Information security
fromTechzine Global
8 hours agoShai-Hulud 2.0's impact appears vast as NPM ecosystem struggles to cope
A widespread NPM supply-chain campaign, Shai-Hulud 2.0, exfiltrated hundreds of thousands of secrets, reused valid tokens, and added destructive functionality targeting development environments.