Techly NewsGet the app

Get the latest tech news

Live Updates: Shai-Hulud, the Most Dangerous NPM Breach in History


k Idan Dardikman , Yuval Ronen September 16, 2025 We are tracking the largest and most dangerous npm supply-chain compromise in history, known as the Shai-Hulud malware campaign, which has now impacted hundreds of packages across multiple maintainers. This includes popular libraries such as @ctrl/tinycolor as well as packages maintained by CrowdStrike.

Malicious versions embed a trojanized script (bundle.js) designed to steal developer credentials, exfiltrate secrets, and persist in repositories and endpoints through automated workflows. Subscribe for live updates Attackers published malicious versions of @ctrl/tinycolor and other npm packages, injecting a large obfuscated script (bundle.js) that executes automatically during installation. It runs TruffleHog to scan local filesystems and repositories for secrets, including npm tokens, GitHub credentials, and cloud access keys for AWS, GCP, and Azure.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of History

History

Photo of Live updates

Live updates

Photo of dangerous npm breach

dangerous npm breach

Related news:

News photo

Apple Events live updates: iPhone 17, iPhone Air, AirPods Pro 3, and reactions to new wearables

News photo

Apple Event live updates 2025: iPhone 17, iPhone Air, AirPods Pro 3, and new wearables

News photo

Apple iPhone 17 event live updates: The biggest rumors on AirPods, Apple Watch Series 11, more

« The Linux Process Journey (2023) [pdf]
Show HN: AI Code Detector – detect AI-generated code with 95% accuracy »