The npm ecosystem is currently facing a massive supply chain attack targeting the popular @antv packages and related projects. Researchers at Socket have identified a highlycoordinated malicious publish wave tied to the Mini Shai-Hulud threat actor. By compromising a key maintainer account named atool, attackers successfully injected malware into widely used data visualization and React […]
The post Hackers Compromise @antv npm Packages In Mini Shai-Hulud Attack Wave appeared first on Cyber Security News.