Skip to content
The Nexus
SECURITYMay 19 · 15:28 UTCCYBERSCOOPGreg Otto

Mini Shai-Hulud returns, compromising hundreds of npm packages

A self-replicating malware campaign known as Mini Shai-Hulud has resurfaced, embedding itself across hundreds of npm packages and compromising developer environments. The threat actor behind it, TeamPCP, has been linked to earlier waves of the same campaign. The malware can spread autonomously and install persistent backdoors at the operating system level.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this