Looks like we have another #supplychain attack underway, this time facing #SAP-related NPM packages.
https://discourse.ifin.network/t/sap-npm-packages-targeted-with-credential-stealing-malware/340
#ThreatIntel #ThreatIntelligence #IFIN
IFIN - The Independent Federated Intelligence Network
npub1qm…nh363
2026-04-29 16:25:36 UTC
Author Public Key
npub1qm4tytdmranfklywc562p7gprs702mzkc4usqv6t8ja3d340evpslnh363Seen on
wss://relay.momostr.pinkPublished at
2026-04-29 16:25:36 UTCEvent JSON
{
"id": "97aa391e909bbd5ad490efecd29dab0865588aed802aa6f7a173370948f6fc1c",
"pubkey": "06eab22dbb1f669b7c8ec534a0f9011c3cf56c56c57900334b3cbb16c6afcb03",
"created_at": 1777479936,
"kind": 1,
"tags": [
[
"t",
"supplychain"
],
[
"t",
"sap"
],
[
"t",
"threatintelligence"
],
[
"proxy",
"https://infosec.exchange/@ifin/116488925147512586",
"web"
],
[
"t",
"ifin"
],
[
"t",
"threatintel"
],
[
"proxy",
"https://infosec.exchange/ap/users/115741367687413652/statuses/116488925147512586",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://infosec.exchange/ap/users/115741367687413652/statuses/116488925147512586",
"pink.momostr"
],
[
"-"
]
],
"content": "Looks like we have another #supplychain attack underway, this time facing #SAP-related NPM packages.\n\nhttps://discourse.ifin.network/t/sap-npm-packages-targeted-with-credential-stealing-malware/340\n\n#ThreatIntel #ThreatIntelligence #IFIN",
"sig": "602bef17b16cc5198b9a72130e5029b3b2bc3f805b3e5a1ba16e06b46e120ee4ad1f1c2e0a1147d271b35ce31a0b0cd929e793d5f17bfe34ea6683353b220d62"
}