Skip to content
The Nexus
SECURITYJun 26 · 11:05 UTCTHE HACKER NEWS[email protected] (The Hacker News)

Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack

Miasma malware, part of the Mini Shai-Hulud, Miasma, and Hades family, has compromised new npm packages like LeoPlatform and RStreams while expanding to the Go ecosystem. The attack also involves malicious GitHub Actions workflow abuse.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this
Related Signal

Adjacent reporting