Cyber Security

Red Hat npm packages compromised in new Mini Shai-Hulud malware wave

Red Hat npm packages compromised in new Mini Shai-Hulud malware wave

Unknown attackers have compromised 30+ Red Hat Cloud Services npm packages with malware that goes after credentials stored in developers’ build environment. What the malware stole and how it can spread further The compromised packages were published in two different GitHub source repositories on June 1, 2026, between 10:53 and 10:53:33 UTC and 13:44 and 13:46:47 UTC. According to Wiz Security, a specific Red Hat employee GitHub account was compromised and “pushed malicious orphan commits … More

The post Red Hat npm packages compromised in new Mini Shai-Hulud malware wave appeared first on Help Net Security.

Read More

Related Posts

Sophos uncovers AI-powered malware lab built for EDR evasion

Sophos uncovers AI-powered malware lab built for EDR ev...

Anthropic to Open Mythos AI to EU's ENISA

Anthropic to Open Mythos AI to EU's ENISA

Cybersecurity jobs available right now: June 2, 2026

Cybersecurity jobs available right now: June 2, 2026

KDE Linux security audit cuts kernel modules and unused packages

KDE Linux security audit cuts kernel modules and unused...

Microsoft's Zero-Day Legal Threats Spark Backlash

Microsoft's Zero-Day Legal Threats Spark Backlash

Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm

Miasma Supply Chain Attack Compromises Red Hat npm Pack...