THE Hacker News reports that Mini Shai-Hulud is pushing malicious versions of AntV npm packages by compromising a maintainer account, with the attack affecting packages tied to the npm maintainer account atool, including echarts-for-react, a popular React wrapper for Apache ECharts with roughly 1.1 million weekly downloads, according to Socket.
The campaign has seen the attacker publish 639 malicious versions across 323 unique packages, including 558 versions across 279 unique @antv packages, and involved a 22‑minute burst of activity across 314 packages (631 versions) using an identical obfuscated payload. Each compromised version adds a preinstall hook (bun run index[.]js), and 630 of the 631 malicious versions inject an optionalDependencies entry that delivers a second copy of the payload via the legitimate antvis/G2 GitHub repository.
The malware harvests credentials and other data, exfiltrating via the domain t.m-kosche[.]com:443, and can use a stolen GitHub token to create a public repository containing the harvested data in JSON form. The campaign is described as self-replicating and financially motivated, with TeamPCP named as the threat actor behind the activity, and a new phase after they released the framework’s source code for others to use.