Skip to content

Shai-Hulud Malware Abuse in npm Packages

Leaked Shai-Hulud trojans are spreading unmodified via npm packages to steal developer credentials and cryptocurrency wallet data, with one package also featuring DDoS botnet functionality.

Share on: