The second wave of the Shai-Hulud supply chain attack has spilled over to the…
Tag:
npm
-
-
The second wave of the Shai-Hulud supply chain attack has spilled over to the…
-
A new variant of the “Shai Hulud” malware has been discovered in a sweeping…
-
Shai-Hulud first emerged in September, revealed by the discovery that dozens of npm libraries,…
-
A new Shai-Hulud supply chain attack has hit nearly 500 npm packages with a…
-
Vulnerability
Second Sha1-Hulud Wave Affects 25,000+ Repositories via npm Preinstall Credential Theft
Nov 24, 2025Ravie LakshmananCloud Security / Vulnerability Multiple security vendors are sounding the alarm…
-
Introduction Tsundere is a new botnet, discovered by our Kaspersky GReAT around mid-2025. We…
-
Over 150,000 malicious packages recently submitted to the npm registry, are tied to a…
-
A coordinated token farming campaign continues to flood the open source npm registry, with…
-
eSecurity Planet content and product recommendations are editorially independent. We may make money when…