SECURITYTHE REGISTER
The never-ending supply chain attacks worm into SAP npm packages, other dev tools
A new wave of supply chain attacks has targeted SAP and Intercom npm packages, as well as the lightning PyPI package, spreading credential-stealing malware named Mini Shai-Hulud. The attacks highlight ongoing vulnerabilities in developer tools and package repositories.
Mentioned