Skip to main content
RuntimeRebel
← All Articles

Tag

#npm-security

3 articles

Advertisement

SU
HIGH
Supply Chain

SAP NPM Supply Chain Attack: Analyzing the Mini Shai-Hulud Campaign

Security researchers identified a malicious supply chain attack targeting SAP via NPM packages using the Bun runtime to evade traditional EDR detection.

Runtime Rebel Intel
4 min read·Apr 30, 2026
Axios Supply Chain Attack: RAT Found in Versions 1.14.1 and 0.30.4
CRITICAL
Supply Chain

Axios Supply Chain Attack: RAT Found in Versions 1.14.1 and 0.30.4

Malicious Axios versions 1.14.1 and 0.30.4 inject a cross-platform RAT via a fake dependency. Identify and remediate this npm supply chain threat now.

Runtime Rebel Intel
3 min read·Mar 31, 2026
SU
HIGH
Supply Chain

GlassWorm Supply Chain Attack: 400+ Malicious Repos Identified

The GlassWorm campaign hits GitHub, npm, and VSCode marketplaces with over 400 malicious repositories. Learn to detect and mitigate this supply chain threat.

Runtime Rebel Intel
4 min read·Mar 18, 2026