Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft - https://www.redpacketsecurity.com/mini-shai-hulud-compromised-antv-npm-packages-enable-ci-cd-credential-theft/

#threatintel
#antv
#npm-supply-chain
#github-actions
#credential-theft
#supply-chain-security

«Hunderte bösartige npm-Pakete im AntV-Ökosystem entdeckt:
Das Datenvisualisierungs-Ökosystem AntV war Ziel einer Mini-Shai-Hulud-Lieferkettenattacke mit Hunderten schädlicher npm-Pakete.»

Schon wieder viele npm-Pakete. Liegt das an npm selber oder ist dies im allgemeinen ein Code-Struktur-Fehler? Betreffen tut es schlussendlich alle User dieser Software, auch wenn die es "nur" nutzen.

🧑‍💻 https://www.heise.de/news/Hunderte-boesartige-npm-Pakete-im-AntV-Oekosystem-entdeckt-11300242.html

#npm #minishaihulud #itsicherheit #js #ts #javascript #typescript #webdev #antv

📢 Attaque supply chain npm : TeamPCP compromet 323 packages AntV via compte maintainer
📝 ## 🎯 Contexte

Article publié le 19 mai 2026 par Snyk (blog.snyk.io), rédigé par Liran Tal.
📖 cyberveille : https://cyberveille.ch/posts/2026-05-19-attaque-supply-chain-npm-teampcp-compromet-323-packages-antv-via-compte-maintainer/
🌐 source : https://snyk.io/fr/blog/mini-shai-hulud-antv-npm-supply-chain-attack/
#AntV #Bun_JS_obfuscated_payload #Cyberveille

Mini Shai-Hulud Campaign Targets npm Ecosystem with Malicious AntV Packages

A large-scale attack has infected hundreds of popular npm packages, including widely-used data visualization and React components, with malicious updates, putting a vast number of projects and applications at risk. The attackers published 639 malicious versions across 323 unique packages in a fast-moving supply chain operation.

https://osintsights.com/mini-shai-hulud-campaign-targets-npm-ecosystem-with-malicious-antv-packages?utm_source=mastodon&utm_medium=social

#SupplyChain #MaliciousPackages #NpmEcosystem #Antv #React

MEGAFONO LATINO 🧉📣🧉📣🧉📣

online, viernes, 27 de marzo, 19:00 GMT-3

Hoy! Megáfono Latino sale a las 19 horas (Argentina)! Más de 20 organizaciones de 8 países de Latinoamérica y el Caribe hacemos un programa en vivo compartiendo la cobertura colaborativa del 24 de marzo, historias de nuestros territorios y la experiencia de la Escuela de Comunicación y Tecnologías Libres para la Defensa Común del Territorio.

Megáfono Latino es un pedacito de un gran recorrido que hemos hecho los últimos días para compartir nuestras experiencias y saberes mostrando lo que podemos crear trabajando colectiva y colaborativamente. Combatir el avance individualista implica encontrarnos, crear red mas allá de cualquier frontera física y digital.

Miranos por tv.antv.abyaya.la , expandamos las resistencias en Abya Yala

https://vagancio.partidopirata.com.ar/event/megafono-latino

#Disinformation expert Bader said that while #Anonymous #News might not have the reach of other pro-#russia channels, it is part of a much wider ecosystem.

#ANTV #propaganda #disinformation #russia

https://www.occrp.org/en/feature/spies-lies-and-video-clicks-the-warped-world-of-pro-russian-disinformation-in-europe

Chào mừng 80 năm Quốc khánh, Truyền hình Công an nhân dân (ANTV) sẽ phát sóng bộ phim tài liệu "Độc lập" vào 10h25 sáng ngày 1/9! 🎬🇻🇳

#phimtailieu #quoockhanh #ANTV #doklap #documentary #vietnam #80namquoockhanh #phimviet

https://vietnamnet.vn/co-gi-trong-phim-tai-lieu-doc-lap-cua-truyen-hinh-cong-an-nhan-dan-2436345.html

Transmisión Especial de Medios Alternativos a 22 años de la Masacre de Avellaneda

online, martes, 25 junio (18:00)

https://vagancio.partidopirata.com.ar/event/transmision-especial-de-medios-alternativos-a-22-anos-de-la-masacre-de-avellaneda