Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit

| September 17th, 2025

By Ionut Arghire

The packages were injected with malicious code to harvest secrets, dump them to a public repository, and make private repositories public.

The post Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit appeared first on SecurityWeek.

…read more

Source:: securityweek


Print pagePDF pageEmail page

Posted on Wednesday, September 17th, 2025 at 9:09 am in Uncategorized | rss feed for comments| Leave a response, or trackback

Leave a Reply

You must be logged in to post a comment.