
Incident
Threat Intel

Trivy GitHub Action compromise exposed CI/CD secrets in a stealth supply-chain attack

Trivy GitHub Action compromise exposed CI/CD secrets in a stealth supply-chain attack A supply-chain compromise in Aqua Security’s aquasecurity/trivy-action sho...

March 22, 2026
4 min read
Lucas Oliveira
Chrome Extension Supply-Chain Attack: ShotBird and QuickLens
supply chain attack
Incident
Threat Intel

Chrome Extension Supply-Chain Attack: ShotBird and QuickLens

Chrome Extension Supply-Chain Attack: ShotBird and QuickLens | 2026 Executive Summary ShotBird and QuickLens, two Chrome extensions that were previously legitim...

March 10, 2026
8 min read
Lucas Oliveira
Lotus Panda Chrysalis: Notepad++ Supply Chain Attack | 2026
⭐ Featured
supply chain attack
state-sponsored APT

Lotus Panda Chrysalis: Notepad++ Supply Chain Attack | 2026

Executive Summary Since June 2025, the Chinese state-sponsored [threat actor](https://invaders.ie/resources/glossary/advanced-persistent-threat) Lotus Panda (al...

February 3, 2026
7 min read
Lucas Oliveira

Categories
13

All Posts
vulnerability
29
Threat Hunting & Intel
20
Cloud & Application Security
5
Cybercrime
5
supply chain attack
4