National Cyber Warfare Foundation (NCWF)

Shai-Hulud 2.0 Supply Chain Attack (Campaign)
0 user ratings		2026-01-16 10:45:36
milo
Attacks
A new wave of the Shai-Hulud–style supply-chain attack has trojanized hundreds of npm packages—including widely used components from Zapier, ENS Domains, PostHog, and Postman—resulting in more than 25,000 GitHub repositories populated with stolen secrets. Beginning on November...

A new wave of the Shai-Hulud–style supply-chain attack has trojanized hundreds of npm packages—including widely used components from Zapier, ENS Domains, PostHog, and Postman—resulting in more than 25,000 GitHub repositories populated with stolen secrets. Beginning on November...

Source: Wiz
Source Link: https://threats.wiz.io/all-incidents/shai-hulud-20-supply-chain-attack

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Attacks


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.