%term

PhantomRaven Wave 5: New Undocumented NPM Supply Chain Campaign Targets DeFi, Cloud, and AI Developers

May 3, 2026 By Tom Abai In Mend

Mend’s security research team has identified a previously undocumented fifth wave of the PhantomRaven campaign, an ongoing NPM supply chain attack that has been stealing developer credentials and secrets since August 2025. This new wave uses a fresh command-and-control server, 33 new malicious packages, and a more sophisticated three-stage payload chain.

Read Post

Mend

Read more about PhantomRaven Wave 5: New Undocumented NPM Supply Chain Campaign Targets DeFi, Cloud, and AI Developers

Treat AI Like an Employee #ai #aisecurity

May 1, 2026 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about Treat AI Like an Employee #ai #aisecurity

AI Without Guardrails Is Like an Employee Without Training #ai #aisecurity #github

May 1, 2026 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about AI Without Guardrails Is Like an Employee Without Training #ai #aisecurity #github

How to Map AI Risk to Existing Compliance Frameworks

May 1, 2026 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about How to Map AI Risk to Existing Compliance Frameworks

AI Sales Avatar Hijacked by Prompt Injection on Livestream #promptinjection #hacked #hacker

May 1, 2026 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about AI Sales Avatar Hijacked by Prompt Injection on Livestream #promptinjection #hacked #hacker

CVE-2026-31431 (Copy Fail): Linux Kernel LPE

Apr 30, 2026 By Dor Hayun In Mend

A new Linux kernel LPE disclosed by Theori/Xint lets any unprivileged local user become root with a 732-byte Python script. Works first try, no race, no per-kernel offsets. CVSS 7.8 (High), effectively critical for shared-kernel and multi-tenant environments.

Read Post

Mend

Read more about CVE-2026-31431 (Copy Fail): Linux Kernel LPE

What Real AI Security Incidents Reveal About Today's Risks

Apr 29, 2026 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about What Real AI Security Incidents Reveal About Today's Risks

Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude Code to Compromise the CAP Framework

Apr 29, 2026 By Tom Abai In Mend

This post covers a supply chain attack introducing a capability not seen before: using an AI coding assistant’s own GitHub access to commit malicious code to a corporate repository.

Read Post

Mend

Read more about Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude Code to Compromise the CAP Framework

Best SAST Tools in 2026: Top 10 Solutions Reviewed

Apr 28, 2026 By Mend.io Communications In Mend

SAST (Static Application Security Testing) tools analyze an application’s source code to identify potential security vulnerabilities without executing the code. They are crucial for finding security flaws early in the development lifecycle, helping developers address issues before they become more costly and difficult to fix. This guide covers the best SAST tools available in 2026 and how to evaluate them.

Read Post

Mend

Read more about Best SAST Tools in 2026: Top 10 Solutions Reviewed

The Butlerian Jihad: Compromised Bitwarden CLI Deploys npm Worm, Poisons AI Assistants, and Dumps GitHub Secrets

Apr 23, 2026 By Tom Abai In Mend

Part 1 covered CanisterWorm, the self-spreading npm worm. Part 2 covered the malicious LiteLLM package. Part 3 covered the telnyx WAV steganography attack. Part 4 covered the xinference AI inference attack. This post covers: a compromised @bitwarden/cli package that combines a self-propagating npm worm, a GitHub Actions secrets dumper, and a novel AI assistant poisoning technique.

Read Post

Mend

Read more about The Butlerian Jihad: Compromised Bitwarden CLI Deploys npm Worm, Poisons AI Assistants, and Dumps GitHub Secrets

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

PhantomRaven Wave 5: New Undocumented NPM Supply Chain Campaign Targets DeFi, Cloud, and AI Developers

Treat AI Like an Employee #ai #aisecurity

AI Without Guardrails Is Like an Employee Without Training #ai #aisecurity #github

How to Map AI Risk to Existing Compliance Frameworks

AI Sales Avatar Hijacked by Prompt Injection on Livestream #promptinjection #hacked #hacker

CVE-2026-31431 (Copy Fail): Linux Kernel LPE

What Real AI Security Incidents Reveal About Today's Risks

Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude Code to Compromise the CAP Framework

Best SAST Tools in 2026: Top 10 Solutions Reviewed

The Butlerian Jihad: Compromised Bitwarden CLI Deploys npm Worm, Poisons AI Assistants, and Dumps GitHub Secrets

Monthly Archive

Follow Us