Home / Security updates / Shai-Hulud 2.0 Supply Chain Attack – no impact to EQS
Shai-Hulud 2.0 Supply Chain Attack – no impact to EQS
Security updates detail rendered from /security-updates/upd_e5f3a8044a85fd1d.
Overview
| ID | upd_e5f3a8044a85fd1d |
| Collection | Security Updates |
| Provider | SafeBase |
| Company | EQS Group |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | upd_e5f3a8044a85fd1d |
| providerId | safebase |
| organizationId | org_9909d4d119a6071e |
| trustCenterId | tc_4648669745149f34 |
| title | Shai-Hulud 2.0 Supply Chain Attack – no impact to EQS |
| message | Popular projects from Zapier, ENS Domains, PostHog, and Postman were temporarily "trojanized" by threat actors, leading to GitHub repos populated with stolen victim data. Some of these packages are highly prevalent with several developers. Newly compromised packages continue to surface. The number of identified compromised packages is steadily growing, currently at circa 700. The blast radius is already massive – 25,000+ malicious repos across circa 500 GitHub users. For more technical information, kindly see this post from Wiz: https://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attack ## What has EQS done? First, EQS does not use GitHub directly. EQS hosts its source code on private, internal repositories. Packages borrowed from public repositories are tightly scanned with multiple tools and vetted before inclusion and use. To identify this potential threat, EQS has built a dedicated scanner which tries to identify known compromised packages and inspect dependencies agai |
| url | - |
| publishedAt | 2025-11-26 |
| source | {
"field": "statuspage/public/compliance-update",
"category": "vulnerabilities"
} |
| company | {
"id": "org_9909d4d119a6071e",
"name": "EQS Group",
"domains": [
"trust.eqs.com",
"eqs.com"
]
} |
| trust_center | {
"id": "tc_4648669745149f34",
"name": "EQS Group",
"url": "https://trust.eqs.com",
"host": "trust.eqs.com"
} |
| provider | {
"id": "safebase",
"name": "SafeBase"
} |
| links | {
"self": "/v1/security-updates/upd_e5f3a8044a85fd1d",
"company": "/v1/companies/org_9909d4d119a6071e",
"trust_center": "/v1/trust-centers/tc_4648669745149f34",
"provider": "/v1/providers/safebase"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_e5f3a8044a85fd1dJSON