Clankerusecase
MITRE ATT&CK detection coverage
 ← Back to main site
Home/ MITRE Matrix/ Command and Control/ T1105

T1105Ingress Tool Transfer

T1105 — Ingress Tool Transfer is a MITRE ATT&CK technique in the Command and Control tactic. Clankerusecase tracks 171 detection use cases covering it and 87 threat-intel articles citing it.

Command and Control
View on the matrix → Filter Detection Library MITRE official spec ↗
171Use cases
87Articles
0Sub-techniques
1Tactic

Use cases covering this technique (171)

[WEEKLY] Brand-Impersonation Domain Fetch Followed by User-Context Loader Within 10 Minutes Internal delivery · alerting DSPDD [WEEKLY] Cross-Platform ClickFix Paste-to-Pipe Loader (UI-Parent Shell with Decode-and-Execute Payload) Internal delivery · alerting DSΣPDD [WEEKLY] Developer/AI tooling runtime spawns shell or egress LOLBin (unauth RCE post-expl) Internal exploit · alerting DSPDDCS [WEEKLY] Developer package install spawning script-host with non-registry C2 within 5 minutes Internal install · alerting DSPDD [WEEKLY] Internet-facing server process spawns interpreter then beacons to first-seen external host within 5 minutes Internal install · alerting DSPDD [WEEKLY] Internet-Facing Service Process Spawning Unix Shell or Ingress-Tool LOLBin (Edge Zero-Day Post-Exploit) Internal install · alerting DSΣPDD [WEEKLY] Low-Code / AI Workflow Runtime Sandbox-Escape — Server Process Spawns Shell + Public Egress Internal exploit · alerting DSΣPDD [WEEKLY] Package Manager Install Spawning Outbound Egress to Non-Registry Infrastructure Within 5 Minutes Internal install · alerting DSPDD [WEEKLY] Package manager lifecycle hook spawns network-fetching shell or runtime Internal install · alerting DSΣPDD [WEEKLY] Package manager spawns network-fetching child to public code-hosting within minutes of install Internal install · alerting DSPDD [WEEKLY] Server / AI-agent process spawns shell or LOLBIN with public egress — post-RCE behavioural chain Internal exploit · alerting DSΣPDD [WEEKLY] Web App Interpreter (Node/Python/Java/PHP) Spawns Shell or Net-Download LOLBin on Internet-Facing Host Internal exploit · alerting DSPDD Microsoft Intune Device Health Scripts ESCU actions · hunting P Microsoft Intune Mobile Apps ESCU actions · hunting P BITSAdmin Download File ESCU actions · alerting P Cisco Isovalent - Curl Execution With Insecure Flags ESCU actions · hunting P Cisco NVM - Suspicious File Download via Headless Browser ESCU actions · alerting P Cisco NVM - Webserver Download From File Sharing Website ESCU actions · alerting P Curl Execution with Percent Encoded URL ESCU actions · hunting P Detect Certify Command Line Arguments ESCU actions · alerting P Download Files Using Telegram ESCU actions · alerting P File Download or Read to Pipe Execution ESCU actions · alerting P Linux Curl Upload File ESCU actions · alerting P Linux Ingress Tool Transfer Hunting ESCU actions · hunting P Linux Ingress Tool Transfer with Curl ESCU actions · hunting P Living Off The Land Detection ESCU actions · alerting P Log4Shell CVE-2021-44228 Exploitation ESCU actions · alerting P LOLBAS With Network Traffic ESCU actions · alerting P PowerShell Script Block With URL Chain ESCU actions · alerting P PowerShell WebRequest Using Memory Stream ESCU actions · alerting P Suspicious Curl Network Connection ESCU actions · alerting P Windows Cabinet File Extraction Via Expand ESCU actions · alerting P Windows Curl Download to Suspicious Path ESCU actions · alerting P Windows Curl Upload to Remote Destination ESCU actions · alerting P Windows DLL Module Loaded in Temp Dir ESCU actions · hunting P Windows DNS Query Request To TinyUrl ESCU actions · hunting P Windows File Download Via CertUtil ESCU actions · alerting P Windows File Download Via PowerShell ESCU