{"id":6965,"date":"2025-09-16T20:24:00","date_gmt":"2025-09-16T20:24:00","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2025\/09\/16\/self-replicating-shai-hulud-worm-npm-packages\/"},"modified":"2025-09-16T20:24:00","modified_gmt":"2025-09-16T20:24:00","slug":"self-replicating-shai-hulud-worm-npm-packages","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2025\/09\/16\/self-replicating-shai-hulud-worm-npm-packages\/","title":{"rendered":"Self-Replicating &#8216;Shai-hulud&#8217; Worm Targets NPM Packages"},"content":{"rendered":"\n<div>Self-Replicating &#8216;Shai-hulud&#8217; Worm Targets NPM Packages<\/div>\n<p> \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>The newly emerged worm has spread across hundreds of open source software packages, stealing credentials and infecting other components without much direct attacker input.<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Alexander Culafi<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/www.darkreading.com\/application-security\/self-replicating-shai-hulud-worm-npm-packages\">Go to gbhackers.com<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Self-Replicating &#8216;Shai-hulud&#8217; Worm Targets NPM Packages The newly emerged worm has spread across hundreds of open source software packages, stealing credentials and infecting other components without much direct attacker input. Alexander Culafi Go to gbhackers.com<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[260],"tags":[261],"class_list":["post-6965","post","type-post","status-publish","format-standard","hentry","category-darkreading","tag-darkreading"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/6965"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=6965"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/6965\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=6965"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=6965"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=6965"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}