supplychainattack.orgSupply chain attack incident catalog

Hades supply chain incidents

Campaign reported in June 2026 that compromised Graph ML and bioinformatics PyPI packages, deploying cross-platform memory scrapers, AI-analyst misdirection via prompt injection, and wiper-style deterrents.

Also tracked as: Hades campaign

1 confirmed incident publicly associated with this group. Attribution reflects what the cited sources state; it is recorded for filtering, not asserted by this site.

activecriticalJun 8, 2026
The Hades Campaign: Graph ML PyPI Packages Deploy Cross-Platform Memory Scrapers, AI Analyst Misdirection, and a Wiper Deterrent
On June 8, 2026, multiple Graph ML PyPI packages were compromised in the Hades campaign, deploying cross-platform memory scrapers, AI prompt injections for analyst misdirection, and token-revocation wipers. The attack targeted the bioinformatics ecosystem with sophisticated evasion techniques.
HadesPyPICompromised package