
Shai Hulud Returns, How Attackers are Using AI, and More Weird MSRC Behavior
From Decipher Security Podcast by Decipher
June 5, 2026 · 37 min
About this episode
The episode discusses recent npm supply chain attacks involving the Shai Hulud worm, AI usage by attackers, and Microsoft's interactions with security researchers.
We regret to inform you that there are more npm supply chain attacks this week, and a new variant of the Shai Hulud worm is involved. We also talk about the new analysis from Anthropic on a year of data relating to how attackers are using AI in their operations, and the continuing adventures of Microsoft's relationship with security researchers.
People in this episode
Host: Decipher
Topics covered
- npm supply chain attacks
- AI in cybersecurity
- Microsoft security researchers
- Shai Hulud worm
- attackers using AI
Keywords
- npm
- supply chain
- AI
- Shai Hulud
- Microsoft
- security researchers
- cybersecurity
- attacks
Mentioned in this episode
Organizations: Anthropic, Microsoft
Products: Shai Hulud worm
More episodes of Decipher Security Podcast
- The Shrinking Exploit Window, Patch Schedule Changes, and the Vulnpocalypse · June 12, 2026 · 33 min
- How The Conversation Predicted Our Surveillance Society 50 Years Ago · June 8, 2026 · 59 min
- Microsoft Has Forgotten Its Vulnerability Disclosure History · May 29, 2026 · 46 min
- Lessons in Resilience, Perseverance, and Leadership With Matt Eversmann · May 25, 2026 · 1h 18m
- Chain Chain Chain of Compromises · May 22, 2026 · 22 min
- What the Data Tells Us About Claude Mythos and Bug Exploitability | Jay Jacobs and Michael Roytman · May 19, 2026 · 44 min
Explore listener stats, chart rankings, contacts and more on the Decipher Security Podcast podcast page.