Cyber Intelligence

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

Medium Severity Global
Date Occurred May 19, 2026 04:54 UTC
Event Type Cyber Intelligence
Source TheHackerNews
Recorded May 19, 2026
Full Description

Cybersecurity researchers have discovered a fresh software supply chain attack campaign that has compromised various npm packages associated with the @antv ecosystem as part of the ongoing Mini Shai-H

Original Source
https://thehackernews.com/2026/05/mini-shai-hulud-pushes-malicious-antv.html
Event Metadata
  • ID #2156
  • Type Cyber Intelligence
  • Region Global
  • Severity Medium
  • Indexed May 19, 2026
Quick Actions
Back to Events View on Globe Read Original Article

Related Events

Microsoft confirms patching issues in restricted Windows networks
May 19, 2026 Medium
SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access
May 19, 2026 Medium
Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer
May 19, 2026 Medium
GitHub Actions Supply Chain Attack Redirects Tags to Steal CI/CD Credentials
May 19, 2026 Medium
INTERPOL ‘Operation Ramz’ seizes 53 malware, phishing servers
May 18, 2026 Medium
SHub macOS infostealer variant spoofs Apple security updates
May 18, 2026 Medium