Techly NewsGet the app

Get the latest tech news

Compromised Mistral and TanStack packages may have exposed GitHub, cloud and CI/CD credentials in 'mini Shai Hulud' malware infection — supply-chain campaign spreads across npm developer ecosystems like wildfire


The malware reportedly refused to run on Russian-language systems but could execute a destructive payload under certain geographic conditions.

None

Get the Android app

Or read this on r/technology

Read more on:

Photo of cloud

cloud

Photo of GitHub

GitHub

Photo of packages

packages

Related news:

News photo

Cache-poisoning caper turns TanStack npm packages toxic

News photo

Shai Hulud attack ships signed malicious TanStack, Mistral npm packages

News photo

Remembering Planet Source Code: Sharing Code Before GitHub Made It Easy

« Nintendo promises a strong roster of Switch 2 games to counterbalance the recent price increases
Stocks Sink on Hotter-Than-Forecast Core CPI Print, Jump in Oil »