Pandora’s box has officially been torn open in the open-source software supply chain. On May 12, a sophisticated threat group known as TeamPCP shocked the cybersecurity community by publicly releasing the source code of their self-developed, credential-stealing malware. Named Shai-Hulud after the giant sandworms from the sci-fi novel Dune, this worm aggressively devours sensitive developer […]
The post Shai-Hulud Worm Steals Developer Secrets Across npm, GitHub, AWS, and Kubernetes appeared first on Cyber Security News.