Search

Showing top 11 results for "Shai-Hulud" · filtered from 12 indexed

All sources bleepingcomputer.com 8 golem.de 1 tomshardware.com 1 techcrunch.com 1

Tracked topic

Shai-Hulud

12 articles indexed Last updated 23h ago See topic hub

Videos

Leaked Shai-Hulud malware fuels new npm infostealer campaign

… Researchers at OXsecurity, a company that secures applications from code to runtime, discovered the malicious uploads over the weekend and noticed that the threat actor used misspelled names typosquatting targeting Axios users, and some generic ones: chalk-tempalte – Shai-Hulud clone information st… …

May 18, 2026 · Bill Toulas

New Shai-Hulud malware wave compromises 600 npm packages

… Given that Shai Hulud's code was recently leaked on GitHub by the TeamPCP threat group, and has already been used in attacks , attribution of the new Shai-Hulud campaign is more difficult. …

May 19, 2026 · Bill Toulas

Mini-Shai-Hulud: Erneut millionenfach genutzte NPM-Pakete kompromittiert - Golem.de

… Diese enthalten jeweils die Zeichenkette "niagA oG eW ereH :duluH-iahS" , was invertiert für "Shai-Hulud: Here We Go Again" steht. …

May 19, 2026 · Marc Stöckel

Compromised Mistral AI and TanStack packages may have exposed GitHub, cloud and CI/CD credentials in 'mini Shai Hulud' malware infection — supply-chain campaign spreads across npm and AI developer ecosystems like wildfire

… Microsoft has not publicly attributed the PyPI compromise to Mini Shai-Hulud. …

May 12, 2026 · Etiido Uko

Hackers have compromised dozens of popular open source packages in an ongoing supply-chain attack | TechCrunch

… Researchers have dubbed the hacks “Mini Shai-Hulud,” after the attack followed a previous, more expansive hacking campaign. …

May 19, 2026 · Lorenzo Franceschi-Bicchierai

OpenAI confirms security breach in TanStack supply chain attack

… Download Now Related Articles: TeamPCP hackers advertise Mistral AI code repos for sale Official SAP npm packages compromised to steal credentials Shai Hulud attack ships signed malicious TanStack, Mistral npm packages Bitwarden CLI npm package compromised to steal developer credentials Trivy vulne… …

May 14, 2026 · Lawrence Abrams

New TCLBanker malware self-spreads over WhatsApp and Outlook

… Download Now Related Articles: New GoGra malware for Linux uses Microsoft Graph API for comms Cybercrime service disrupted for abusing Microsoft platform to sign malware New Shai-Hulud malware wave compromises 600 npm packages Shai Hulud attack ships signed malicious TanStack, Mistral npm packages … …

May 7, 2026 · Bill Toulas

Popular node-ipc npm package compromised to steal credentials

… Download Now Related Articles: Shai Hulud attack ships signed malicious TanStack, Mistral npm packages New npm supply-chain attack self-spreads to steal auth tokens PyPI package with 1.1M monthly downloads hacked to push infostealer Hackers compromise Axios npm package to drop cross-platform malwar… …

May 15, 2026 · Bill Toulas

Australia warns of ClickFix attacks pushing Vidar Stealer malware

… Download Now Related Articles: New macOS stealer campaign uses Script Editor in ClickFix attack New Infinity Stealer malware grabs macOS data via ClickFix lures Popular node-ipc npm package compromised to steal credentials Shai Hulud attack ships signed malicious TanStack, Mistral npm packages Fake… …