supply-chain

supply chain security tag

Hijack Loader Delivers PureHVNC in Latin America; Insider Sells Exploits

Nov 15, 2025

—

by

Elles De Yeager

in Operations & Campaigns

Hijack Loader used malicious SVGs to deliver PureHVNC in Latin America; a separate DOJ case details an insider selling exploit tooling for cryptocurrency.
PhantomRaven Malware Found in 126 npm Packages, Stealing GitHub Tokens

Nov 15, 2025

—

by

Reza Rafati

in Cyber News & Updates

PhantomRaven exploits npm packages to steal GitHub tokens and CI/CD secrets, Koi Security says.