UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

March 11, 2026

A threat actor known as UNC6426 leveraged keys stolen following the supply chain compromise of the nx npm package last year to completely breach a victim's cloud environment within a span of 72 hours. The attack started with the theft of a developer's GitHub token, which the threat actor then used to gain unauthorized access to the cloud and steal data. "The threat actor, UNC6426, then used this

from The Hacker News https://ift.tt/xgSaeQw
via Cyber Security

Bitcoin Mining

UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

Popular Feeds

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Featured News

Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days

Random Posts

Popular Posts

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Bitcoin Mining

UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

You may like these posts

Share

Popular Feeds

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Featured News

Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days

Random Posts

Popular Posts

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

Where Multi-Factor Authentication Stops and Credential Abuse Starts