supply-chain
All articles and research tagged with supply-chain
Claude finds 353 zero-days on Packagist
2026-01-22 We built an AI-powered security pipeline to audit popular ecommerce extensions on Packagist. The vulnerabilities we found range from password leaks to full remote code execution.
skimming magento adobe-commerce supply-chain +1
ConnectPOS leaked Github secrets for years
2026-01-12 Sansec discovered that ConnectPOS has been showing their Github credentials on their site for 4 years. This would enable attackers to slip malicious code into each of the thousands of ConnectPOS retail installations. Sansec recommends to verify integrity of installed code.
skimming supply-chain magento connectpos +2
Scan your store now
for malware & vulnerabilities
$ curl ecomscan.com | sh
eComscan is the most thorough security scanner for Magento, Adobe Commerce, Shopware, WooCommerce and many more.
Learn more
