<![CDATA[#ShaiHulud attack ships signed malicious #TanStack, #Mistral #npm packages]]>

<![CDATA[#ShaiHulud attack ships signed malicious #TanStack, #Mistral #npm packages]]>#ShaiHulud attack ships signed malicious #TanStack, #Mistral #npm packages

Shai Hulud attack ships signed malicious TanStack, Mistral npm packages

Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering credential-stealing malware targeting developers.

BleepingComputer (www.bleepingcomputer.com)

#cybersecurity

]]>https://board.circlewithadot.net/topic/a6f4f532-a407-4720-80ce-011e95b1cddc/shaihulud-attack-ships-signed-malicious-tanstack-mistral-npm-packagesRSS for NodeFri, 15 May 2026 05:38:21 GMTWed, 13 May 2026 12:30:04 GMT60