National Cyber Warfare Foundation (NCWF)

Lightning and Intercom Packages Compromised in Supply Chain Attack (Campaign)
0 user ratings		2026-05-20 12:06:23
milo
Attacks
In the PyPI package lightning, malicious code is triggered automatically upon import. The code downloads and installs the Bun runtime and executes a large (~11 MB) obfuscated JavaScript payload. This behavior enables credential harvesting from developer environments and CI/CD ...

In the PyPI package lightning, malicious code is triggered automatically upon import. The code downloads and installs the Bun runtime and executes a large (~11 MB) obfuscated JavaScript payload. This behavior enables credential harvesting from developer environments and CI/CD ...

Source: Wiz
Source Link: https://threats.wiz.io/all-incidents/lightning-and-intercom-packages-compromised-in-supply-chain-attack

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Attacks


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.