Cloud Threat Landscape

Incidents
Actors
Techniques
Defenses
DFIR Poster
Newspaper
ABC Poster
Periodic Table
Tools
Targeted Technologies
About
RSS
STIX
Back to wiz.io

Cloud Threat Landscape

Qix npm package supply chain compromise

Type

Incident

Actors

Pub. date

September 8, 2025

Initial access

End-user compromise

Impact

Supply chain attack

References

https://www.wiz.io/blog/widespread-npm-supply-chain-attack-breaking-down-impact-scope-across-debug-chalk

Status

Stub

Last edited

Sep 15, 2025 12:47 PM

Made with 💙 by Wiz

Last Updated: April 3, 2025