Official CheckMarx Jenkins package compromised with infostealer

Monday, May 11, 2026 at 10:03 PM UTC·Source: BleepingComputer

Updated: Monday, May 11, 2026 at 11:02 PM UTC

Executive Summary

Checkmarx warned over the weekend that a rogue version of its Jenkins Application Security Testing (AST) plugin had been published on the Jenkins Marketplace. [...]

Analysis

Checkmarx warned over the weekend that a rogue version of its Jenkins Application Security Testing (AST) plugin had been published on the Jenkins Marketplace. [...]

Source Attribution

Originally published by BleepingComputer on May 11, 2026.

Related Threats

MEDIUMVulnerability

Alipay lets shoppers delegate purchases to AI

Chinese payments giant Alipay has begun letting users authorise AI to handle payments on their behalf.

1h agoFinextra

LOWVulnerability

Cloudflare Cuts 1,100, Arctic Wolf Axes 250 Amid AI Surge

<img src="https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/cloudflare-cuts-1100-arctic-wolf-axes-250-amid-ai-surge-image_small-1-a-31657.jpg" align=right hspace=4><b>Cloud Connectivity, Security Operations Providers Reportedly Chop 20%, 7% of Staff</b><br>Cloudflare cut more than 1,100 workers from its 5,483-person staff, saying the layoffs will align Cloudflare's operations with AI-drive

1h agoBank Info Security

CRITICALVulnerability

Why Hospitals Must Rethink Cyber Resilience

In the face of relentless cyberattacks that threaten patient safety, hospitals must strengthen their resilience, with clinical continuity, secure backups and coordinated recovery emerging as critical strategies, said John Riggi of the American Hospital Association and Josh Howell of Rubrik.

1h agoBank Info Security