Dossier
Leo Platform
Coverage of Leo Platform in the Nexus archive.
- Miasma campaign poisons 20-plus npm packages, hunts for developer secrets
The Miasma malware campaign has poisoned over 20 npm packages in the Leo Platform and RStreams ecosystems, targeting developer credentials and CI environments. The attack, executed in under three seconds by compromising an npm maintainer account, steals secrets from cloud providers, GitHub, and other platforms, and republishes packages to propagate further.