Advertisement
SU
HIGH
Supply Chain
320+ @antv NPM Packages Compromised in Mini Shai-Hulud Attack
A maintainer account compromise has led to a major supply chain attack against Alibaba’s @antv NPM namespace, impacting over 320 visualization packages.
Runtime Rebel Intel
3 min read·May 20, 2026
SU
HIGH
Supply Chain
SAP NPM Supply Chain Attack: Analyzing the Mini Shai-Hulud Campaign
Security researchers identified a malicious supply chain attack targeting SAP via NPM packages using the Bun runtime to evade traditional EDR detection.
Runtime Rebel Intel
4 min read·Apr 30, 2026
HIGH
Supply Chain
SAP npm Packages Compromised by “Mini Shai-Hulud” Malware
The Mini Shai-Hulud campaign targets SAP cloud application developers with credential-stealing npm packages. Learn how to detect and mitigate this threat.
Runtime Rebel Intel
4 min read·Apr 29, 2026