Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.
Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...
SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results