Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

Hades, a new PyPI branch of the Mini Shai-Hulud/Miasma supply chain campaign, hit 37 malicious wheels across 19 packages.

martedì 9 giugno 2026 New tab

1,074 words~5 min read

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel artifacts across 19 packages in the Python Package Index (PyPI) registry, as the Mini Shai-Hulud-style attacks continue to be refined and splintered to target specific ecosystems.

"The compromised releases shipped a *-setup.pth file that attempts to execute automatically during Python startup, download the Bun JavaScript runtime, and run an obfuscated JavaScript payload named _index.js," Socket said in a new analysis.

The list of identified packages is below -

bramin 0.0.2, 0.0.3, 0.0.4

cmd2func 0.2.2, 0.2.3

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

Other newsrooms on this story

Related reading

'Hades' Attacks on PyPI Put New Spin on Shai-Hulud

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Shai-Hulud copycat campaign targets Python developers through PyPI typosquatting

Meet Hades: The malware that lies to AI security agents

Shai Hulud attack ships signed malicious TanStack, Mistral npm packages

Other newsrooms on this story

Related reading

'Hades' Attacks on PyPI Put New Spin on Shai-Hulud

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Shai-Hulud copycat campaign targets Python developers through PyPI typosquatting

Meet Hades: The malware that lies to AI security agents

Shai Hulud attack ships signed malicious TanStack, Mistral npm packages