[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fCYO7dSbZKKlRV4HtiHPExRCOe162tOFWfz0JgOAWGEI":3},{"article":4,"iocs":43},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":11,"published_at":13,"ingested_at":14,"relevance_score":15,"entities":16,"category_id":23,"category":24,"article_tags":27},"71cc1e80-e8ea-43da-ab4d-74d84b4687a2","‼️ Mini Shai-Hulud Malware Reaches Packagist Through Compromised Intercom PHP Package, Mirroring...","mini-shai-hulud-malware-reaches-packagist-through-compromised-intercom-php-packa-c4e875","‼️ Mini Shai-Hulud Malware Reaches Packagist Through Compromised Intercom PHP Package, Mirroring Earlier npm Attack 👇 https:\u002F\u002Ft.co\u002FZbuOHApjtu","The Mini Shai-Hulud malware has been injected into a compromised Intercom PHP package hosted on Packagist, the primary package repository for PHP. This attack mirrors an earlier npm-based supply chain compromise, demonstrating attackers' continued focus on poisoning package managers to reach developers at scale.","Mini Shai-Hulud malware distributed via compromised Intercom PHP package on Packagist.",null,"https:\u002F\u002Fx.com\u002FDarkWebInformer\u002Fstatus\u002F2049975097012658485","2026-04-30T22:12:04+00:00","2026-04-30T23:00:12.274096+00:00",8,[17,20],{"name":18,"type":19},"Intercom PHP Package","product",{"name":21,"type":22},"Packagist","technology","26b0b636-0e31-4db1-bffb-61bdf9f20a58",{"id":23,"icon":11,"name":25,"slug":26},"Supply Chain","supply-chain",[28,33,38],{"category":29},{"id":30,"icon":11,"name":31,"slug":32},"89f78b1c-3503-45a1-9fc7-e23d2ce1c6d5","Malware","malware",{"category":34},{"id":35,"icon":11,"name":36,"slug":37},"ade75414-7914-4e23-a450-48b64546ee70","Open Source","open-source",{"category":39},{"id":40,"icon":11,"name":41,"slug":42},"e7b231c8-5f79-4465-8d38-1ef13aea5a14","Threat Intelligence","threat-intelligence",[44],{"type":32,"value":45,"context":46},"Mini Shai-Hulud","Malware distributed through compromised PHP package on Packagist"]