TeamPCP 'Mini Shai-Hulud' Supply Chain Worm Chains TanStack npm Compromise → Poisoned Nx Console VSCode Extension → 3,800 GitHub Internal Repos Exfiltrated

The TeamPCP threat group's self-replicating 'Mini Shai-Hulud' worm, which began with GitHub Actions cache poisoning against 42 TanStack npm packages on May 11, propagated via stolen CI/CD credentials to compromise the Nx Console VS Code extension (2.2M installs) — a malicious version (18.95.0) was live on the Visual Studio Marketplace for only 18 minutes but harvested 1Password vaults, AWS credentials, npm tokens, and GitHub CLI secrets from developer machines, ultimately enabling exfiltration of ~3,800 GitHub internal repositories. Confirmed collateral victims include OpenAI, Mistral AI, Grafana Labs, and UiPath. The payload included a destructive persistence daemon that wiped a user's home directory upon token revocation — defenders should treat any install of Nx Console 18.95.0 on May 18 as a full host compromise and rotate all reachable credentials immediately.

Confirmed collateral victims include OpenAI, Mistral AI, Grafana Labs, and UiPath.

This intelligence brief has been compiled from open-source reporting and corroborated across multiple threat intelligence sources. Defenders should treat the critical severity rating as a guide to prioritization within their environment.

For the latest indicators of compromise, formatted SIEM queries, and unredacted actor intelligence related to this brief, DMZ Operator subscribers receive automated IOC packages via email the moment new advisories are published.