TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
View original
The Hacker News avatar

TGINSIGHT POST

Post #8911

@thehackernews

The Hacker News

Views8,880Post view count
PostedMay 105/01/2026, 06:10 AM
Post content

Post content

⚠️ Update: Mini Shai-Hulud is spreading across ecosystems. → intercom-client (npm) and intercom-php (Packagist) compromised → Install-time hooks deploy credential stealer Attack targets GitHub tokens, cloud creds, SSH keys, Kubernetes, Vault, Docker, and .env files. Read: https://thehackernews.com/2026/04/pytorch-lightning-compromised-in-pypi.html#intercom-npm-and-packagist-package-compromised-as-part-of-mini-shai-hulud Campaign linked to TeamPCP and earlier Lightning compromise.