THREAT OPS › Threat News › Mini Shai-Hulud Hits AntV: 300+ Malicious npm Packages Published via Compromised Maintainer Account
Mini Shai-Hulud Hits AntV: 300+ Malicious npm Packages Published via Compromised Maintainer Account
A compromised npm maintainer account triggered an automated burst of over 300 malicious package versions across 323 packages in the AntV data visualization ecosystem, part of the ongoing Mini Shai-Hulud supply chain worm campaign. Here's what the malware does, how to detect exposure, and how to respond.
MITRE ATT&CK techniques
- Malicious PackageAML.T0011.001
Original source: https://snyk.io/blog/mini-shai-hulud-antv-npm-supply-chain-attack/