1. TanStack npm Supply Chain Breach: 84 Malicious Packages Deployed in Six Minutes, Disk-Wiping Malware Confirmed
A sophisticated supply chain attack compromised 84 versions of TanStack npm packages between 19:20 and 19:26 UTC on May 11, embedding malware capable of credential theft, self-propagation, and complete disk erasure on infected hosts. The campaign, linked to the ongoing Mini Shai-Hulud operation, also targeted packages ...