Packagist — Cyber Threats, Attacks & Incidents

Threat entity extracted from intelligence sources

Frequency
8
occurrences
First Seen
March 4, 2026
Last Seen
July 3, 2026

Packagist is a technology platform tracked across 5 threat clusters and 8 intelligence report mentions on ThreatCluster. First observed March 4, 2026; most recent activity July 3, 2026.

Related Threat Clusters

Recent Intelligence Reports

  • North Korean hackers expand supply chain attack campaign across ecosystems — Ground.News · July 3, 2026
  • Hackers Compromise GitHub Maintainer Accounts to Publish PolinRider — Gbhackers · July 3, 2026
  • Laravel Lang Supply Chain Advisory — Snyk · May 23, 2026
  • Supply Chain Attack Targets Laravel — Aikido.Dev · May 23, 2026
  • Packagist Warns: Update Composer Now After GitHub Actions Token Leak — Gbhackers · May 14, 2026
  • 6 Malicious Packagist Themes Ship Trojanized jQuery in OphimCMS Supply Chain Attack — Cybersecuritynews · March 17, 2026
  • Packagist Themes Deliver Trojanized jQuery in OphimCMS Supply Chain Attack — Gbhackers · March 17, 2026
  • Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux — Thehackernews · March 4, 2026

CVSS v3.1 Breakdown