#miasmaworm — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #miasmaworm, aggregated by home.social.
-
Miasma Mini Shai-Hulud Hits LeoPlatform npm Packages and GitHub Actions, Expands to the Go Ecosystem
#MiasmaWorm
https://socket.dev/blog/miasma-mini-shai-hulud-hits-leoplatform-npm-packages-go-ecosystem -
Miasma Mini Shai-Hulud Hits LeoPlatform npm Packages and GitHub Actions, Expands to the Go Ecosystem
#MiasmaWorm
https://socket.dev/blog/miasma-mini-shai-hulud-hits-leoplatform-npm-packages-go-ecosystem -
Miasma Worm Spreads as Open-Source Toolkit Compromises GitHub Repos
A newly discovered open-source toolkit, known as Miasma Worm, is wreaking havoc on GitHub repositories, allowing attackers to execute a range of malicious activities via stolen credentials. This powerful supply chain attack toolkit can compromise multiple platforms, including PyPI, npm, and RubyGems, and even spread through AI…
#OpenSourceSecurity #SupplyChain #Github #MiasmaWorm #PackageManagement
-
Miasma Worm Exposes GitHub Repositories in Supply Chain Attack
A sneaky Miasma worm has infiltrated 73 Microsoft GitHub repositories, putting countless projects at risk in a self-replicating supply chain attack. This malicious campaign is a stark reminder of the rapidly evolving threats lurking in the shadows of our digital supply chains.
-
Miasma Worm Targets Microsoft GitHub Repositories in Supply Chain Attack
GitHub has taken swift action, disabling access to 73 Microsoft repositories across four organizations after a sneaky supply chain attack by the Miasma Worm compromised code on the platform. The disruption was triggered when the malware targeted Microsoft's GitHub repositories, prompting site-wide warnings and restricted access.
-
Miasma npm Supply Chain Attack: Self-Spreading Worm via Phantom Gyp
#MiasmaWorm
https://www.stepsecurity.io/blog/binding-gyp-npm-supply-chain-attack-spreads-like-worm -
Miasma npm Supply Chain Attack: Self-Spreading Worm via Phantom Gyp
#MiasmaWorm
https://www.stepsecurity.io/blog/binding-gyp-npm-supply-chain-attack-spreads-like-worm