Researchers have identified a series of malicious packages infiltrating prominent open-source code repositories, including npm, PyPI, and RubyGems, raising concerns about these platforms becoming channels for malware distribution. Seventeen npm packages were found to contain malware, with some disguised as legitimate application utilities that create destructive backdoor endpoints capable of remotely deleting application directories. One such npm package, named "solders," employs multiple layers of obfuscation in a complex, multistage attack to deploy the Pulsar Remote Access Trojan (RAT). Additionally, a 12-step malware dropper using steganography and extensive Unicode obfuscation was observed in these npm packages. Beyond npm, supply chain attacks have also targeted React Native Aria packages. Separately, the FIN6 hacking group has adopted a novel tactic by hosting fake resumes on Amazon Web Services (AWS) to infect recruiters via LinkedIn with the More_eggs backdoor malware. This attack uses CAPTCHA walls and filtering mechanisms to selectively infect real targets, leading to credential theft and ransomware deployment. Furthermore, Rust-based Myth Stealer malware has been spread via fake gaming websites targeting users of Chrome and Firefox browsers. These developments highlight ongoing and evolving threats within open-source software supply chains and recruitment platforms.