Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Mini Shai-Hulud: The Most Sophisticated NPM Supply Chain Attack of 2026

May 18, 2026 By Snyk In Snyk
On May 11, 2026, the TanStack namespace was hit by a "Mini Shai-Hulud" supply chain attack. Unlike typical attacks, this did not involve stolen credentials; instead, the threat group TeamPCP hijacked the legitimate GitHub Actions release pipeline. This video covers the technical details of the OIDC token extraction, the "Dead Man's Switch" that triggers a rm -rf / upon credential revocation, and the mandatory remediation order you must follow to save your data. We also discuss how to harden your workflow using release-age cooldowns and OIDC pinning.
View Video
Snyk

Mini Shai-Hulud Hits AntV: 300+ Malicious npm Packages Published via Compromised Maintainer Account

May 18, 2026 By Liran Tal In Snyk
A supply chain attack affecting the @antv data visualization ecosystem and related npm packages is actively spreading through the npm registry. The attack, attributed to a threat group called TeamPCP and branded as another wave of the Mini Shai-Hulud campaign, published more than 300 malicious package versions across 323 packages in a 22-minute automated burst on May 19, 2026. The packages collectively represent approximately 16 million weekly downloads.
Read Post
Tines

What is an intelligent workflow? The enterprise blueprint for moving past automation

May 18, 2026 By Tines In Tines
Every team has a workflow that technically works but actually runs through Slack threads, forwarded emails, and "Hey, can you check this?" messages. Security teams see it in alert triage that depends on three analysts knowing which tab to check. IT teams see it in onboarding that breaks every time HR adds a new system. Ops teams see it in access requests that loop through five tools before anyone clicks approve. The work gets done, but it doesn't scale, and it doesn't survive a team change.
Read Post

How to Integrate ITSM in Aurora Vulnerability Management for Better Visibility & Faster Remediation

May 18, 2026 By Arctic Wolf Networks In Arctic Wolf
See how Arctic Wolf Aurora Vulnerability Management turns risk visibility into remediation through seamless integrations with partners like ServiceNow and ConnectWise. This demo shows how automated ticketing, unified workflows, and prioritized findings help security and IT teams accelerate remediation without added workload.
View Video

Is Your Security Built for Today's World?

May 18, 2026 By WatchGuard Technologies In WatchGuard
MSPs are under pressure to deliver stronger security across a growing customer base without adding more tools or people. Despite this, many still rely on approaches that don’t scale, leading to gaps, alert overload, and missed opportunities to grow their security business. The goal of this 30-minute session is to help MSPs take a step back and assess how they’re delivering security today. We’ll walk them through the most common pressure points, help identify where their current approach is falling short, and guide them toward the next conversation based on what matters most to their business.
View Video
foresiet

Shiny Hunters' Supply Chain Playbook: How Tech and Enterprise Get Breached Without Clicking a Single Phishing Link

May 18, 2026 By foresiet In Foresiet
If you look at the cybersecurity setups of massive companies like Rockstar Games, Medtronic, or Amtrak, they look like digital fortresses. They spend millions on top-tier firewalls, hire elite security teams, and lock down their perimeters. Yet, all of them have made headlines for major data breaches. Recent Data Breaches How does this happen if their security is so good? The answer is simple: Attackers didn’t kick down the front door.
Read Post
komodo consulting

We Pentested a Complex API Application with AigentX AI Agent - Then Verified the Results with Source Code Review

May 18, 2026 By Komodo Research In Komodo Consulting
How AigentX found 24 real vulnerabilities, confirmed what wasn't exploitable, and discovered risks that code review alone could never catch.
Read Post
armo

How to Reduce Alert Fatigue in AI Agent Detection: Why It's a Unit-of-Detection Problem, Not a Triage Problem

May 18, 2026 By Shauli Rozen In ARMO
When AI agent workloads start generating more alerts than your SOC can keep up with, the instinct most teams reach for is to deploy more triage on top of what they already have. If the SIEM is producing thousands of atomized alerts, plug in something downstream that can cluster, prioritize, and auto-resolve them faster than a human can. The market has consolidated around exactly this answer.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.