hulud - Robuta Search

https://www.stepsecurity.io/blog/a-mini-shai-hulud-has-appeared A Mini Shai-Hulud Has Appeared: Obfuscated Bun Runtime Payloads Hit SAP-Related npm Packages -... StepSecurity has detected a new npm supply chain attack campaign using preinstall hooks to download the Bun JavaScript runtime and execute an 11 MB obfuscated... mini shai hulud appeared bun runtime https://www.endorlabs.com/learn/mini-shai-hulud-npm-worm-hits-sap-developer-packages Mini Shai-Hulud: npm Worm Hits SAP Developer Packages | Blog | Endor Labs Four SAP npm packages were weaponized to steal GitHub, cloud, and AI coding tool secrets. The malware uses Bun to slip past Node-based detection. mini shai blog endor hulud npm worm https://www.endorlabs.com/learn/popular-lightning-pypi-package-backdoored-in-latest-shai-hulud-wave Popular lightning PyPI Package Backdoored in Latest Shai-Hulud Wave | Blog | Endor Labs The PyPI package lightning, with an estimated 8M monthly downloads, was backdoored in versions 2.6.2 and 2.6.3, matching the tradecraft of recent Shai-Hulud... pypi package shai hulud wave blog popular lightning https://www.vectra.ai/blog/shai-hulud-when-a-supply-chain-incident-turns-into-a-worm Shai-Hulud: When a Supply-Chain Incident Turns Into a Worm by Lucie Cardiet May 13, 2026 - How the Shai-Hulud worm hijacked trusted development tools and why defenders need behavioral visibility to catch the attack after the first package is... shai hulud supply chain incident turns worm https://www.backslash.security/blog/shai-hulud-strikes-again-massive-npm-attack-exposes-thousands-of-secrets Shai-Hulud Strikes Again: Massive npm Attack Exposes Thousands of Secrets - Backslash A major npm supply-chain incident surfaced last week. Over 800 packages were poisoned, leading to more than 25,000 GitHub repositories being populated with... shai hulud attack exposes strikes massive npm https://www.aikido.dev/blog/pytorch-lightning-pypi-compromise-mini-shai-hulud Popular PyTorch Lightning Package Compromised by Mini Shai-Hulud Apr 30, 2026 - Malware found in popular PyTorch Lightning version 2.6.2 and 2.6.3, stealing credentials, crypto wallets, and VPN configs as part of the Mini Shai-Hulud... pytorch lightning mini shai popular package compromised https://www.aikido.dev/blog/shai-hulud-2-0-unknown-wonderer-supply-chain-attack Shai Hulud 2.0: What the Unknown Wonderer Reveals About the Attackers’ Endgame Dec 3, 2025 - New research into the Shai Hulud 2.0 malware suggests the username UnknownWonderer1 tells us more about the attackers’ endgame. shai hulud unknown reveals endgame https://semgrep.dev/blog/2026/sap-npm-packages-compromised-in-supply-chain-attack-using-obfuscated-bun-runtime-payload/ SAP Cloud Build Tool Packaged A Mini Shai-Hulud Malicious Dependency That Uses Bun | Semgrep SAP npm Packages Compromised in Supply Chain Attack Using Obfuscated Bun Runtime Payload sap cloud build tool mini shai packaged hulud https://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomains Shai Hulud 2.0 Strikes Again: Malware Supply-Chain Attack Hits Zapier & ENS Domains Mar 17, 2026 - The threat actor behind “Shai Hulud 2.0” launched a new malware campaign compromising the supply chain of Zapier, ENS Domains and more — exposing secrets,... supply chain attack shai hulud strikes malware hits https://fullstackbulletin.com/archive/2025-12-01-427-inside-the-shai-hulud-2-0-npm-worm-what-you-need-to-know/ Issue #447: Inside the Shai Hulud 2.0 npm worm. What you need to know | FullStack Bulletin Hi there, This will be a quick one from me this week. Life got a bit busy, but the internet did not slow down. So you get a tiny intro and a big pile of hand... shai hulud issue inside npm worm https://www.stepsecurity.io/blog/shai-hulud-worm-pivots-to-multi-cloud-intercom-client-hijacked Shai-Hulud Worm Pivots to Multi-Cloud: intercom-client@7.0.4 Hijacked — 361,000 Weekly Downloads,... Twenty-nine hours after mbt@1.2.48 and @cap-js/sqlite@2.2.2 were compromised by the Shai-Hulud worm, a third major npm package has fallen:... shai hulud multi cloud worm pivots intercom https://trigger.dev/blog/shai-hulud-postmortem How we got hit by Shai-Hulud: A complete post-mortem | Trigger.dev On November 25th, one of our engineers was compromised by the Shai-Hulud npm supply chain worm. Here's what happened, how we responded, and what we've changed. shai hulud post mortem got hit complete https://www.aikido.dev/blog/shai-hulud-strikes-again---the-golden-path Shai Hulud strikes again - The golden path Mar 17, 2026 - A new strain of Shai Hulud has been observed in the wild. shai hulud strikes golden path https://techplanet.today/post/shai-hulud-malware-in-pytorch-lightning-a-critical-supply-chain-attack-analysis Shai-Hulud Malware in PyTorch Lightning: A Critical Supply Chain Attack Analysis | TechPlanet May 27, 2026 - Introduction On April 30, 2026, the Python ecosystem faced a significant supply chain attack when the PyPI package 'lightning' (PyTorch Lightning) was... supply chain attack shai hulud pytorch lightning malware critical https://www.aikido.dev/blog/shai-hulud-npm-bitwarden-cli-compromise Is Shai-Hulud Back? Compromised Bitwarden CLI Contains a Self-Propagating npm Worm Apr 23, 2026 - Malware found in @bitwarden/cli v2026.4.0 steals SSH keys, cloud secrets, and AI coding tool credentials, then spreads through victims' own npm packages.... shai hulud back compromised bitwarden cli https://borncity.com/blog/2026/04/30/mini-shai-hulud-lieferkettenangriff-auf-sap-npm-pakete-stehlen-anmeldedaten/ Mini Shai-Hulud Lieferkettenangriff auf SAP npm-Pakete; stehlen Anmeldedaten (29.4.2026)Borns IT-... Apr 30, 2026 - Es hat wohl einen „Mini Shai-Hulud“ genannten Lieferkettenangriff auf diverse npm-Pakete (SAP-CAP), die von SAP in der Entwicklung verwendet werden, gegeben. mini shai hulud auf sap npm