Threats Tagged 'trapdoor'
View all threats tagged with 'trapdoor'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'trapdoor'
Click on any threat for detailed analysis and mitigation recommendations
Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages 0 A supply chain attack targeted multiple @redhat-cloud-services npm packages by embedding malicious payloads that execute automatically during package installation via preinstall hooks. The malware uses AES-GCM encrypted payloads and obfuscated JavaScript loaders to steal sensitive credentials and secrets including GitHub Actions secrets, npm tokens, cloud provider credentials (AWS, Azure, GCP), Kubernetes and Vault data, SSH keys, Git credentials, and cryptocurrency wallet files. It can persist on developer workstations as a daemon, avoids execution in Russian locales, and exfiltrates stolen data over encrypted HTTPS with fallback to GitHub API channels. The campaign mimics tactics from the publicly available Shai-Hulud toolkit, but attribution remains unclear due to open-source availability of the attack tools. No patch or official remediation guidance is currently provided. Join the discussion | AlienVault OTX General | 06/01/2026, 19:31:26 UTC Added: 06/02/2026, 09:33:33 UTC |
Showing 1 to 1 of 1 result