actions · hunting P Windows Ingress Tool Transfer Using Explorer ESCU actions · hunting P Windows Ldifde Directory Object Behavior ESCU actions · alerting P Windows Process Execution From RDP Share ESCU actions · hunting P Windows SQL Spawning CertUtil ESCU actions · alerting P Windows SSH Proxy Command ESCU actions · hunting P WinRAR Spawning Shell Application ESCU actions · alerting P Cisco Secure Firewall - Communication Over Suspicious Ports ESCU actions · hunting P Cisco Secure Firewall - Connection to File Sharing Domain ESCU actions · hunting P Cisco Secure Firewall - File Download Over Uncommon Port ESCU actions · hunting P Cisco Secure Firewall - High EVE Threat Confidence ESCU actions · hunting P Cisco Secure Firewall - Malware File Downloaded ESCU actions · hunting P Cisco Secure Firewall - Repeated Malware Downloads ESCU actions · hunting P Cisco Secure Firewall - Snort Rule Triggered Across Multiple Hosts ESCU actions · hunting P Cisco Secure Firewall - Wget or Curl Download ESCU actions · hunting P Juniper Networks Remote Code Execution Exploit Detection ESCU actions · alerting P Any Powershell DownloadFile ESCU actions · alerting P Any Powershell DownloadString ESCU actions · alerting P CertUtil Download With URLCache and Split Arguments ESCU actions · alerting P CertUtil Download With VerifyCtl and Split Arguments ESCU actions · alerting P Curl Download and Bash Execution ESCU actions · alerting P Wget Download and Bash Execution ESCU actions · alerting P Windows CertUtil Download With URL Argument ESCU actions · alerting P [LLM] AUR build process egress to temp.sh or github.com/fardewoak/nodejs-argo Bespoke c2 · alerting DSΣPDDCS [LLM] AI coding agent (Claude Code / Cursor / Codex) spawning shell that fetch-and-executes remote payload Bespoke install · alerting DSΣPDDCS [LLM] File writes to sensitive paths by LangGraph Python/Node runtime Bespoke actions · hunting DSΣPDDCS [LLM] ShinyHunters staging-server IP connections — SimpleHTTP on TCP/8888 Bespoke delivery · hunting DSΣPDDCSCW [LLM] Talos prevalent malware hash dropped to disk (DeviceFileEvents pivot) Bespoke delivery · hunting DSΣPDDCS [LLM] Self-hosted AI agent process spawns shell/curl/wget then executes the fetched payload Bespoke install · alerting DSΣPDDCS [LLM] Outbound connection or DNS resolution to imperva_artifactory.com (OpenClaw PoC C2) Bespoke c2 · alerting DSΣPDDCS [LLM] Hades on-import payload: python interpreter spawns Bun runtime download Bespoke install · alerting DSΣPDDCS [LLM] npm/node install-time spawn downloads Bun runtime (Shai-Hulud worm pattern) Bespoke install · alerting DSΣPDDCS [LLM] npm lifecycle script harvests secrets via TruffleHog or chains to GitHub API Bespoke actions · alerting DSΣPDDCS [LLM] Miasma supply-chain worm leaked repo clone, install or fetch Bespoke delivery · alerting DSΣPDDCS [LLM] MIPS shell-script dropper on Linux edge device — JDY architecture-aware payload fetch Bespoke install · hunting DSΣPDDCS [LLM] Python interpreter downloads oven-sh Bun runtime v1.3.14 from GitHub releases at import time Bespoke install · alerting DSΣPDDCS [LLM] Earth Dahu / Gamaredon HTA-to-VBScript chain (mshta.exe spawning wscript/cscript) Bespoke delivery · alerting DSΣPDDCS [LLM] Python interpreter downloading Bun runtime ZIP from oven-sh GitHub release Bespoke install · alerting DSPDDCS [LLM] Phar archive or PHPSpreadsheet RCE marker written by web-server process Bespoke delivery · alerting DSΣPDDCS [LLM] Internal host outbound to CVE-2026-50751 Qilin actor IPs (post-bypass C2 / staging) Bespoke c2 · alerting DSΣPDDCSCW [LLM] AnyDesk, Bomgar, SuperOps or Zoho Assist installer execution (UNC3753 RMM foothold) Bespoke install · hunting DSΣPDDCS [LLM] PowerShell Invoke-WebRequest dropping script.ps1 to user AppData (KongTuke stage-2) Bespoke install · alerting DSΣPDDCS [LLM] Same host calling KongTuke C2 from both powershell.exe and curl.exe within short window Bespoke c2 · alerting DSPDDCS [LLM] Argamal Stage2 BITSAdmin Pull of zaesdl.dat from GitHub Bespoke c2 · alerting DSΣPDDCS [LLM] Downloader or shell child of npm/pip install (postinstall RAT loader) Bespoke install · alerting DSΣPDDCS [LLM] npm/node lifecycle script fetching Bun runtime from github.com/oven-sh/bun Bespoke install · alerting DSΣPDDCS [LLM] Bun runtime download to /tmp from a node process during npm install Bespoke delivery · alerting DSPDDCS [LLM] Egress to typosquatted C2 flipboxstudio.info (Laravel-Lang Composer SC) Bespoke c2 · alerting DSΣPDDCS [LLM] PHP CLI drops hidden /tmp dropper artefacts (Laravel-Lang autoload payload) Bespoke install · alerting DSΣPDDCS [LLM] C2 callback to moika.tech payload distribution infrastructure Bespoke c2 · alerting DSΣPDDCS [LLM] node.exe spawns detached child from tmpdir after npm install (moika.tech dropper) Bespoke install · hunting DSPDDCS [LLM] PraisonAI python process spawning shell, curl, or wget (post-exploitation tool-use abuse) Bespoke actions · alerting DSΣPDDCS [LLM] Container egress to cryptominer pool / Kinsing C2 Bespoke c2 · alerting DSΣPDDCS [LLM] payload.bin written under node_modules by node process Bespoke install · alerting DSΣPDDCS [LLM] Outbound HTTP beacon to vpmdhaj C2 (aab.sportsontheweb.net) Bespoke c2 · alerting DSΣPDDCS [LLM] Bun runtime download from github.com/oven-sh during npm install (Gen-2 loader) Bespoke delivery · hunting DSΣPDDCS [LLM] axios RAT C2 callout to sfrclak.com / 142.11.206.73:8000 Bespoke c2 · alerting DSΣPDDCS [LLM] Yamcs Java process beacons to webhook / interact / tunneling service (CVE-2026-46621 C2) Bespoke c2 · alerting DSΣPDDCS [LLM] Laravel-Lang stealer file drop in .laravel_locale temp directory Bespoke install · alerting DSΣPDDCS [LLM] cscript.exe launching .vbs from .laravel_locale temp directory Bespoke install · alerting DSΣPDDCS [LLM] Stealer or VBS launcher dropped into .laravel_locale temp directory Bespoke install · alerting DSΣPDDCS [LLM] VS Code/Cursor extension host fetches dropper from nrwl/nx orphan commit on GitHub Bespoke install · hunting DSΣPDDCS [LLM] TamperedChef C2 / distribution callback to appsuites.ai and sibling domains Bespoke c2 · alerting DSΣPDDCS [LLM] VS Code child process fetching payload from nrwl/nx orphan commit (Nx Console v18.95.0 dropper) Bespoke install · alerting DSΣPDDCS [LLM] WormFrp / Webworm Amazon S3 staging bucket access (wamanharipethe / whpjewellers) Bespoke actions · alerting DSΣPDDCS [LLM] TeamPCP rope.pyz Dropper Fetch from check.git-service.com C2 Bespoke c2 · hunting DSΣPDDCS [LLM] TeamPCP rope.pyz Dropper Infection Markers on Linux Bespoke install · alerting DSΣPDDCS [LLM] Python process executing transformers.pyz dropped from git-tanstack.com (TeamPCP) Bespoke install · alerting DSΣPDDCS [LLM] Outbound connection to TeamPCP C2 IP 83.142.209.194 Bespoke c2 · hunting DSΣPDDCS [LLM] mistralai 2.4.6 dropper: curl downloading transformers.pyz from 83.142.209.194 Bespoke delivery · hunting DSΣPDDCS [LLM] Outbound network connection to mistralai 2.4.6 dropper C2 (83.142.209.194) Bespoke c2 · alerting DSΣPDDCS [LLM] Drop of /tmp/transformers.pyz on Linux endpoint Bespoke install · alerting DSΣPDDCS [LLM] Malicious node-ipc package landed on disk under node_modules Bespoke delivery · hunting DSΣPDDCS [LLM] DeepSeek-TUI sub-agent shell execution via AGENTS.md prompt injection (CVE-2026-45374) Bespoke exploit · alerting DSΣPDD [LLM] Rust cargo-test binary in target/debug/deps spawning shell or network tool (CVE-2026-45311 exploitation) Bespoke exploit · alerting DSΣPDD [LLM] CL-STA-1132 EarthWorm staging download from 