SecurityWeek

640 NPM Packages Infected in New ‘Shai-Hulud’ Supply Chain Attack

Approximately 640 NPM packages have been infected with a new variant of the Shai-Hulud self-replicating worm in a fresh wave of attacks.
The Hacker News

Shai-Hulud v2 Spreads From npm to Maven, as Campaign Exposes Thousands of Secrets

"As a new and significantly more aggressive wave of npm supply chain malware, Shai-Hulud 2 combines stealthy execution, ...
Security Boulevard

The Latest Shai-Hulud Malware is Faster and More Dangerous

A new iteration of the Shai-Hulud malware that ran through npm repositories in September is faster, more dangerous, and more destructive, creating huge numbers of malicious repositories, compromised ...
Cryptopolitan on MSN

Over 80,000 sensitive password and key files leaked online

Researchers uncover more than 80,000 leaked passwords, keys, and sensitive files exposed on popular online code formatting ...
Cybernews

Shai-Hulud supply chain attacks back with a vengeance, impacting 28k GitHub repositories

The Shai-Hulud supply chain attack campaign, responsible for compromising hundreds of CrowdStrike’s NPM packages in September ...

Salt Security launches ‘Ask Pepper AI’ to simplify API risk analysis

Application programming interface security company Salt Security Inc. today announced the launch of “Ask Pepper AI,” a new generative artificial intelligence-powered natural language interface for its ...
CRN

AWS Partners ‘Are The Lifeblood,’ Says CEO Garman Ahead Of Channel Program Evolution

AWS CEO Matt Garman is leading channel charge for his 140,000-strong army of partners aimed at taking profitability to new ...