TI Mindmap HUB
Threat Intelligence Report

Defending Against Sha1-Hulud: The Second Coming

๐Ÿ“… November 27, 2025 ๐Ÿ“ฐ www.sentinelone.com ๐Ÿ” 0 CVE(s) referenced

Shai-Hulud Worm 2.0 marks a dangerous escalation in NPM supply chain attacks, now harvesting cloud credentials and establishing persistent access via GitHub Actions to enable broad compromise across AWS, Azure, and GCP environments.

vendor

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

๐Ÿ” Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

๐Ÿ“Š Visual Mindmap
๐ŸŽฏ IOC Extraction
โš”๏ธ MITRE ATT&CK TTPs
๐Ÿ“ฆ STIX 2.1 Bundle