146.70.100.69:8000/php_sess Bespoke c2 · hunting DSΣPDD [LLM] Bun runtime fetched from github.com/oven-sh/bun during npm install (Bitwarden CLI hijack) Bespoke delivery · alerting DSPDDCS [LLM] Python child process executing lightning _runtime/start.py bootstrapper Bespoke install · alerting DSΣPDD [LLM] Mini Shai-Hulud payload file drop: setup.mjs/execution.js by hash & size in node_modules Bespoke install · hunting DSΣPDD [LLM] Qinglong cryptominer payload download from file.551911.xyz Bespoke delivery · alerting DSΣPDDCS [LLM] Hidden .fullgc cryptominer binary written to /ql/data/db/ Bespoke install · alerting DSΣPDDCS [LLM] GPT-Proxy backdoor C2 / Stage-2 download (sync.geeker.indevs.in, gibunxi4201/kube-node-diag) Bespoke c2 · alerting DSΣPDD [LLM] Outbound connection to Velora DEX npm supply-chain C2 89.36.224.5 Bespoke c2 · alerting DSΣPDDCS [LLM] node process spawning bash/curl chain to fetch Velora DEX install.sh dropper Bespoke delivery · alerting DSΣPDDCS [LLM] macOS file write of profiler binary to com.apple.Terminal masquerade path Bespoke install · alerting DSΣPDDCS [LLM] Malicious axios or plain-crypto-js package files written to node_modules Bespoke delivery · hunting DSΣPDDCS [LLM] hackerbot-claw payload host: DNS/HTTP egress to hackmoltrepeat.com (C2 + exfil) Bespoke c2 · alerting DSΣPDDCS [LLM] hackerbot-claw second-stage download: curl -sSfL pipe-bash from hackmoltrepeat.com/molt Bespoke install · alerting DSΣPDDCS [LLM] Outbound fetch of attacker-controlled autoimport VSIX from ColossusQuailPray GitHub release Bespoke delivery · alerting DSΣPDD [LLM] IoliteLabs VSCode extension dropper: VS Code child process reaching rraghh.com / oortt.com C2 Bespoke delivery · alerting DSΣPDD [LLM] IoliteLabs IOC sweep: rraghh.com / oortt.com hostnames + campaign file hashes Bespoke c2 · hunting DSΣPDD [LLM] Outbound connection to TeamPCP C2 83.142.209.203 / ringtone.wav stego payload fetch Bespoke c2 · alerting DSΣPDDCS [LLM] WAV-disguised stager pull from TeamPCP loader 83.142.209.203:8080 Bespoke delivery · hunting DSΣPDDCS [LLM] PowerShell masquerading as Windows Terminal at %PROGRAMDATA%\wt.exe (Axios RAT Windows stage) Bespoke install · alerting DSΣPDDCS [LLM] Linux Python RAT orphaned via nohup python3 /tmp/ld.py (Axios npm payload) Bespoke install · alerting DSΣPDDCS [LLM] axios RAT artifact dropped: com.apple.act.mond / wt.exe / ld.py with known SHA256 Bespoke install · alerting DSΣPDD [LLM] TeamPCP C2 egress to 83.142.209.203:8080 (telnyx WAV-stego dropper) Bespoke c2 · hunting DSΣPDDCS [LLM] TeamPCP WAV-stego payload drop (hangup.wav / ringtone.wav) Bespoke delivery · alerting DSPDDCS [LLM] gofile.io archive download by browser followed by extracted-EXE execution within 30 minutes Bespoke install · alerting DS [LLM] ForceMemo: Node.js v22.9.0 spawned by Python from user home directory Bespoke install · alerting DSΣPDD [LLM] Bash-spawned curl to xygeni-action C2 nip.io endpoint with /b/in /b/q /b/r path on CI runner Bespoke c2 · alerting DSΣPDDCS [LLM] Cloudflare-tunnel curl-piped Python stager (kamikaze.sh / kube.py) Bespoke delivery · alerting DSΣPDDCS [LLM] CanisterWorm persistence: pglog/pg_state/internal-monitor systemd unit and /tmp/pglog drop Bespoke install · alerting DSΣPDDCS [LLM] GlassWorm Stage-3 RAT installation under %APPDATA%\QtCvyfVWKH\index.js Bespoke install · alerting DSΣPDDCS [LLM] VSCode/VSCodium spawning shell or curl to raw.githubusercontent.com/BlokTrooper Bespoke delivery · alerting DSΣPDDCS [LLM] VSCode-family host fetching from raw.githubusercontent.com/BlokTrooper/extension path Bespoke delivery · hunting DSΣPDDCS [LLM] Glassworm side-staged Node.js runtime under %APPDATA%\_node_x86 / _node_x64 Bespoke install · alerting DSΣPDD [LLM] DRILLAPP variant 2: Edge launched with --remote-debugging-port=9222 for CDP-based file download Bespoke c2 · alerting DSΣPDDCS [LLM] Cacheract memdump.py download/execution on CI runner or developer host Bespoke install · alerting DSΣPDD [LLM] npm/yarn/pnpm postinstall: Node child egressing to non-registry public host Bespoke c2 · hunting DSPDDCS [LLM] Scavenger loader/install.js dropped into node_modules (known SHA256 or filename match) Bespoke delivery · hunting DSΣPDD [LLM] tj-actions/changed-files compromise: self-hosted runner egress to nikitastupin memdump gist (CVE-2025-30066) Bespoke delivery · hunting DSΣPDD [LLM] Endpoint contact with attacker C2 setup-service.com (OpenClaw skill stager) Bespoke c2 · alerting DSΣPDDCS [LLM] Pastebin-piping stager retrieved from rentry.co/openclaw-core (macOS/Linux ClawHub skill) Bespoke delivery · alerting DSPDDCS [LLM] Download of openclawcore-1.0.3.zip from denboss99 GitHub release (Windows OpenClaw skill payload) Bespoke delivery · alerting DSΣPDDCS [LLM] curl | bash or wget | sh executed by Claude/Cursor/OpenClaw agent process Bespoke exploit · alerting DSΣPDDCS [LLM] Executable dropped into C:\inetpub\pub\ shared directory Bespoke delivery · alerting DSΣPDDCS [LLM] DWrite.dll Rust sideloader dropped outside Windows directory (ClawdBot redundant payload) Bespoke install · hunting DSΣPDDCS [LLM] VS Code (Code.exe/node) drops payload to %TEMP%\Lightshot staging directory Bespoke delivery · hunting DSΣPDDCS [LLM] G_Wagon dropper: node.exe spawns system tar.exe extracting from stdin (-x -f - -C) Bespoke delivery · alerting DSΣPDDCS [LLM] G_Wagon Python runtime drop into npm cache with lib_core/renderer or python_runtime paths Bespoke install · alerting DSΣPDDCS [LLM] Python parent spawns detached 'python3 -' child reading payload from stdin Bespoke install · alerting DSΣPDDCS [LLM] Node.js process downloads payload via curl/wget (React2Shell SNOWLIGHT/VShell deployment) Bespoke install · alerting DSΣPDDCS [LLM] Sha1-Hulud npm Worm — Egress to bun.sh / oss.trufflehog.org / keychecker.trufflesecurity.com from npm/node context Bespoke install · alerting DSΣPDD [LLM] NPM preinstall hook fetching Bun installer from bun.sh (Sha1-Hulud dropper) Bespoke delivery · alerting DSΣPDDCS [LLM] LittleDaemon / DaemonicLogistics update-hijack URL pattern (popup_4.2.0.2246.dll, /update/updateInfo.bzp, /update/file6.bdat, /update/file2. Bespoke delivery · alerting DSΣP [LLM] DaemonicLogistics fake-Tencent payload drop (logo.gif at %PROGRAMDATA%\Tencent\QQUpdateMgr\UpdateFiles) Bespoke install · alerting DSΣP [LLM] CI/CD Linux build host outbound to gist.githubusercontent.com (tj-actions IOC pattern) Bespoke c2 · alerting DSΣPDD [LLM] CI/CD runner outbound to gist.githubusercontent.com (tj-actions CVE-2025-30066 staging fetch) Bespoke c2 · alerting DSΣPDDCS [LLM] Scavenger Loader DLL (node-gyp.dll) written inside node_modules of CVE-2025-54313 packages Bespoke delivery · alerting DSΣPDDCS [LLM] ScreenConnect MSI sideload from lmfao.su (Solidity Language post-exploit RAT install) Bespoke install · alerting DSΣPDDCS [LLM] Self-hosted GitHub Action runner downloads memdump.py from compromised gist (CVE-2025-30066) Bespoke delivery · alerting DSΣPDDCS [LLM] Outbound fetch of file.sh via attacker-controlled commit d8daa0b... on raw.githubusercontent.com Bespoke c2 · alerting DSΣPDDCS [LLM] Vulnerable Moq 4.20.0 or Devlooped.SponsorLink NuGet package landed on endpoint Bespoke delivery · alerting DSΣPDDCS

Articles citing this technique (87)

crit 400+ AUR Packages Hijacked: What the “Atomic Arch” Campaign Means for Supply-Chain Security art-14
high Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code art-28
crit LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution art-32
crit ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities art-37
