Topic: self-propagating malware

Sort by: Relevance | Date
  • Self-Propagating Attack Infects 187 npm Packages
    September 19, 2025
    93%

    Self-Propagating Attack Infects 187 npm Packages

    A self-propagating worm named 'Shai-Hulud' has compromised at least 187 npm packages, starting with @ctrl/tinycolor and spreading to include modules under CrowdStrike’s namespace. The malware injects malicious scripts to steal sensitive credentials using TruffleHog and creates unauthorized GitHub...

    Read More »

Related Topics

supply chain attack (1) security research (1) incident response (1) security recommendations (1) npm packages (1) github actions (1) s1ngularity attack (1) shai-hulud campaign (1)