Documenting technical details and payload analysis here: https://safedep.io/shai... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		abhisek 16 days ago \| parent \| context \| favorite \| on: Shai-Hulud Returns: Over 300 NPM Packages Infected Documenting technical details and payload analysis here: https://safedep.io/shai-hulud-second-coming-supply-chain-att... Like previous variant, it has credential harvesting, self-replication and GitHub public repository based exfiltration. Double base64 encoded credentials being exposed using GitHub repositories: https://github.com/search?q=%22Sha1-Hulud%3A%20The%20Second%...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact