TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm

By rooter

A new Mini Shai-Hulud supply chain attack campaign, codenamed Miasma, has compromised @redhat-cloud-services packages to steal credentials and secrets from developer machines and deliver a self-propagating worm.

“This is effectively a Mini Shai-Hulud campaign: it uses the same core tactics of install-time execution, credential harvesting, CI/CD targeting, encrypted exfiltration, and potential

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts

rooter
Cyber Security

Patch Now: Another Palo Alto Auth Bypass Bug Under Active Exploit

rooter
Cyber Security

âš¡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and More

rooter

Leave a Reply

You Missed

News

The Success of ‘Backrooms’ and ‘Obsession’ Might Be a Historic Moment in Film History

News

Zombie Chunks of Sea Cucumber Refuse to Die, Raising Questions About What It Means to Live Forever

News

PewDiePie Is Here to Offer You Privacy Assurances in the Age of AI

News

Summon the Witch: ‘Hokum’ Comes Home Tomorrow