{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreid4xho37ayv7u776qcivt3apfweh7arr5jtcn2paojhq6lhgzvdpq",
    "uri": "at://did:plc:egtaskq2bpyoyyci5hc6ksmy/app.bsky.feed.post/3mn3ij7q7xvh2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreigko5vgqv3e4b6kz6w6ixizqzgleic4grd3gyy2q2ukz524epfrcq"
    },
    "mimeType": "image/png",
    "size": 1492587
  },
  "path": "/trapdoor-supply-chain-attack-ai-developer-credentials-cloud-keys-2026/",
  "publishedAt": "2026-05-22T09:00:00.000Z",
  "site": "https://secureiotoffice.world",
  "textContent": "The TrapDoor supply chain campaign, active as of May 22, 2026, is targeting AI developer communities through malicious packages in public repositories. The packages use preinstall scripts to steal cloud credentials, SSH keys, and developer secrets, then exfiltrate them through GitHub-based command and control infrastructure. The campaign is specifically targeting the tooling and repositories used by AI development teams — a population with access to cloud environments, model infrastructure, and enterprise data pipelines.",
  "title": "TrapDoor: The Supply Chain Attack Targeting AI Developers That's Stealing Cloud Keys and SSH Credentials"
}