Miasma Worm Targets AI Coding Agents via GitHub Repos
A Miasma worm variant injects a 4.3 MB dropper into GitHub repos across multiple maintainers, wiring it to auto-run through Claude Code, Gemini, Cursor, and VS Code config files. No npm package is…
Read the full articleYou might also wanna read
Miasma supply-chain attack targets AI coding assistants, forcing GitHub to disable 73 repositories
GitHub disabled 73 repositories across four Microsoft organizations on June 5 after the self-replicating supply-chain campaign known as Mias
GitHub Disables 73 Microsoft Repositories After Miasma Worm Attack
On June 5, GitHub disabled 73 Microsoft-owned repositories after Miasma infiltrated projects across Azure, Azure-Samples, Microsoft, and Mic
Miasma worm targets Microsoft, compromises 73 GitHub repositories
Miasma worm hits 73 Microsoft GitHub repositories and directly targets StepSecurity’s Harden-Runner to evade security controls.
GitHub disables 73 Microsoft repositories after detecting Miasma worm supply chain attack
Miasma worm shapeshifts, but cloud secret-scouting remains the goal

Miasma supply chain attack: malicious code found in @redhat-cloud-services npm packages
A supply chain worm dubbed Miasma has been found in dozens of @redhat-cloud-services npm releases. The malicious preinstall hook steals cred
Malicious 'Miasma' Framework Compromises 32 Red Hat npm Packages in Supply Chain Attack
TeamPCP released Mini Shai-Hulud malware source code on GitHub, enabling rapid creation of variants targeting developer workstations and CI/

Comments
Sign in to join the conversation.
No comments yet. Be the first.