A significant supply chain attack, named Mini Shai-Hulud, has impacted over 1,800 developers across the PyPi, NPM, and PHP ecosystems. This attack, attributed to the hacking group TeamPCP, was first identified on April 29. It involved the deployment of malicious versions of SAP NPM packages, which were used to deliver information-stealing malware. The malware's primary function was to extract sensitive data such as credentials, keys, and tokens from compromised machines and then upload this data to GitHub repositories with a distinct description hinting at the attack's nature.
The attack did not stop there. It expanded to include the Lightning PyPi package and the intercom-client NPM package, both of which have a massive combined monthly download volume of nearly 10 million. According to Ox Security, the Mini Shai-Hulud campaign is linked to the ongoing Shai-Hulud supply chain attacks from late 2025. The attack is particularly concerning due to its scale and the strategic targeting of popular software packages.
Versions 2.6.2 and 2.6.3 of the Lightning Python package and versions 7.0.4 and 7.0.5 of the intercom-client NPM package were specifically targeted. Furthermore, the attack spread to Packagist with the compromise of intercom-php version 5.0.2, a highly downloaded PHP package. The cybersecurity firm Wiz has noted that the malware used sophisticated infrastructure for data exfiltration, including a dedicated domain. Additionally, the payloads have been engineered to search for Kubernetes environments and HashiCorp Vault secrets, extracting valuable credentials such as AWS keys and API secrets.
Aikido Security has also observed that the malware targets VPN credentials, cryptocurrency wallets, and session data from Discord and Slack. This comprehensive approach highlights the attackers' intent to harvest extensive and diverse data, posing significant risks to the affected developers and their associated organizations.