high A tale of two eras art-40
high New Attacks Trick OpenClaw AI Agent Into Running Code and Leaking Secrets art-41
high Miasma and Hades Are Spreading Now: Detect Them on Developer Machines with Suspicious Files art-45
high npm v12 delivers one of the biggest security improvements in years art-46
crit Cybersecurity Stars Awards 2026: Winners Announced Across 95 Categories art-48
crit OceanLotus: From external espionage to domestic targeting art-54
crit China-Linked JDY Botnet Expands to 1,500+ Devices for Cyber Reconnaissance art-59
high Pythagora-io/gpt-pilot Compromised on GitHub - Shai-Hulud Credential Stealer Blocked by Python Linter art-78
crit WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine art-86
high Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer art-90
crit [GHSA / CRITICAL] CVE-2026-45034: PHPSpreadsheet has a patch bypass for CVE-2026-34084 art-99
crit Meta Blocks NSO Group's New WhatsApp Phishing Attack, Files Contempt Order art-101
crit UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign art-108
high Hypotheses, telemetry, and human judgment: Inside Cisco Talos Threat Hunting art-129
high Argamal: Malware hidden in hentai games art-137
high Why EDR and proxy won’t save you from supply chain malware art-142
crit The npm Threat Landscape: Attack Surface and Mitigations (Updated June 2) art-143
high Multiple redhat-cloud-services npm Packages compromised art-144
high Laravel-Lang Supply Chain Attack: Every Tag Across Multiple Composer Packages Rewritten to Steal CI Secrets art-145
crit Malicious npm packages abuse dependency confusion to profile developer environments art-161
crit [GHSA / CRITICAL] CVE-2026-47393: PraisonAI `deploy --type api` emits a Flask server with authentication disabled by default art-167
crit What’s in the container? Analyzing vulnerabilities, risks and protection with Kaspersky Container Security and the KIRA AI assistant art-180
high Typosquatted npm packages used to steal cloud and CI/CD secrets art-183
crit ESET APT Activity Report Q4 2025–Q1 2026 art-189
crit [GHSA / CRITICAL] CVE-2026-46621: Yamcs Vulnerable to Authenticated Remote Code Execution (RCE) via Jython Algorithm Code Injection art-191
crit Laravel Lang Supply Chain Advisory art-211
high Supply Chain Attack Targets Laravel-Lang Packages with Credential Stealer art-212
crit The Wild West of VS Code extensions and how a poisoned extension breached GitHub art-236
crit Tracking TamperedChef Clusters via Certificate and Code Reuse art-237
high GitHub breached via a malicious VS Code extension: why developer devices are the real target art-238
crit Webworm: New burrowing techniques art-240
crit The AntV Supply Chain Campaign Expands: Microsoft's `durabletask` PyPI Package Compromised art-248
crit [GHSA / CRITICAL] CVE-2026-45758: Malicious code in guardrails-ai 0.10.1 (supply chain compromise) art-255
crit [GHSA / CRITICAL] GHSA-wx9m-wx4f-4cmg: Malicious dropper in mistralai 2.4.6 PyPI package art-272
crit Malicious node-ipc versions published to npm in suspected maintainer account compromise art-284
crit [GHSA / CRITICAL] CVE-2026-45374: DeepSeek TUI: task_create Insecure Defaults Enable RCE via Prompt Injection in Project Files art-292
crit [GHSA / CRITICAL] CVE-2026-45311: DeepSeek TUI: run_tests Tool Enables RCE via Malicious Repository Without Approval art-293
crit Threat Brief: Exploitation of PAN-OS Captive Portal Zero-Day for Unauthenticated Remote Code Execution art-325
crit Bitwarden CLI Hijacked on npm: Bun-Staged Credential Stealer Targets Developers, GitHub Actions, and AI Tools art-335
crit lightning PyPI Compromise: A Bun-Based Credential Stealer in Python art-343
high "A Mini Shai-Hulud Has Appeared": Bun-Based Stealer Hits SAP @cap-js and mbt npm Packages art-348
