Vendor

Sonatype

3 briefs RSS

Hijacked npm Package Attempts to Deliver PolinRider-Linked RAT

Attackers are compromising npm packages to distribute a RAT linked to PolinRider, directly injecting malicious code into the software supply chain.

supply-chain npm rat polinrider

2r 1t May 21, 2026

high threat

Shai-Hulud Campaign Returns Targeting npm Maintainer Accounts

1 rule 2 TTPs

The Shai-Hulud campaign is back and targets maintainer accounts to publish malicious code directly into the software supply chain via npm, recently hitting the Ant Design (AntV) ecosystem and potentially exposing downstream developers to credential theft and remote code execution.

npm Shai-Hulud supply-chain credential-theft remote-code-execution

1r 2t May 19, 2026

medium advisory

Sonatype Nexus Repository Manager Security Bypass Vulnerability

2 rules 1 TTP

An authenticated remote attacker can exploit a vulnerability in Sonatype Nexus Repository Manager to bypass security precautions.

Nexus Repository Manager security-bypass vulnerability nexus

2r 1t May 12, 2026