Tag: developer security

Notepad++ Update Traffic Hijacked for Six Months by Chinese State Hackers

Notepad++ Update Traffic Hijacked for Six Months by Chinese State Hackers
~ larshilse ~ Leave a comment

Well fuck me sideways, it finally happened. The thing we've been screaming about for years—that your trusted software update channels are prime targets for nation-state actors—just got confirmed in the worst possible way. Notepad++, that beloved text editor used by millions of developers worldwide, had its update mechanism hijacked by Chinese state-sponsored hackers for six goddamn … Continue reading Notepad++ Update Traffic Hijacked for Six Months by Chinese State Hackers

The Shai Hulud 2.0 Nightmare—When Your Supply Chain Becomes a Credential Harvesting Farm

The Shai Hulud 2.0 Nightmare—When Your Supply Chain Becomes a Credential Harvesting Farm
~ larshilse ~ Leave a comment

Shai Hulud 2.0 just turned the npm ecosystem into a credential harvesting farm. Nearly 1,200 organizations got compromised—and many don't even know it yet. The attack wasn't just stealing data; it was extracting full runtime environments containing live GitHub tokens, AWS keys, and blockchain production credentials. Three days after disclosure, some of those stolen credentials were still valid. This is what modern supply chain warfare looks like.