This is a developing event and has been generated by AI. Details may change as more information becomes available and human review is completed.
Shai Hulud Supply Chain Attack – Malicious npm/PyPI Packages – May 2026
Impact Assessment Rationale
Supply chain attacks via popular package registries like npm and PyPI can affect a large number of developers and downstream organisations globally, enabling credential theft at scale. However, the specific financial or operational losses are not yet confirmed.
View assessment methodology →Loading map...
Summary
A threat actor identified as 'Shai Hulud' has compromised hundreds of packages across the npm and PyPI software registries in a supply chain attack campaign. The malicious packages, which include signed versions impersonating TanStack and Mistral libraries, deliver credential-stealing malware targeting software developers. The campaign represents a broad software supply chain compromise with global reach given the widespread use of npm and PyPI ecosystems.
This summary is AI-generated from linked source reports and may change as more information becomes available. See our correction policy for how to report errors.
Structured Intelligence
known
- Hundreds of packages across npm and PyPI have been compromised
- The campaign is attributed to a threat actor called 'Shai Hulud'
- Malicious packages impersonate TanStack and Mistral npm packages
- The packages deliver credential-stealing malware
- The packages are signed, adding legitimacy and increasing likelihood of installation
reported
- The campaign targets software developers specifically
- Both npm and PyPI registries are affected
uncertain
- The full scope and number of compromised packages is not confirmed
- Attribution of Shai Hulud threat actor to any nation-state or group is not stated
- The number of developers or organisations affected is unknown
- Whether packages have been removed from registries is not confirmed
Key Entities
Sources
Trade Media
- BleepingComputer12 May 2026, 12:00
- BleepingComputer18 May 2026, 20:48
Timeline
Status changed to developing
Auto-promoted: multiple sources
Corroborating source
The Shai-Hulud malware, which leaked the previous week, has been weaponised in a new supply chain attack targeting the Node Package Manager (npm) ecosystem. Infected packages were identified over the weekend following the malware's public leak. The campaign is classified as an infostealer operation, seeking to exfiltrate sensitive data from developers and organisations relying on compromised npm packages. The open-source nature of npm makes this a broad-reach supply chain compromise with potential downstream impact across many software-dependent organisations.
The Shai-Hulud malware leaked last week is now used in new attacks on the Node Package Manager (npm) index, as infected packages emerged over the weekend.
Source: BleepingComputer (Trade Media) · View source
Initial Detection
A threat actor identified as 'Shai Hulud' has compromised hundreds of packages across the npm and PyPI software registries in a supply chain attack campaign. The malicious packages, which include signed versions impersonating TanStack and Mistral libraries, deliver credential-stealing malware targeting software developers. The campaign represents a broad software supply chain compromise with global reach given the widespread use of npm and PyPI ecosystems.
Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering credential-stealing malware targeting developers.
Source: BleepingComputer (Trade Media) · View source