[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fNudqr9Ba5gIcpbJxvYb0xZJiHyoxIx9y2YMOIbYUraQ":3},{"article":4,"iocs":51},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":31,"category":32,"article_tags":35},"37338107-2fd6-4f23-85e3-f221059d095d","Shai-Hulud changed npm supply chain attacks. Adversaries now use wormable propagation, infrastruc...","shai-hulud-changed-npm-supply-chain-attacks-adversaries-now-use-wormable-propaga-08ffee","Shai-Hulud changed npm supply chain attacks. Adversaries now use wormable propagation, infrastructure persistence and multi-stage payloads. Coordinated campaigns weaponize dev tooling (Docker, GitHub, VS Code, npm). Read the full analysis for our insights. https:\u002F\u002Ft.co\u002Fktpqy8loGB https:\u002F\u002Ft.co\u002FNFFWC0EGSU","A coordinated campaign dubbed Shai-Hulud has introduced new attack sophistication to npm supply chain compromises, leveraging wormable propagation mechanisms, infrastructure persistence, and multi-stage payloads. The campaign weaponizes popular developer tools including Docker, GitHub, VS Code, and npm itself. This represents an evolution in supply chain attack tactics, moving beyond simple package injection to self-propagating, persistent threats.","Shai-Hulud npm supply chain attack uses wormable propagation and multi-stage payloads.",null,"https:\u002F\u002Fx.com\u002FUnit42_Intel\u002Fstatus\u002F2047797833965724004","https:\u002F\u002Fpbs.twimg.com\u002Fmedia\u002FHGs9QuEXIAA8VEo.jpg","2026-04-24T22:00:24+00:00","2026-04-24T23:00:11.913122+00:00",8,[18,21,24,27,29],{"name":19,"type":20},"Shai-Hulud","campaign",{"name":22,"type":23},"npm","technology",{"name":25,"type":26},"Docker","product",{"name":28,"type":26},"GitHub",{"name":30,"type":26},"VS Code","26b0b636-0e31-4db1-bffb-61bdf9f20a58",{"id":31,"icon":11,"name":33,"slug":34},"Supply Chain","supply-chain",[36,41,46],{"category":37},{"id":38,"icon":11,"name":39,"slug":40},"89f78b1c-3503-45a1-9fc7-e23d2ce1c6d5","Malware","malware",{"category":42},{"id":43,"icon":11,"name":44,"slug":45},"ade75414-7914-4e23-a450-48b64546ee70","Open Source","open-source",{"category":47},{"id":48,"icon":11,"name":49,"slug":50},"e7b231c8-5f79-4465-8d38-1ef13aea5a14","Threat Intelligence","threat-intelligence",[]]