Cyber Intelligence

GitHub Actions Supply Chain Attack Redirects Tags to Steal CI/CD Credentials

Medium Severity Global
Date Occurred May 19, 2026 05:28 UTC
Event Type Cyber Intelligence
Source TheHackerNews
Recorded May 19, 2026
Full Description

In yet another software supply chain attack, threat actors have compromised the popular GitHub Actions workflow, actions-cool/issues-helper, to run malicious code that harvests sensitive credentials a

Original Source
https://thehackernews.com/2026/05/github-actions-supply-chain-attack.html
Event Metadata
  • ID #2155
  • Type Cyber Intelligence
  • Region Global
  • Severity Medium
  • Indexed May 19, 2026
Quick Actions
Back to Events View on Globe Read Original Article

Related Events

Microsoft confirms patching issues in restricted Windows networks
May 19, 2026 Medium
SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access
May 19, 2026 Medium
Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer
May 19, 2026 Medium
Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account
May 19, 2026 Medium
INTERPOL ‘Operation Ramz’ seizes 53 malware, phishing servers
May 18, 2026 Medium
SHub macOS infostealer variant spoofs Apple security updates
May 18, 2026 Medium