> TritonInfoSec News
Home / May 21, 2026 / Story
0
#9 SecurityWeek general May 20, 2026 at 11:06 UTC

Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack

By Ionut Arghire

AI Summary

A fresh supply chain attack dubbed 'Mini Shai-Hulud' compromised over 320 npm packages across the @antv namespace by hijacking a maintainer account to publish malicious versions. The malware steals publishing tokens, installs OS-level backdoors, and persists in developer tools and CI pipelines. This follows a pattern of repeated npm ecosystem compromises and directly threatens any developer or build pipeline consuming @antv packages.

Read full article → https://www.securityweek.com/over-320-npm-packages…

Relevance score: 75.0/100

# More from May 21

  1. 1
    GitHub confirms breach of 3,800 repos via malicious VSCode extension BleepingComputer
  2. 2
    Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks The Hacker News
  3. 3
    Microsoft disrupts Fox Tempest malware-signing-as-a-service platform tied to ransomware gangs The Record
  4. 4
    Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit The Hacker News
  5. 5
    CISA Exposes Secrets, Credentials in 'Private' Repo Dark Reading
  6. 6
    Attackers hit vulnerabilities hard last year, making exploits the top entry point for breaches CyberScoop
  7. 7
    7-Eleven confirms data breach claimed by the ShinyHunters gang BleepingComputer
  8. 8
    Grafana breach caused by missed token rotation after TanStack attack BleepingComputer
  9. 10
    Microsoft Self-Service Password Reset abused in Azure data theft attacks BleepingComputer