Second Sha1-Hulud Wave Affects 25,000+ Repositories via npm Preinstall Credential Theft
- Posted on November 24, 2025
- By The Hacker News
- 2 Views
Second Sha1-Hulud Wave Affects 25,000+ Repositories via npm Preinstall Credential Theft
Security vendors warn Sha1-Hulud has hijacked 25,000+ GitHub repos via npm packages, stealing cloud credentials or wiping dev home directories.
