Hackers have compromised dozens of popular open source packages in an ongoing supply chain attack | TechCrunch

thehackernews.com·May 18, 2026 · 2 g fa

Developer Workstations Are Now Part of the Software Supply Chain

theregister.com·May 19, 2026 · 1 g fa

Shai-Hulud keeps burrowing: 314 npm packages infected after another account compromise

bleepingcomputer.com·May 18, 2026 · 1 g fa

Leaked Shai-Hulud malware fuels new npm infostealer campaign

thehackernews.com·May 19, 2026 · 1 g fa

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

thehackernews.com·May 15, 2026 · 5 g fa

TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates

theregister.com·May 19, 2026 · 1 g fa

Shai-Hulud copycat worm infects yet another npm package

ilsoftware.it·May 20, 2026 · 6 h fa

Nuova ondata di attacchi colpisce centinaia di pacchetti npm