Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm



June 1, 2026 at 11:10PM

A new Mini Shai-Hulud supply chain attack campaign, codenamed Miasma, has compromised @redhat-cloud-services packages to steal credentials and secrets from developer machines and deliver a self-propagating worm. "This is effectively a Mini Shai-Hulud campaign: it uses the same core tactics of install-time execution, credential harvesting, CI/CD targeting, encrypted exfiltration, and potential

from The Hacker News https://ift.tt/nEPhfWA

Genrerating Link.... 15 seconds.

Your Link is Ready.

Share this post