TI Mindmap HUB
Threat Intelligence Report

Six Accounts, One Actor: Inside the prt-scan Supply Chain Campaign

๐Ÿ“… April 4, 2026 ๐Ÿ“ฐ www.wiz.io ๐Ÿ” 0 CVE(s) referenced

An AI-powered attacker exploited GitHub's pull_request_target misconfigurations to launch a large-scale, adaptive supply chain campaign across six waves and 500+ PRs, but despite sophisticated automation and evolving tactics, fundamental misunderstandings of GitHub's security model limited their success to a handful of npm package compromises and ephemeral credential theft.

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

๐Ÿ” Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

๐Ÿ“Š Visual Mindmap
๐ŸŽฏ IOC Extraction
โš”๏ธ MITRE ATT&CK TTPs
๐Ÿ“ฆ STIX 2.1 Bundle