UiPath — Cyber Attacks, Breaches & Threat Activity

Threat entity extracted from intelligence sources

Frequency
10
occurrences
First Seen
May 12, 2026
Last Seen
July 8, 2026

UiPath is a organization tracked across 5 threat clusters and 10 intelligence report mentions on ThreatCluster. First observed May 12, 2026; most recent activity July 8, 2026.

Related Threat Clusters

  • Mini Shai-Hulud Supply Chain Attack Targets SAP npm Packages

    A new supply chain attack, dubbed 'Mini Shai-Hulud', has compromised multiple npm packages related to SAP's Cloud Application Programming Model (CAP). This attack involves injecting malicious preinstall scripts into…

    680 articles · Updated April 29, 2026
  • TeamPCP Exploits Trust in Open-Source Software and AI Tools

    In a span of four months, the threat actor TeamPCP has compromised over 1,000 open-source software packages, injecting malicious code and exploiting the trust developers place in these resources. The attack method…

    7 articles · Updated June 19, 2026
  • GitHub Breach Linked to Compromised Nx Console Extension

    On May 19, 2026, GitHub announced an investigation into unauthorized access to internal repositories after a malicious Visual Studio Code extension was executed on an employee's device. The attack, attributed to the…

    2 articles · Updated July 7, 2026
  • RubyGems Suspends New Signups Following Malicious Package Attack

    RubyGems has halted new user sign-ups after a malicious attack on May 11, 2026, which involved the publication of hundreds of malicious packages targeting its staff. The malicious code aimed to execute cross-site…

    6 articles · Updated May 13, 2026
  • OpenAI Faces Supply Chain Attack via TanStack npm Library

    OpenAI confirmed a security breach affecting two employee devices due to a supply chain attack linked to the TanStack npm library, part of a broader campaign called Mini Shai-Hulud. The attack involved the publication…

    39 articles · Updated May 14, 2026

Recent Intelligence Reports

  • Link — edge.prnewswire.com · July 8, 2026
  • How software development’s speed obsession enabled TeamPCP’s chaos crusade — Cyberscoop · June 18, 2026
  • Hades PyPI Supply Chain Attack: 26 Packages Steal Cloud Credentials | Let's Data Science — Letsdatascience · June 11, 2026
  • The next big DeFi exploit will start before the code is deployed — Cryptorank · May 26, 2026
  • Shai-Hulud goes open-source — News.Risky.Biz · May 15, 2026
  • OpenAI confirms security breach in TanStack supply chain attack — Bleepingcomputer · May 14, 2026
  • OpenAI denies user data exposure from TanStack npm, Mini Shai — Cryptopolitan · May 14, 2026
  • OpenAI says no user data was touched in the TanStack npm worm — Thenextweb · May 14, 2026

CVSS v3.1 Breakdown