Tag: Visual Studio Code Malware

The npm ecosystem has been subjected to a massive, highly coordinated supply-chain assault. Within a compressed one-hour envelope, threat actors successfully forced hundreds of malicious versions of popular libraries into the registry, actively targeting downstream developers and continuous integration build systems. This campaign, explicitly linked to the Shai-Hulud threat lineage, poses a severe risk because…