Breach Roundup: Shai-Hulud Copycat Hits npm

Thursday, May 21, 2026 at 11:00 PM UTC·Source: Bank Info Security

Updated: Thursday, May 21, 2026 at 11:00 PM UTC

Executive Summary

Analysis

Also, YellowKey Gets CVE, 7-Eleven Breach, Linux Maintainers Warn on AI Bug Spam This week, more incidents that we can here list. Among them: cloned Shai-Hulud malware, a new maximum CVSS Cisco flaw. Edge to stop loading passwords in plaintext. Tycoon 2FA offers a way around Microsoft multifactor. Convenience, taquitos and data breach: The 7-Eleven story. A MENA crackdown.

Indicators of Compromise (2)

URL (1)

https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/breach-roundup-shai-hulud-copycat-hits-npm-image_small-1-a-31747.jpg

VirusTotal URLhaus

Domain (1)

ismg-cdn.nyc3.cdn.digitaloceanspaces.com

VirusTotal URLhaus

Source Attribution

Originally published by Bank Info Security on May 21, 2026.

Related Threats

MEDIUMData Breach

Wardriving assessment across Mexico: Preparing for the 2026 World Cup

In the lead-up to the 2026 FIFA World Cup, Kaspersky GReAT experts conducted a wardriving assessment in Mexico City, Monterrey, and Guadalajara to evaluate Wi-Fi hotspot security configurations and potential exposure risks.

6h agoSecurelist (Kaspersky)

HIGHData Breach

Family Medicine Centers Pays $2.15M to Resolve Data Breach Lawsuit

FMC Services, LLC, which does business as Family Medicine Centers in Texas, has agreed to a $2,150,000 settlement to resolve […] The post Family Medicine Centers Pays $2.15M to Resolve Data Breach Lawsuit appeared first on The HIPAA Journal .

7h agoHIPAA Journal

HIGHData Breach

Family Medicine Centers Pay $2.15M to Resolve Data Breach Lawsuit

FMC Services, LLC, which does business as Family Medicine Centers in Texas, has agreed to a $2,150,000 settlement to resolve […] The post Family Medicine Centers Pay $2.15M to Resolve Data Breach Lawsuit appeared first on The HIPAA Journal .

7h agoHIPAA Journal