...
From September 14-16, over 180 NPM packages were compromised and used to deliver malware that is now called the Shai-Hulud worm. That malware exfiltrated users' secrets by publishing them to public Github repositories. UpGuard Research used archival Github events to reconstruct which companies were affected by Shai-Hulud infections and the extent of impact.
UpGuard security scores shown here are from September 18.
Breach
Identifying Companies Affected by the Shai-Hulud NPM Supply Chain Attack
Identifying Companies Affected by the Shai-Hulud NPM Supply Chain Attack
Using Github event archives, UpGuard Research identifies companies with indicators of compromise of the Shai-Hulud attacks, even after the repos have been deleted.
Blog
Beware the Sandworm: The Shai-Hulud Attack Explained
Beware the Sandworm: The Shai-Hulud Attack Explained
Learn about the Shai-Hulud worm, a self-replicating malware targeting the NPM ecosystem that steals developer credentials and exposes them.