MalwareBleeping Computer
9.0 — CRITICAL
Red Hat npm packages compromised to steal developer credentials
More than 30 npm packages under Red Hat's '@redhat-cloud-services' namespace were compromised in a supply-chain attack that distributed a new variant of the Shai-Hulud credential-stealing malware, dubbed "Miasma." [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
More than 30 npm packages under Red Hat's '@redhat-cloud-services' namespace were compromised in a supply-chain attack, distributing the Shai-Hulud credential-stealing malware variant 'Miasma', which stole developer credentials and sensitive information.
⚙️Technical Details
Affected Systems
npm packages under @redhat-cloud-services namespace
Attack Vectors
Compromised GitHub accountGitHub Actions workflownpm's publishing mechanism
💥Impact Assessment
Severity: critical
Who Is at Risk
Organizations that installed affected versions of npm packages, including developers and organizations using Red Hat Cloud Services.
🛡️Recommended Actions
1Rotate all credentials, secrets, and tokens utilized by code on the infected device immediately
2Monitor for suspicious activity and update dependencies to the latest versions
3Implement additional security controls to prevent similar attacks in the future
📦Affected Products
npm packages under @redhat-cloud-services namespace
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.