China issues injunction to block US sanctions on companies buying Iranian oil China’s Ministry of Commerce has issued an injunction to block US sanctions imposed on five Chinese oil refineries accused of purchasing Iranian oil. State news agency Xinhua reported that the ministry named the companies as Hengli Petrochemical (Dalian) Refinery, Shandong Jincheng Petrochemical Group, Hebei Xinhai Chemical Group, Shouguang Luqing Petrochemical and Shandong Shengxing Chemical. After the US Treasury Department imposed sanctions last week on a unit of Hengli Petrochemical, which it said had purchased billions of dollars’ worth of Iranian petroleum, China’s foreign ministry said unilateral US sanctions “have no basis in international law” and that it would seek to defend the targeted companies.
Original (en)
China issues injunction to block US sanctions on companies buying Iranian oil China’s Ministry of Commerce has issued an injunction to block US sanctions imposed on five Chinese oil refineries accused of purchasing Iranian oil. State news agency Xinhua reported that the ministry named the companies as Hengli Petrochemical (Dalian) Refinery, Shandong Jincheng Petrochemical Group, Hebei Xinhai Chemical Group, Shouguang Luqing Petrochemical and Shandong Shengxing Chemical. After the US Treasury Department imposed sanctions last week on a unit of Hengli Petrochemical, which it said had purchased billions of dollars’ worth of Iranian petroleum, China’s foreign ministry said unilateral US sanctions “have no basis in international law” and that it would seek to defend the targeted companies.
Google Threat Intelligence reports a sophisticated supply chain attack on axios NPM package versions 1.14.1 and 0.30.4 (March 31, 2026), where attackers injected malicious 'plain-crypto-js' dependency to deploy WAVESHAPER.V2 backdoor across Windows, macOS, and Linux platforms. Attribution to UNC1069 based on malware signatures, infrastructure overlaps, and operational patterns. Remediation guidance includes version pinning, dependency auditing, CI/CD pipeline security, and credential rotation.
A critical remote code execution vulnerability (CVE-2026-1731) has been identified in remote monitoring and management software that could be exploited to deploy ransomware and compromise supply chain integrity. The flaw enables attackers to execute arbitrary code, creating significant risk for downstream organizations and critical infrastructure.
Bitwarden CLI, the command-line interface for the password manager Bitwarden, has been compromised as part of a newly discovered Checkmarx supply chain campaign. The affected package version is @bitwarden/cli@2026.4.0, with malicious code published in 'bw1.js,' according to findings from JFrog and Socket.
b03656ea…openwatch.io →