#ShaiHulud attack ships signed malicious #TanStack, #Mistral #npm packages

thenewoil@mastodon.thenewoil.org

Shai Hulud attack ships signed malicious TanStack, Mistral npm packages

Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering credential-stealing malware targeting developers.

BleepingComputer (www.bleepingcomputer.com)

#cybersecurity

CIRCLE WITH A DOT

#ShaiHulud attack ships signed malicious #TanStack, #Mistral #npm packages

Shai Hulud attack ships signed malicious TanStack, Mistral npm packages