Time: 10:00 AM
Room: OEC C
Shai-Hulud: What Happened and How Developers Can Protect Themselves
JavaScript supply-chain attacks have been escalating since the early days, from the ESLint compromise in 2018 that stole npm tokens, to the sophisticated event-stream backdoor targeting Bitcoin wallets later that year. Shai-Hulud happened last year, marking a new era of self-propagating worms in the npm ecosystem. This talk will examine what happened in the Shai-Hulud attack and provide practical, actionable steps developers can take to protect workstations from being compromised by malicious packages.
Dale Rodriguez
Senior Solutions Engineer
Chainguard
Dale Rodriguez is an experienced Solutions Engineer at Chainguard and cybersecurity evangelist with a track record of helping his clients eliminate open source security risks and meet compliance standards. Beyond his technical expertise, he passionately advocates for cybersecurity education, adeptly guiding both security and IT professionals through best practices and the latest trends in the field.