Shai Hulud attack ships signed malicious TanStack, Mistral npm packages

bleepingcomputer.com·May 12, 2026

A new supply-chain campaign named Shai-Hulud has compromised hundreds of packages on npm and PyPI, distributing credential-stealing malware aimed at developers.

For a professional focused on cybersecurity, the key takeaway is that the Shai-Hulud supply-chain attack highlights the critical need for enhanced monitoring and verification of third-party packages in your development environment. Implementing strict supply-chain security measures and integrating automated tools to detect compromised packages early can mitigate the risk of credential-stealing malware.

Want more content like this?

twixb tracks your favorite blogs and social media, filters by keywords, and delivers personalized key learnings — straight to your inbox.

Create Your Own →Explore Newsfeeds

More from Cybersecurity News

Recent stories curated alongside this one.

bleepingcomputer.com
New Fragnesia Linux flaw lets attackers gain root privileges
Linux distributions are releasing patches for a critical kernel privilege escalation vulnerability, CVE-2026-46300, known as Fragnasia, which enables attackers to execute malicious code with root privileges.
thehackernews.com
New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption
A new variant of the Dirty Frag Linux local privilege escalation vulnerability, named Fragnesia and tracked as CVE-2026-46300, has been discovered, allowing local attackers to gain root access; this marks the third such vulnerability identified in the kernel within two weeks.
thehackernews.com
18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE
Cybersecurity researchers have revealed several vulnerabilities in NGINX Plus and NGINX Open, including a critical heap buffer overflow flaw in the ngx_http_rewrite_module, which has existed for 18 years and could enable remote code execution.
bleepingcomputer.com
West Pharmaceutical says hackers stole data, encrypted systems
West Pharmaceutical Services reported a cyberattack that led to the theft of data and encryption of its systems.
darkreading.com
Checkbox Assessments Aren't Fit to Measure to Risk
Security governance should extend beyond annual compliance checks, as new companies are developing solutions to fill risk-management gaps in existing audit tools.

Browse all Cybersecurity News →

Shai Hulud attack ships signed malicious TanStack, Mistral npm packages

Want more content like this?

More from Cybersecurity News

New Fragnesia Linux flaw lets attackers gain root privileges

New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption

18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE

West Pharmaceutical says hackers stole data, encrypted systems

Checkbox Assessments Aren't Fit to Measure to Risk