Collecting Cyber-News from over 60 sources

A Mini Shai-Hulud Targeting the SAP Ecosystem

Apr 29, 2026 7:39 PM

Tags: attack, breach, github, sap, supply-chain

7 stolen GitHub tokens. 971 repositories. A self-replicating supply chain attack targeting SAP’s Node.js packages, and it’s still active. Here’s what GitGuardian found.

First seen on securityboulevard.com

Jump to article: securityboulevard.com/2026/04/a-mini-shai-hulud-targeting-the-sap-ecosystem/

A Mini Shai-Hulud Targeting the SAP Ecosystem

also interesting: