AiCoin
AiCoin|5月 12, 2026 07:32
[SlowMist Detects High-Risk npm Worm Stealing Crypto Information] According to SlowMist monitoring, an npm worm named 'Mini Shai-Hulud' is spreading through projects like TanStack and UiPath, hijacking GitHub credentials to publish malicious packages and steal CI/CD keys, cloud service keys, and cryptocurrency wallet information. SlowMist recommends affected projects inspect the router_init.js file, rotate exposed credentials, and monitor abnormal activities.
+5
Mentioned
Share To

Timeline

HotFlash

APP

X

Telegram

Facebook

Reddit

CopyLink

Hot Reads