Vendor

UiPath

2 briefs RSS

Shai-Hulud Malware Used in Supply Chain Attack via Compromised npm Packages

The Shai-Hulud malware was used in a large-scale software supply-chain attack compromising hundreds of packages across open-source software ecosystems by compromising developer secrets and CI/CD pipelines.

router +11 TeamPCP supply-chain supply-chain-attack npm pypi credential-theft shai-hulud

3r 7t 3i May 12, 2026

high threat

Mini Shai-Hulud Campaign Compromises npm Packages

3 rules 6 TTPs 8 IOCs

The Mini Shai-Hulud supply chain campaign, attributed to TeamPCP, has compromised several npm packages, including those within the @tanstack, @uipath, and @mistralai namespaces, leading to credential theft and potential further compromise.

@tanstack/react-router +2 TeamPCP supply-chain npm malware

3r 6t 8i May 12, 2026