Shai-Hulud keeps burrowing: 314 npm packages infected after another account compromise

The Register
May 19, 2026, 8:58 am87 ptsTrending
An npm account compromise infected 314 npm packages with malware, including size-sensor, echarts-for-react, timeago.js, and packages scoped to @antv, in a 22-minute burst of activity in the early hours of Tuesday morning. The most popular impacted package is size-sensor, downloaded 4.2 million times per month,…

Read Article Share
Share Article
- email
- x.com
- facebook
- pocket
- reddit
- tumblr
- linkedin
- pinterest

Trending Today on Tech News Tube

If the Oura Ring 5 gets these 3 upgrades on top of the already 'future-proof' Oura Ring 4, it's a day-one purchase (and might beat the Samsung Galaxy Ring to the top of our smart ring list)

TechRadar

If the Oura Ring 5 gets these 3 upgrades on top of the already 'future-proof' Oura Ring 4, it's a day-one purchase (and might beat the Samsung Galaxy Ring to the top of our smart ring list) 126

How to watch Google I/O 2026 — and what announcements to expect

TechRadar

How to watch Google I/O 2026 — and what announcements to expect 126

The Keurig K-Crema high-pressure coffee maker produces creamy, smooth brews with speed and ease

TechRadar

The Keurig K-Crema high-pressure coffee maker produces creamy, smooth brews with speed and ease 111

This TV backlight promises simple setup and AI extras for a lot less than Philips Hue — and without an HDMI box

TechRadar

This TV backlight promises simple setup and AI extras for a lot less than Philips Hue — and without an HDMI box 110

AMD makes history with first overseas AI DevDay in Shanghai, targeting deeper China partnerships

Digitimes

AMD makes history with first overseas AI DevDay in Shanghai, targeting deeper China partnerships 110

Why your next cybersecurity upgrade isn’t an AI agent—it’s a dotBrand domain name

TechRadar

Why your next cybersecurity upgrade isn’t an AI agent—it’s a dotBrand domain name 108

Maximizing the value of technology through connected ecosystems

TechRadar

Maximizing the value of technology through connected ecosystems 102

As the Federal Government races to adopt AI, talent, transparency, and flexibility remain vital

TechRadar

As the Federal Government races to adopt AI, talent, transparency, and flexibility remain vital 102

About Tech News Tube

Tech News Tube is a real time news feed of the latest technology news headlines.

Follow all of the top tech sites in one place, on the web or your mobile device.

Featured

Einride L4 autonomous electric semi…

Einride L4 autonomous electric semi truck gets real – in Ohio

WhatsApp Tests Read-Triggered…

WhatsApp Tests Read-Triggered Disappearing Messages

How AI search is shifting brand visibility from SEO to data verification

Intel CEO Lip-Bu Tan stamps out chip…

Intel CEO Lip-Bu Tan stamps out chip bugs with aggressive new quality standards,…

Cyber attackers have a new favorite, the…

Cyber attackers have a new favorite, the browser

Want to feel more hands-on with your…

Want to feel more hands-on with your files and spreadsheets? You're in luck -…

You can save up to 72% in HP's Memorial…

You can save up to 72% in HP's Memorial Day sale — grab your next gaming PC,…

Convergence isn’t optional: The new…

Convergence isn’t optional: The new mandate for IT and security

Laser-driven spintronic memory device…

Laser-driven spintronic memory device switches 1,000 times faster than DRAM…

The Samsung Galaxy S26 Ultra is 'the…

The Samsung Galaxy S26 Ultra is 'the best Android phone ever' — and it's just…