Supply chain attack against SAP npm packages facilitates credential theft

Threat actors have compromised four SAP npm packages with credential-stealing malware as part of the new mini Shai-Hulud supply chain intrusion campaign, The Hacker News reports.

Affected were the SAP JavaScript and cloud application development ecosystem-related packages [email protected], @cap-js/db-service v2.10.1, @cap-js/postgres v2.2.2, and @cap-js/sqlite v2.2.2, all of which have already been deprecated from the npm repository, according to separate analyses from Aikido Security, SafeDep, Socket, StepSecurity, and Wiz. Inclusion of a pre-install script within the npm packages, which were published on Apr. 29, allowed the eventual execution of the credential stealer, which was noted by Aikido researchers to exfiltrate developer credentials, GitHub and npm tokens, and GitHub Actions secrets, as well as AWS, Azure, Google Cloud Platform, and Kubernetes cloud secrets.

TeamPCP was suspected by Wiz researchers of having perpetrated the campaign, given the similarities with previous supply chain breaches. However, StepSecurity researchers observed the campaign to not only exist within Russian-locale systems and enable data exfiltration via AES-256-CGM but also involve a payload that self-commits to every accessible GitHub repository, marking a significant departure from earlier Shai-Hulud waves.

"This is one of the first supply chain attacks to target AI coding agent configurations as a persistence and propagation vector," said StepSecurity.