Chibitek's security team is actively responding to two simultaneous global supply chain attacks: the TeamPCP/Trivy campaign (CVE-2026-33634) and the newly disclosed Axios npm compromise. Learn what happened, who is affected, and exactly what Chibitek has already done to protect your business.

n early November 2025, the global payments firm was targeted by ShinyHunters, a well-known cybercrime group. The attackers accessed a legacy third-party cloud storage system that remained online despite no longer being actively used. The exposed data included internal operational documents and merchant onboarding materials dating to 2020 and earlier.