high Qinglong task scheduler RCE vulnerabilities exploited in the wild for cryptomining art-353
high GPT-Proxy Backdoor in npm and PyPI turns Servers into Chinese LLM Relays art-367
high @velora-dex/sdk Compromised on npm: Malicious Version Drops macOS Backdoor via launchctl Persistence art-399
crit axios Compromised on npm - Malicious Versions Drop Remote Access Trojan art-401
high hackerbot-claw: An AI-Powered Bot Actively Exploiting GitHub Actions - Microsoft, DataDog, and CNCF Projects Hit So Far art-403
high GlassWorm goes native: New Zig dropper infects every IDE on your machine art-405
high Malicious IoliteLabs VSCode Extensions Target Solidity Developers on Windows, macOS, and Linux with Backdoor art-412
crit TeamPCP Plants WAV Steganography Credential Stealer in telnyx PyPI Package art-413
high You Patched LiteLLM, But Do You Know Your AI Blast Radius? art-414
high Axios npm Package Compromised: Supply Chain Attack Delivers Cross-Platform RAT art-420
high axios compromised on npm: maintainer account hijacked, RAT deployed art-421
crit Popular telnyx package compromised on PyPI by TeamPCP art-425
high A cunning predator: How Silver Fox preys on Japanese firms this tax season art-426
crit ForceMemo: Hundreds of GitHub Python Repos Compromised via Account Takeover and Force-Push art-434
high xygeni-action Compromised: C2 Reverse Shell Backdoor Injected via Tag Poisoning art-435
high CanisterWorm Gets Teeth: TeamPCP's Kubernetes Wiper Targets Iran art-444
crit GlassWorm Hides a RAT Inside a Malicious Chrome Extension art-458
crit fast-draft Open VSX Extension Compromised by BlokTrooper art-459
high Glassworm Strikes Popular React Native Phone Number Packages art-466
high DRILLAPP: new backdoor targeting Ukrainian entities with possible links to Laundry Bear art-470
high kubernetes-el Compromised: How a Pwn Request Exploited a Popular Emacs Package art-475
high StepSecurity Detects Early Supply Chain Risk Signals in kilocode npm art-553
crit Another npm Supply Chain Attack: The 'is' Package Compromise art-554
high Harden-Runner detection: tj-actions/changed-files action is compromised art-556
crit How a Malicious Google Skill on ClawHub Tricks Users Into Installing Malware art-564
crit Snyk Finds Prompt Injection in 36%, 1467 Malicious Payloads in a ToxicSkills Study of Agent Skills Supply Chain Compromise art-574
crit DynoWiper update: Technical analysis and attribution art-590
high Fake Clawdbot VS Code Extension Installs ScreenConnect RAT art-594
high G_Wagon: npm Package Deploys Python Stealer Targeting 100+ Crypto Wallets art-604
crit Malicious PyPI Packages spellcheckpy and spellcheckerpy Deliver Python RAT art-608
crit LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan art-642
high Critical Remote Code Execution Vulnerabilities Discovered in React Server Components and Next.js art-651
high How Harden Runner Detected the Sha1-Hulud Supply Chain Attack in CNCF's Backstage Repository art-652
high Sha1-Hulud: The Second Coming - Zapier, ENS Domains, and Other Prominent NPM Packages Compromised art-653
crit PlushDaemon compromises network devices for adversary-in-the-middle attacks art-695
high How StepSecurity Harden Runner Detected Unexpected Microsoft Defender Installation on GitHub-hosted Ubuntu Runners art-795
crit When 'Changed Files' Changed Everything: Our Black Hat 2025 Presentation on the tj-actions Supply Chain Breach art-815
crit Maintainers of ESLint Prettier Plugin Attacked via npm Supply Chain Malware art-837
high Cursor IDE Malware Extension Compromise in $500k Crypto Heist art-842
crit Reconstructing the TJ Actions Changed Files GitHub Actions Compromise art-957
high Ultralytics AI Pwn Request Supply Chain Attack art-1055
high .NET developers alert: Moq NuGET package exfiltrates user emails from git art-1399