The Good, the Bad and the Ugly in Cybersecurity - Week 22
SentinelOne, Friday, May 29th, 2026
Weekly cybersecurity roundup covering malicious hosting dismantled, in-person data extortion tactics, and supply chain credential-stealing attacks.
This week's cybersecurity update highlights three major developments: Dutch authorities dismantled Stark Industries, a malicious hosting firm supporting Russian cyberattacks and DDoS operations, while a Romanian national received 56 months in prison for breaching Oregon state networks and identity theft.
The FBI warns of Silent Ransom Group escalating tactics to include in-person data extortion at victim locations, combining phishing with physical operatives attempting to insert USB drives. Security researchers uncovered TrapDoor, a coordinated supply chain campaign deploying credential-stealing malware across npm, PyPI, and Crates.io targeting cryptocurrency and AI developers, utilizing ecosystem-specific techniques and targeting AI coding assistants through poisoned files.