Cyber Security News

Hacking Brief: May 1, 2026

Supply Chain and Cargo Theft Operations Intensify

The FBI has issued warnings about two distinct cyber-enabled theft campaigns targeting different sectors. Cyber-enabled cargo theft has surged dramatically, with threat actors compromising freight brokers and carriers to redirect shipments worth millions of dollars. In one case, a vape company lost $1 million in products after attackers successfully hijacked a legitimate shipment. Separately, a supply chain attack compromised PyTorch Lightning versions 2.6.2 and 2.6.3 on April 30, deploying hidden payloads designed to steal developer credentials. The malicious packages were distributed through PyPI, prompting an immediate quarantine and forced remediation by the repository maintainers.

Law Enforcement Actions Target Chinese and Western Threat Actors

U.S. authorities have escalated legal actions against multiple threat actors across different campaigns. Federal prosecutors charged Xu Zewei, a 34-year-old Chinese national allegedly operating under China's Ministry of State Security, with hacking universities and private companies. FBI officials stated that Chinese state-sponsored hackers face arrest if they travel internationally, while the bureau's cyber division chief characterized China's "hacker-for-hire ecosystem" as "out of control." Meanwhile, federal charges were filed against a teenage hacker known as "Bouquet," suspected of being part of the Scattered Spider collective. In France, authorities detained a 15-year-old for alleged involvement in a data breach affecting the National Agency for Secure Documents (ANTS), the country's national ID agency.

Sources: SecurityWeek · The Hacker News · The Record · The Register · Bank Info Security · SC Magazine · Recorded Future News