A second wave of malicious PyPI packages tied to the broader Shai-Hulud, Miasma, and Hades supply chain campaign added 23 newly identified package-version artifacts on top of the 37 malicious wheels documented in their weekend report. According to Socket team, the expanded campaign now targets MCP (Model Context Protocol) developers, bioinformatics researchers, and Python developers who […]
The post Shai-Hulud Attack Compromises 23 PyPI Packages Targeting MCP Developers appeared first on Cyber Security News.