All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

PyPI Supply Chain Attacks Expand: New Malicious Packages Target Bioinformatics and MCP Developers

By

Kirill Boychenko

3h ago· 10 min readenNews
Bagel score 100 of 100
100/100
Golden Brown
Bagelometer

The kind of bagel that ruins lesser bagels for you.

Score100TypenewsSentimentnegative

Summary

Socket Threat Research team identified a new wave of PyPI supply chain attacks (Mini Shai-Hulud, Miasma, and Hades) that has expanded beyond the previously reported 37 malicious PyPI wheels. The campaign now includes 23 newly identified package-version artifacts, featuring six bioinformatics packages and a cluster of AI/MCP-themed packages. These newer packages use native extensions and .pth loaders to execute JavaScript stealers in developer environments, showing the threat actors are iterating quickly across delivery mechanisms and package themes.

Key quotes

· 4 pulled
Socket Threat Research team identified a newer PyPI wave connected to the broader Mini Shai-Hulud, Miasma, and Hades supply chain attacks.
This wave expands beyond the 37 malicious PyPI wheels covered in our weekend report and shows that the threat actors are iterating quickly across delivery mechanisms, package themes, and runtime triggers.
The new set includes six bioinformatics packages, a separate cluster of AI and MCP-themed packages.
Newer packages in this compromise use native extensions and .pth loaders to execute JavaScript stealers in developer environments.
Snippet from the RSS feed
Newer packages in this compromise use native extensions and .pth loaders to execute JavaScript stealers in developer environments.

You might also wanna read

PyPI Package 'Lightning' Compromised in Supply Chain Attack Affecting AI/ML Developers

The PyPI package 'lightning', a widely-used deep learning framework, was compromised in a supply chain attack affecting versions 2.6.2 and 2

Semgrep·1mo ago

317 npm Packages Compromised in Mini Shai-Hulud Supply Chain Attack

A major npm supply chain attack occurred on May 19, 2026, when the npm account of maintainer "atool" was compromised. The attacker published

safedep.io·20d ago

GitLab Identifies Large-Scale npm Supply Chain Attack with Destructive Malware

GitLab's security researchers have uncovered a large-scale supply chain attack in the npm ecosystem involving a destructive malware variant

about.gitlab.com·6mo ago

Shai Hulud 2.0 Supply-Chain Attack Compromises Zapier, ENS, AsyncAPI, PostHog, and Postman

The article details a new supply-chain attack campaign dubbed 'Shai Hulud 2.0' that has compromised multiple developer tools and platforms i

aikido.dev·6mo ago

Major NPM Supply Chain Attack: @ctrl/tinycolor and 40+ Packages Compromised with Self-Propagating Malware

A sophisticated supply chain attack has compromised the popular @ctrl/tinycolor NPM package (with over 2 million weekly downloads) along wit

stepsecurity.io·8mo ago

Software Supply Chain Attacks: Exploiting Trust Assumptions in Modern Development

The article examines the growing threat of software supply chain attacks that exploit fundamental trust assumptions in modern development wo

blog.trailofbits.com·7mo ago