TrapDoor and Megalodon Supply Chain Attacks Compromise Thousands — The Hacker News

A coordinated software supply chain attack campaign, known as TrapDoor, has targeted npm, PyPI, and CratesIO, spreading credential-stealing malware. Simultaneously, over 5,500 GitHub repositories have been infected in the 'Megalodon' attack, which involves malicious CI/CD workflows. These attacks highlight the vulnerabilities in open-source ecosystems and underscore the need for enhanced monitoring and validation of third-party code.

Zero-Day Exploitation of LiteSpeed cPanel Plugin CVE-2026-48172 — Google News Security (JP)

A critical zero-day vulnerability (CVE-2026-48172) with a CVSS score of 10.0 has been discovered in the LiteSpeed cPanel plugin. This vulnerability is being actively exploited in the wild, allowing attackers to execute arbitrary code on affected systems. Security teams should prioritize patching and ensure that their systems are updated to mitigate this threat.

• Lithuania investigates possible foreign involvement in major data leak of 600,000 national register entries - European Interest [Google News Security]
• ISC BIND に複数の脆弱性（ScanNetSecurity） - Yahoo!ニュース [Google News Security (JP)]
• Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms [The Hacker News]
• FBI warns of Kali365 phishing service targeting Microsoft 365 accounts [BleepingComputer]