NPM Supply Chain Attack

NPM registry supply chain attacks harvesting developer credentials and API keys.

Cyber News & Updates

Trust Wallet Browser Extension Poisoned via Shai-Hulud NPM Attack, $8.5M in Crypto Drained from 2,596 Users

Attackers exploited the Shai-Hulud NPM supply chain attack to leak Trust Wallet developer GitHub secrets, including the Chrome Web Store API key. Using this key, they uploaded a malicious version…
Read more →

Elles De Yeager

·

Jan 4, 2026

·

7–10 minutes