GitHub Worm Hits npm Packages With 16M Downloads
1h ago•
bullish:
0
bearish:
0
Share
A self-replicating worm that hijacks GitHub Actions pipelines to publish malicious npm packages has struck again, compromising AntV, echarts-for-react, and Microsoft’s durabletask SDK. Mini Shai-Hulud Exploits GitHub Actions to Hit 16 Million Weekly Downloads The Mini Shai-Hulud campaign, attributed to the threat group Team PCP, does not work the way most supply chain attacks do […]1h ago•
bullish:
0
bearish:
0
Share
Manage all your crypto, NFT and DeFi from one placeSecurely connect the portfolio you’re using to start.
bullish:
0
bearish:
0
bullish:
0
bearish:
0
bullish:
0
bearish:
0