Sunday 05 July 2026 18:07:07 GMT+02:00

Netcrook

HomeManifesto
News
Techcrook
Geocrook
WikicrookTeamAppContact
EnglishItalianoArabic

#PolinRider


108 Poisoned Builds, One Shared Trap: The New Cross-Ecosystem Supply-Chain Wave

Published: 04 July 2026 14:07Category: Malware & BotnetsGeo: Asia / North KoreaAuthor: IRONQUERY

A campaign tied to PolinRider has put malicious packages and browser extensions into npm, Packagist, Go, and Google Chrome, showing how one delivery pattern can travel across very different trust systems.

When a Dependency Update Becomes the Doorway: PolinRider and the Open-Source Trust Trap

Published: 03 July 2026 10:42Category: Cyber Warfare & Nation-State OperationsGeo: Asia / North KoreaAuthor: AGONY

A supply-chain campaign tied to PolinRider shows how package ecosystems can turn routine development work into a high-risk execution path.

Trusted Release Keys Turned Into a Supply-Chain Weapon

Published: 03 July 2026 08:16Category: CybercrimeGeo: North America / USAAuthor: VULNCRUSADER

A maintainer-account takeover can do more damage than a single malicious file, especially when one publish pipeline reaches several software ecosystems at once.