Patrick C Miller Aug 30, 2025
Thousands of Developer Credentials Stolen in macOS “s1ngularity” Attack https://hackread.com/developer-credentials-stolen-macos-s1ngularity-attack/
Thousands of Developer Credentials Stolen in macOS “s1ngularity” Attack

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Show threadThomas Reed
@patrickcmiller @hacks4pancakes Seems like a stretch to call this a “macOS attack” just because 85% of the infected machines were Macs. That fact is definitely worth calling out, for the “Macs don’t get viruses” crowd, but it doesn’t sound like Macs were specifically targeted.
Aug 30, 2025 at 1:28pmWeb
Show threadThomas ReedAug 30, 2025

@patrickcmiller @hacks4pancakes This seems like a better source of info about the attack. Interestingly, the hackread article used much stronger language about the use of AI CLI tools in the attack, suggesting the AI tools were acting like a security layer.

https://www.wiz.io/blog/s1ngularity-supply-chain-attack

s1ngularity: supply chain attack leaks secrets on GitHub: everything you need to know | Wiz Blog

Detect and mitigate a critical supply chain compromise affecting the Nx NPM Package. Organizations should act urgently.

wiz.io