Self-Replicating Worm Hits 180+ npm Packages to Steal Credentials in Latest Supply Chain Attack

A self-replicating worm, dubbed Shai-Hulud, is targeting the npm registry, compromising over 180 packages to steal credentials. The malware, which spreads through package dependencies, uses TruffleHog to scan for sensitive information and exfiltrates it to an external server. The attack, believed to have originated from the compromised “techsupportrxnt” account, is actively spreading and poses a significant threat to the npm ecosystem.