A sprawling supply-chain attack dubbed 'Mini Shai-Hulud' has burrowed into the foundations of modern enterprise software. According to CyberScoop, the malware has compromised hundreds of open-source packages, including the TanStack React Router, which is downloaded more than 12 million times a week. The credential-stealing code was designed to infect developer machines and CI/CD runners, potentially granting attackers access to Amazon Web Services, Google Cloud, and GitHub accounts.

The campaign has been attributed to TeamPCP, a cloud-focused criminal group that emerged in late 2025. By exploiting maintainer misconfigurations and GitHub Actions weaknesses, the group was able to hijack legitimate release pipelines for 170 Node Package Manager (npm) packages. Security researchers at Aikido and Socket Threat Research identified the worm-like malware as it "slithered its way through the software supply chain," according to Dark Reading.

Read together, the 'Mini Shai-Hulud' attack and the arrival of models like Anthropic’s Mythos—which can find and exploit serious software flaws at a level exceeding human researchers—suggest a terminal window for human-led network defense; the link is stated in no official security advisory. As Anthropic releases Mythos to state CIOs as a "wake-up call," the automated economy is finding that its automated tools are also its greatest vulnerabilities. The 'Cognitive Enclosure' is not a vault; it is a petri dish.