Close
- Information Technology
- Data Infrastructure
- Data Tools
- Desktops, Laptops and OS
- Chip Sets
- Collaboration Tools
- Desktop Systems - PCs
- Email Client
- Embedded Systems
- Hardware and Periferals
- Laptops
- Linux - Open Source
- Mac OS
- Memory Components
- Mobile Devices
- Presentation Software
- Processors
- Spreadsheets
- Thin Clients
- Upgrades and Migration
- Windows 7
- Windows Vista
- Windows XP
- Word Processing
- Workstations
- Enterprise Applications
- IT Infrastructure
- IT Management
- Networking and Communications
- Bluetooth
- DSL
- GPS
- GSM
- Industry Standard Protocols
- LAN - WAN
- Management
- Mobile - Wireless Communications
- Network
- Network Administration
- Network Design
- Network Disaster Recovery
- Network Interface Cards
- Network Operating Systems
- PBX
- RFID
- Scalability
- TCP - IP
- Telecom Hardware
- Telecom Regulation
- Telecom Services
- Telephony Architecture
- Unified Communications
- VPNs
- VoIP - IP Telephony
- Voice Mail
- WAP
- Wi-Fi (802.11)
- WiMAX (802.16)
- Wide Area Networks (WAN)
- Wireless Internet
- Wireless LAN
- Security
- Servers and Server OS
- Software and Web Development
- .Net Framework
- ASPs
- Application Development
- Application Servers
- Collaboration
- Component-Based
- Content Management
- E-Commerce - E-Business
- Enterprise Applications
- HTML
- IM
- IP Technologies
- Integration
- Internet
- Intranet
- J2EE
- Java
- Middleware
- Open Source
- Programming Languages
- Quality Assurance
- SAAS
- Service-Oriented Architecture (SOA)
- Software Engineering
- Software and Development
- Web Design
- Web Design and Development
- Web Development and Technology
- XML
- Storage
- Agriculture
- Automotive
- Career
- Construction
- Education
- Engineering
- Broadcast Engineering
- Chemical
- Civil and Environmental
- Control Engineering
- Design Engineering
- Electrical Engineering
- GIS
- General Engineering
- Industrial Engineering
- Manufacturing Engineering
- Materials Science
- Mechanical Engineering
- Medical Devices
- Photonics
- Power Engineering
- Process Engineering
- Test and Measurement
- Finance
- Food and Beverage
- Government
- Healthcare and Medical
- Human Resources
- Information Technology
- Data Infrastructure
- Data Tools
- Desktops, Laptops and OS
- Chip Sets
- Collaboration Tools
- Desktop Systems - PCs
- Email Client
- Embedded Systems
- Hardware and Periferals
- Laptops
- Linux - Open Source
- Mac OS
- Memory Components
- Mobile Devices
- Presentation Software
- Processors
- Spreadsheets
- Thin Clients
- Upgrades and Migration
- Windows 7
- Windows Vista
- Windows XP
- Word Processing
- Workstations
- Enterprise Applications
- IT Infrastructure
- IT Management
- Networking and Communications
- Bluetooth
- DSL
- GPS
- GSM
- Industry Standard Protocols
- LAN - WAN
- Management
- Mobile - Wireless Communications
- Network
- Network Administration
- Network Design
- Network Disaster Recovery
- Network Interface Cards
- Network Operating Systems
- PBX
- RFID
- Scalability
- TCP - IP
- Telecom Hardware
- Telecom Regulation
- Telecom Services
- Telephony Architecture
- Unified Communications
- VPNs
- VoIP - IP Telephony
- Voice Mail
- WAP
- Wi-Fi (802.11)
- WiMAX (802.16)
- Wide Area Networks (WAN)
- Wireless Internet
- Wireless LAN
- Security
- Servers and Server OS
- Software and Web Development
- .Net Framework
- ASPs
- Application Development
- Application Servers
- Collaboration
- Component-Based
- Content Management
- E-Commerce - E-Business
- Enterprise Applications
- HTML
- IM
- IP Technologies
- Integration
- Internet
- Intranet
- J2EE
- Java
- Middleware
- Open Source
- Programming Languages
- Quality Assurance
- SAAS
- Service-Oriented Architecture (SOA)
- Software Engineering
- Software and Development
- Web Design
- Web Design and Development
- Web Development and Technology
- XML
- Storage
- Life Sciences
- Lifestyle
- Management
- Manufacturing
- Marketing
- Meetings and Travel
- Multimedia
- Operations
- Retail
- Sales
- Trade/Professional Services
- Utility and Energy
- View All Topics
Share Your Content with Us
on TradePub.com for readers like you. LEARN MORE
Request Your Free Case Study Now:
"Sha1-Hulud: The Preinstall Worm That Hijacked 26,000 Repos"
An npm worm exploited preinstall hooks to compromise 26,000 repositories, stealing credentials and spreading before security scans could detect it. The attack used the install command to execute malicious code during package downloads. Review this page to learn how verifiable source-based builds can prevent registry-based supply chain attacks.
Software supply chain attacks are becoming more advanced, with malware executing before traditional security scans detect it. The Sha1-Hulud worm highlights this evolution, exploiting a blind spot in package installation workflows.
This page examines how Sha1-Hulud weaponized npm's preinstall hooks to compromise 26,000+ repositories in 72 hours, and explores prevention strategies addressing root causes:
· Worm replication via stolen credentials and infected package republishing
· A blast radius impacting 500+ packages with 132M+ downloads
· A build method bypassing compromised registries by sourcing verified code
Learn how this attack unfolded and defenses against similar threats.
Offered Free by: Chainguard APAC
See All Resources from: Chainguard APAC
Recommended for Professionals Like You:
Thank you
This download should complete shortly. If the resource doesn't automatically download, please, click here.
Thank you
This download should complete shortly. If the resource doesn't automatically download, please, click here.
Thank you
This download should complete shortly. If the resource doesn't automatically download, please, click here.
