top of page

REQUEST CONSULTATION

Checkmarx Confirmed on May 11 a Malicious Version of Its Jenkins AST Plugin Was Published to the Jenkins Marketplace. Third TeamPCP Compromise of Checkmarx in Three Months. CVE-2026-33634, CVSS 9.4.

Atarus Security Team
May 13
0 min read

Recent Posts

The long weekend in review: Glasswing found 10,000 vulnerabilities. The supply chain attacks didn't break for the holiday.

The long weekend in review: Glasswing found 10,000 vulnerabilities. The supply chain attacks didn't break for the holiday.

Trend Micro patched an actively exploited Apex One zero-day. Compromise the endpoint security server, own every endpoint it manages.

Trend Micro patched an actively exploited Apex One zero-day. Compromise the endpoint security server, own every endpoint it manages.

GitHub confirmed overnight: TeamPCP exfiltrated 3,800 internal repositories via a poisoned VS Code extension.

GitHub confirmed overnight: TeamPCP exfiltrated 3,800 internal repositories via a poisoned VS Code extension.

Comments

bottom of page