Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages

GR 13/05/2026 0 Comments

TeamPCP, the threat actor behind the recentsupply chain attack spree, has been linked to the compromise of the npm and PyPI packages from TanStack, UiPath, Mistral AI, OpenSearch, and Guardrails AI as part of a fresh Mini Shai-Hulud campaign.
The affected npm packages have been modified to include an obfuscated JavaScript file (“router_init.js”) that’s designed to profile the execution

Leave a Reply Cancel reply

Better Content and Design Feedback with WordPress Notes 07/04/2026
Giving feedback on content and design inside WordPress hasn’t always been easy. Teams often used Google Docs, Figma, or email threads to review drafts, leave comments, and finalize content or design before publishing. This workflow worked, but it forced teams to juggle multiple tools, copy content back and forth, and sometimes lose context along the […]
How (and Why) to Migrate Your WordPress Site to Pressable 10/01/2026
If you’re running WordPress for your own site or client projects, a managed WordPress hosting solution can save you time and stress. Managed hosting takes care of server maintenance, security updates, and technical issues for you. If your site is on a non-managed or slow host, now may be the right time to switch. Pressable […]
WordPress Black Friday & Cyber Monday 2025 Deals 23/11/2025
While many people are looking forward to a shorter work week, football games, parades, and time with friends or family, there is another reason to get excited, especially if you are a WordPress enthusiast like me. This week is one of the best times of the year to score amazing deals on themes, plugins, hosting […]
How to Move Your Email List from Mailchimp to Flodesk 14/10/2025
I’ve been using Mailchimp for the WPExplorer.com newsletter for many years. While it’s a powerful email marketing platform, it’s also gotten very expensive over time and includes countless features I’ve never needed or used. Because of that, I paused the newsletter for about a year while searching for a simpler, more affordable solution. Recently, I […]
Complete Guide to Speculative Loading in WordPress 07/05/2025
WordPress 6.8 introduced a highly requested feature: Speculative Loading. But what exactly is it, and how does it affect your website? In simple terms, and in WordPress specifically, it’s a technique that makes your site feel faster by predicting which page(s) a visitor is likely to view next and preloading them. In this guide, we’ll […]

Support

Related Posts

Webinar: What the Riskiest SOC Alerts Go Unanswered – and How Radiant Security Can Help

New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network Pivots

RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded

Leave a Reply Cancel reply