1. Mini Shai-Hulud Malware Infiltrates Hundreds of Open-Source Packages, Including TanStack React Router
A sprawling supply-chain attack has embedded credential-stealing malware into hundreds of open-source software packages distributed through major registries, security researchers warned. The campaign, dubbed "mini Shai-Hulud," targets development tools with massive user bases, placing malicious code within reach of dev...