Apr 28 2026 Ongoing supply-chain attack 'explicitly targeting' security, dev tools

Source

Vendor confirms repo data exposure after Lapsus$ claims source code, secrets dump [...]