# Incident

Trivy GitHub Action compromise exposed CI/CD secrets in a stealth supply-chain attack

Trivy GitHub Action compromise exposed CI/CD secrets in a stealth supply-chain attack A supply-chain compromise in Aqua Security’s aquasecurity/trivy-action sho...

March 22, 2026

4 min read

Lucas Oliveira

Research

Namibia Airports Company breach claim raises admin-access risk

Namibia Airports Company breach claim raises admin-access risk

Namibia Airports Company breach claim raises admin-access risk | 2026 Executive Summary Namibia Airports Company (NAC) disclosed that it detected a cybersecurit...

March 21, 2026

6 min read

Lucas Oliveira

Research

GlassWorm Shifts to Transitive Open VSX Dependencies in Developer Supply-Chain Push

GlassWorm Shifts to Transitive Open VSX Dependencies in Developer Supply-Chain Push

GlassWorm Shifts to Transitive Open VSX Dependencies in Developer Supply-Chain Push GlassWorm is no longer just a story about obviously malicious extensions. Th...

March 21, 2026

5 min read

Lucas Oliveira

Research

Cline CLI 2.3.0 supply chain attack silently installed OpenClaw on developer systems

Supply Chain Security

Cline CLI 2.3.0 supply chain attack silently installed OpenClaw on developer systems

Cline CLI 2.3.0 supply chain attack silently installed OpenClaw on developer systems Executive summary The Cline CLI supply chain incident is a practical remind...

March 19, 2026

5 min read

Lucas Oliveira

Research

FBI seizes Handala sites after destructive Stryker hack

FBI seizes Handala sites after destructive Stryker hack

FBI seizes Handala sites after destructive Stryker hack | 2026 Executive Summary The FBI and U.S. Department of Justice have seized two websites linked to Handa...

March 19, 2026

6 min read

Lucas Oliveira

Research

DarkSword iOS Exploit Chain Hits Multiple Threat Actors

DarkSword iOS Exploit Chain Hits Multiple Threat Actors

DarkSword iOS Exploit Chain Hits Multiple Threat Actors Executive Summary Google Threat Intelligence Group says DarkSword is a full-chain iOS [exploit](https://...

March 19, 2026

6 min read

Lucas Oliveira

Research

DarkSword iOS Exploit Chain Hits Multiple Threat Actors

DarkSword shows how iPhone zero-days spread far beyond a single operator Executive Summary Google Threat Intelligence Group says DarkSword is a full-chain iOS [...

March 19, 2026

6 min read

Lucas Oliveira

Research

TELUS Digital breach: ShinyHunters claims 1PB data theft

TELUS Digital breach: ShinyHunters claims 1PB data theft

TELUS Digital breach: ShinyHunters claims 1PB data theft | 2026 Executive Summary TELUS Digital confirmed on March 12, 2026 that it is investigating unauthorize...

March 12, 2026

7 min read

Lucas Oliveira

Research

CISA KEV update puts Ivanti, SolarWinds, and Omnissa on urgent patch list

vulnerability

vulnerability

CISA KEV update puts Ivanti, SolarWinds, and Omnissa on urgent patch list

CISA KEV update puts Ivanti, SolarWinds, and Omnissa on urgent patch list CISA’s March 2026 KEV update deserves attention well beyond federal environments. By a...

March 12, 2026

6 min read

Lucas Oliveira

Research

Doppelgänger backend leak maps 100+ disinformation domains

Doppelgänger backend leak maps 100+ disinformation domains

Doppelgänger: backend artifacts map 100+ disinformation domains | 2026 Executive Summary Researchers tracking Russia-linked influence operations say backend art...

March 11, 2026

8 min read

Lucas Oliveira

Research

Coruna iOS Exploit Kit Likely Traced to L3Harris Trenchant