Cybersecurity researchers are sounding the alarm about a new
supply chain attack campaign targeting SAP-related npm Packages
with credential-stealing malware. According to reports from Aikido
Security, SafeDep, Socket, StepSecurity, and Google-owned Wiz, the
campaign – calling itself the mini Shai-Hulud – has affected the
following packages associated with SAP's JavaScript and cloud
application
Read more https://thehackernews.com/2026/04/sap-npm-packages-compromised-by-mini.html
