Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Checkmarx hit by network compromise

Incident
First reported
Last updated
Happening score
H score 14
2 unique sources, 2 articles

Summary

Hide ▲

Checkmarx disclosed a breach tied to the March 23, 2026 Trivy supply-chain attack, and the compromise matters because attackers used it to tamper with GitHub Actions workflows and Open VSX marketplace plugins for credential theft. The malicious changes were designed to push a credential stealer capable of harvesting developer secrets. The company says the affected repository is maintained separately from customer production systems and has locked down access while the investigation continues.

Related Happenings

GitHub data exposed after GitHub breach

Data Leak
First: 20.05.2026 11:14 Last: 20.05.2026 11:14 Sources 1

About this happening: GitHub confirmed **exfiltration** of **internal repositories**, making private code and related content potentially available to outsiders. Attackers on the **Breached cybercrime...

Open Happening

Shai-Hulud public GitHub repository credential exposure

Data Leak
First: 18.05.2026 20:28 Last: 18.05.2026 20:28 Sources 1

About this happening: **Shai-Hulud** stole **developer credentials** that were later exposed in **public GitHub repositories**, turning a theft phase into a public leak of access data. The exposed mate...

Open Happening

Grafana Labs Says GitHub hit by cyberattack

Incident
First: 17.05.2026 10:13 Last: 17.05.2026 10:13 Sources 1

About this happening: A **Grafana Labs** incident was later tied to the **Mini Shai-Hulud** supply-chain campaign against **TanStack npm packages**. Grafana said an unauthorized party used a token to a...

Open Happening

TeamPCP campaign expands across multiple victims

Campaign
First: 15.05.2026 13:54 Last: 15.05.2026 13:54 Sources 1

About this happening: The **TeamPCP / Mini Shai-Hulud** supply-chain operation is actively compromising **hundreds of packages**, exposing **downstream developers** to **malware delivery** and **creden...

Open Happening

Mistral AI hit by network compromise

Incident
First: 15.05.2026 01:50 Last: 15.05.2026 01:50 Sources 1

About this happening: Mistral AI disclosed a **codebase management system compromise** tied to the **Mini Shai-Hulud** supply-chain attack, and the intrusion briefly contaminated some **SDK packages**....

Open Happening

Timeline

  1. 27.04.2026 17:19 2 articles · 1mo ago

    Checkmarx supply chain attack tampers with GitHub Actions and Open VSX plugins

    Exploitation Observed

    A March 23, 2026 supply chain attack against Checkmarx led to tampering of two GitHub Actions workflows and two plugins distributed through the Open VSX marketplace to push a credential stealer capable of harvesting developer secrets; TeamPCP claimed responsibility for the attack.

    Show sources
    Open in new tab
  2. 27.04.2026 17:19 1 articles · 1mo ago

    Checkmarx confirms dark web publication of repository data

    Initial Disclosure

    Checkmarx said its ongoing investigation found that a cybercriminal group published company data on the dark web, and current evidence indicates the data likely originated from Checkmarx's GitHub repository and was accessed through the March 23, 2026 supply chain attack; the company said the repository is maintained separately from customer production, no customer data is stored there, access has been locked down, and forensic verification of the posted data is ongoing.

    Show sources
    Open in new tab