Tracked topic
Grafana breach caused by missed token rotation after TanStack attack By Bill Toulas May 20, 2026 11:46 AM The Grafana data breach was caused by a single GitHub workflow token that slipped through the rotation process following the TanStack npm supply-chain attack last week. …
… According to TanStack's post-mortem, the attackers abused weaknesses in the project's GitHub Actions workflows and CI/CD configuration to execute malicious code, extract tokens from memory, and publish malicious packages through TanStack's normal release pipeline. …
… According to TanStack's post-mortem report from TanStack, the attackers chained three vulnerabilities: a risky ‘pull request-target’ workflow, GitHub Actions cache poisoning, and OIDC token theft from runner memory. …
GitHub links repo breach to TanStack npm supply-chain attack By Sergiu Gatlan May 21, 2026 02:54 AM GitHub says the hackers who breached 3,800 internal repositories gained access via a malicious version of the Nx Console VS Code extension, compromised in last week's TanStack npm supply-chain attack… …
… Download Now Related Articles: OpenAI confirms security breach in TanStack supply chain attack Shai Hulud attack ships signed malicious TanStack, Mistral npm packages Official SAP npm packages compromised to steal credentials Bitwarden CLI npm package compromised to steal developer credentials Back… …
… As in the previous Shai-Hulud campaign impacting TanStack and Mistral packages, the payload collects secrets from developer and CI/CD environments and exfiltrates them over the Session P2P network to complicate detection and takedown efforts. …
… Download Now Related Articles: Shai Hulud attack ships signed malicious TanStack, Mistral npm packages Popular node-ipc npm package compromised to steal credentials TeamPCP hackers advertise Mistral AI code repos for sale OpenAI confirms security breach in TanStack supply chain attack Bitwarden CLI… …
… Download Now Related Articles: DAEMON Tools trojanized in supply-chain attack to deploy backdoor Popular node-ipc npm package compromised to steal credentials Shai Hulud attack ships signed malicious TanStack, Mistral npm packages TeamPCP hackers advertise Mistral AI code repos for sale OpenAI conf… …
… Download Now Related Articles: New macOS stealer campaign uses Script Editor in ClickFix attack New Infinity Stealer malware grabs macOS data via ClickFix lures Popular node-ipc npm package compromised to steal credentials Shai Hulud attack ships signed malicious TanStack, Mistral npm packages Fake… …
… Download Now Related Articles: Australia warns of ClickFix attacks pushing Vidar Stealer malware New Shai-Hulud malware wave compromises 600 npm packages Shai Hulud attack ships signed malicious TanStack, Mistral npm packages INTERPOL ‘Operation Ramz’ seizes 53 malware, phishing servers Popular nod… …