Home
Our Services
Free resources
- Privacy Research
  Free to use data privacy research
  Key Capabilities
  Latest privacy news tracking
  Product versions
  Latest privacy news tracking
  Track the latest news, breaches and fines
  Key features
  Tracks the latest breaches and fines
  View by industry
  View by breach method
  View by privacy topic
  Links to original articles
  Free to use
  
  Learn more »
  Latest Threat Intelligence
  Product versions
  Latest Threat Intelligence
  Track the Common Vulnerability Exposures (CVEs)
  Key features
  Tracks the latest vulnerabilities
  View by company
  View by breach method
  Links to NVD
  Free to use
  
  Learn more »
  Breach modelling and ROI calculator
  Product versions
  Breach modelling and ROI calculator
  Model what a breach would look like for you in your industry and use this to calculate your return on investment
  Key features
  Model your breach
  Assess the severity
  Compare by industry
  Breakdown costs
  Export to your business plan
  Free to use
  
  Learn more »
Privacy news
Company
- About Us
- FAQ
- Contact Us

TrapDoor Supply Chain Attack Spreads CredentialStealing Malware via npm PyPI and CratesIO

A new coordinated crossecosystem software supply chain attack campaign has targeted npm PyPI and Cratesio to distribute credentialstealing malware The campaign codenamed TrapDoor spans more than 34 malicious packages across over 384 versions The earliest activity was recorded on May 22 2026 at 820 pm UTC with new packages published to the ecosystems in waves from a cluster of

Read the original article 25 May 2026

Key Capabilities

Latest privacy news tracking

Latest Threat Intelligence

Breach modelling and ROI calculator

TrapDoor Supply Chain Attack Spreads CredentialStealing Malware via npm PyPI and CratesIO