TanStack has released a detailed postmortem describing a sophisticated supply-chain attack that compromised 42 npm packages ...
Mini Shai-Hulud hit 2 OpenAI devices via TanStack, exposing limited credentials and forcing macOS certificate updates by June ...
Shai-Hulud worm exploited GitHub Actions misconfiguration to poison shared cache, now project weighing nuclear option on ...
Morning Overview on MSN
The TanStack supply chain attack poisoned 160 npm and PyPI packages — reaching OpenAI, Mistral AI, and UiPath through compromised build pipelines
On May 11, 2026, a self-replicating worm called Mini Shai-Hulud quietly slipped into 42 widely used TanStack open-source ...
A new wave of the Mini Shai-Hulud campaign compromised dozens of TanStack npm packages as part of a broader supply chain attack affecting developer ecosystems, including packages tied to UiPath, ...
OpenAI says two employees' devices were breached in the recent TanStack supply chain attack that impacted hundreds of npm and ...
A popular developer of open source analytics software has revealed that a recent data breach and extortion incident was ...
OpenAI has rotated code-signing certificates after code repositories containing them were compromised in the TanStack supply ...
Cryptopolitan on MSN
OpenAI says no user data exposed after TanStack npm supply chain attack hit employee devices
OpenAI confirmed that two employee devices were compromised, but found no evidence that user data, production systems, or ...
Grafana says hackers compromised business contact information and downloaded its codebase as a result of the TanStack supply ...
Two devices were compromised by TeamPCP's infostealing malware.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results