Data Visualization | Breaking Cybersecurity News | The Hacker News

Category — Data Visualization

👁 Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

May 19, 2026 Supply Chain Attack / Malware

Cybersecurity researchers have discovered a fresh software supply chain attack campaign that has compromised various npm packages associated with the @antv ecosystem as part of the ongoing Mini Shai-Hulud attack wave. "The attack affects packages tied to the npm maintainer account atool, including echarts-for-react, a widely used React wrapper for Apache ECharts with roughly 1.1 million weekly downloads," Socket said . The list of affected packages include @antv packages such as @antv/g2, @antv/g6, @antv/x6, @antv/l7, @antv/s2, @antv/f2, @antv/g, @antv/g2plot, @antv/graphin, and @antv/data-set, as well as related packages outside the @antv namespace, including echarts-for-react, timeago.js, size-sensor, canvas-nest.js, and others. The application security company said the tradecraft matches Mini Shai-Hulud, where a compromised maintainer account is leveraged to push out trojanized versions in quick succession. The development comes as the supply chain attack campaign...

👁 Taking the Pain Out of Cybersecurity Reporting: A Practical Guide for MSPs

Taking the Pain Out of Cybersecurity Reporting: A Practical Guide for MSPs

Jan 10, 2025 vCISO / Compliance

Cybersecurity reporting is a critical yet often overlooked opportunity for service providers managing cybersecurity for their clients, and specifically for virtual Chief Information Security Officers (vCISOs). While reporting is seen as a requirement for tracking cybersecurity progress, it often becomes bogged down with technical jargon, complex data, and disconnected spreadsheets that fail to resonate with decision-makers. The result? Clients who struggle to understand the value of your work and remain uncertain about their security posture. But what if reporting could be transformed into a strategic tool for aligning cybersecurity with business goals? What if your reports empowered clients, built trust, and showcased cybersecurity as a driver of business success? That’s exactly the focus of Cynomi’s new guide— “ Taking the Pain Out of Cybersecurity Reporting: The Guide to Mastering vCISO Reports .” This resource helps vCISOs reimagine reporting as an opportunity to create value,...

⚡ Top Stories This Week

👁 Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability

Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability

👁 New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

👁 Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access

Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access

👁 Google Sets Sept. 30 Deadline for Android Developer Verification in Four Countries

Google Sets Sept. 30 Deadline for Android Developer Verification in Four Countries

👁 Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

👁 FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation

FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation

👁 Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 Agents

Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 Agents

👁 WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool

WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool

👁 29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests

29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests

👁 ⚡ Weekly Recap: Browser Bugs, EDR Killers, TV Botnet, OpenBSD Flaw, Android Trojan, and More

⚡ Weekly Recap: Browser Bugs, EDR Killers, TV Botnet, OpenBSD Flaw, Android Trojan, and More

👁 Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

👁 The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes

The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes

👁 AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution

👁 CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices

CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices

👁 F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution

F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution

👁 Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data

Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data

⭐ Featured Resources

URL: https://thehackernews.com/search/label/Data Visualization

⇱ Data Visualization — Latest News, Reports & Analysis | The Hacker News

Data Visualization | Breaking Cybersecurity News | The Hacker News

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

Taking the Pain Out of Cybersecurity Reporting: A Practical Guide for MSPs

Building a Security Strategy for AI-Powered Ransomware Attacks

Identity Security in 2026: The Brutal Truth Enterprises Still Avoid

Beyond Blocking: Disrupting the Social Engineering Attack Chain

Why Runtime Scanning Is Too Late for Your CI/CD Supply Chain Security