ZeroFox Weekly Intelligence Brief – September 20, 2025

ZeroFox Weekly Intelligence Brief – September 20, 2025

ZeroFox’s Weekly Intelligence Briefing highlights the major developments and trends across the threat landscape, including digital, cyber, and physical threats. ZeroFox Intelligence is derived from a variety of sources, including—but not limited to—curated open-source accesses, vetted social media, proprietary data sources, and direct access to threat actors and groups through covert communication channels. Information relied upon to complete any report cannot always be independently verified. As such, ZeroFox applies rigorous analytic standards and tradecraft in accordance with best practices and includes caveat language and source citations to clearly identify the veracity of our Intelligence reporting and substantiate our assessments and recommendations. All sources used in this particular Intelligence product were identified prior to 6:00 AM (EDT) on September 18, 2025; per cyber hygiene best practices, caution is advised when clicking on any third-party links.

Read the Brief

View the full report here

CrowdStrike Namespace Targeted in Expanding Npm Supply Chain Attack

What we know:

• Security researchers have identified a large-scale npm supply chain attack (dubbed “Shai-Hulud”) that has compromised at least 187 packages, including popular ones, such as @ctrl/tinycolor and several under CrowdStrike’s namespace.
• The malware is self-propagating; it modifies packages to inject a malicious bundle[.]js script that steals developer and continuous integration credentials, creates unauthorized GitHub Actions workflows, and exfiltrates data.
• This follows the recent “s1ngularity” GitHub campaign in early September, which affected over 2,000 accounts via AI-powered malware targeting source code repositories.

Over 200 New CopyCop Sites Push AI-Generated Disinformation

What we know:

• Threat group “CopyCop” (or “Storm-1516”) has launched over 200 new fake news websites impersonating local outlets and political organizations worldwide.
• Researchers observe the network uses self-hosted AI models to mass-produce disinformation targeting elections and political leaders.

AI Pentest Tool Villager Raises Concerns over Chinese Firm’s Motives

What we know:

• Villager, an AI-driven penetration testing tool released publicly on the Python Package Index (PyPI) and promoted for its red teaming capabilities, has raised concerns among cybersecurity researchers after being downloaded over 10,000 times since July 2025.