Hackers have compromised dozens of popular open source packages in an ongoing supply chain attack

Hulud, which has already compromised several open source projects and, in turn, developers and companies that use them.

New Shai-Hulud malware wave compromises 600 npm packages

Threat actors earlier today published more than 600 malicious packages to the Node Package Manager (npm) index as part of a ...