Ongoing supply-chain attack 'explicitly targeting' security, dev tools

Software security testing outfit Checkmarx has become the latest organization caught up in an ongoing attack on security-tool ...
The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

Why a recent supply-chain attack singled out security firms Checkmarx and Bitwarden

It has been a bad six weeks for security firm Checkmarx. Over the past 40 days, it has been the victim of at least one supply ...

Checkmarx admits it was hit by major cyberattack that saw data leaked onto dark web

CheckMarx confirms March 2026 attack did result in data theft.
Cybernews

Checkmarx hit again, popular tools spreading credential-stealing malware

Checkmarx suffers a second supply chain attack in a month, resulting in hackers injecting credential-stealing malware into ...