Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

thehackernews.com·May 19, 2026

Cybersecurity researchers have identified a new software supply chain attack targeting npm packages in the @antv ecosystem, particularly affecting the atool maintainer account and popular packages like echarts-for-react, which has around 1.1 million weekly downloads.

This fresh software supply chain attack targeting npm packages in the @antv ecosystem, particularly affecting the "echarts-for-react" package with 1.1 million weekly downloads, underscores the critical need for robust supply chain security measures. As a professional in cybersecurity, ensure that your organization's development and security teams implement stringent monitoring and validation processes for third-party packages to mitigate such threats effectively.

Want more content like this?

twixb tracks your favorite blogs and social media, filters by keywords, and delivers personalized key learnings — straight to your inbox.

Create Your Own →Explore Newsfeeds

More from Cybersecurity News

Recent stories curated alongside this one.

Browse all Cybersecurity News →

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

Want more content like this?

More from Cybersecurity News

Microsoft shares mitigation for YellowKey Windows zero-day

Risky Business #838 -- GitHub investigates possible breach

Risky Bulletin: Microsoft takes down crime SaaS used by ransomware gangs

Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credential Theft as Top Breach Vector

Max-severity flaw in ChromaDB for AI apps allows server hijacking