Topic: npm registry
-
500 npm Packages Infected by Shai-Hulud Malware Leaking Secrets
Over 500 npm packages, including popular tools like Zapier and Postman, have been compromised by the Shai-Hulud malware, which steals developer secrets and uploads them to rapidly multiplying GitHub repositories. The attack uses trojanized versions of legitimate packages to inject malicious scrip...
Read More » -
Self-Replicating Worm Infects 180+ npm Packages in Automated Attack
A self-replicating worm named "Shai-hulud" is spreading through the npm ecosystem, infecting over 180 packages and stealing developer credentials to propagate further. The worm uses stolen authentication tokens to inject malicious code, exfiltrate sensitive data like GitHub and AWS keys, and make...
Read More » -
Malicious npm Code Infiltrated 10% of Cloud Environments
A supply chain attack using malicious npm packages has compromised about 10% of cloud environments, initiated by a threat actor who hijacked a developer's account to publish trojanized packages. The malicious code, which embedded crypto-stealing malware to intercept and reroute cryptocurrency tra...
Read More » -
Trust Wallet Ties $8.5M Crypto Theft to NPM Attack
A major security breach at Trust Wallet, linked to the "Sha1-Hulud" supply chain attack, resulted in the theft of approximately $8.5 million from over 2,500 wallets in late December. The attackers compromised the official Chrome extension by inserting malicious code, enabled by exposed developer ...
Read More » -
New npm Malware Spreads Itself in Supply Chain Attack
A sophisticated malware campaign is targeting developers via 19 typosquatting npm packages, stealing credentials and exhibiting worm-like behavior to self-propagate across development environments. The malware operates in two stages, harvesting sensitive data like API keys and crypto wallets, and...
Read More »