TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
View original
The Hacker News avatar

TGINSIGHT POST

Post #8740

@thehackernews

The Hacker News

Views12,200Post view count
PostedApr 504/05/2026, 05:10 AM
Post content

Post content

🛑 36 npm packages posing as Strapi plugins were used to deliver malware that runs on install. They exploited Redis and PostgreSQL, stole credentials, and deployed backdoors via postinstall scripts with full user or CI/CD access. 🔗 Details → https://thehackernews.com/2026/04/36-malicious-npm-packages-exploited.html