Fuite du code source de Miasma, framework de vol de credentials ciblant la supply chain open-source
đ Contexte Source : BleepingComputer, publiĂ© le 10 juin 2026. Lâarticle sâappuie sur un rapport de SafeDep concernant la fuite du code source du framework Miasma sur GitHub.
đŠ Description du malware Miasma est un framework de vol de credentials Ă©voluant Ă partir du ver Shai-Hulud, dont le code avait Ă©galement Ă©tĂ© prĂ©cĂ©demment leakĂ© sur GitHub. Il partage avec son prĂ©dĂ©cesseur de nombreuses fonctionnalitĂ©s, techniques et portions de code.
Le malware opĂšre selon un cycle autonome de propagation de type ver :
Le toolkit
#miasma siphonne les dépÎts
#github. Les "bibliothÚques et autres dépÎts de code en ligne constituent une cible de choix pour les cyberattaquants. Logique donc de voir ces (...)
https://www.lemondeinformatique.fr/actualites/lire-le-toolkit-miasma-siphonne-les-depots-github-100418.html
Le toolkit Miasma siphonne les dépÎts GitHub - Le Monde Informatique
Evolution du ver Shai-Hulud utilisé dans des attaques supply chain logicielle, Miasma est devenu une arme redoutable pour siphonner les dépÎts de...
The âMiasmaâ worm source code briefly leaked on GitHub
The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain attacks, was briefly open-sourced on GitHub.
This Week In Security: Microsoft On Microsoft, Register Your Domains, Linux On ARM, And FreeBSD Joins The File Cache Club
Supply chain attacks continue, with Microsoftâs own open source Azure repositories being automatically disabled by GitHub following a compromise of the packages by the Miasma worm. OpenSourceâŠ
Miasma Worm Hits Microsoft GitHub Supply Chain Repos
The self-replicating Miasma supply chain attack has impacted Microsoft repositories on GitHub â according to researchers, 73 repositories in four
More than 30 Red Hat npm packages were backdoored in a supply-chain attack deploying Miasma malware to steal developer credentials, cloud secrets, SSH keys, and CI/CD tokens. đ
Researchers say the attack used a compromised GitHub account and npm publishing flows, underscoring risks in open-source supply chains. đŠ
đ https://www.bleepingcomputer.com/news/security/red-hat-npm-packages-compromised-to-steal-developer-credentials/
#TechNews #RedHat #npm #GitHub #Miasma #ShaiHulud #SupplyChain #OpenSource #Cybersecurity #Infosec #Security #DevOps #Linux #Malware #Developers
Red Hat npm packages compromised to steal developer credentials
More than 30 npm packages under Red Hat's '@redhat-cloud-services' namespace were compromised in a supply-chain attack that distributed a new variant of the Shai-Hulud credential-stealing malware, dubbed "Miasma."
Des outils
#Microsoft piratĂ©s pour voler des identifiants dâoutils
#IA comme
#Claude Code. Microsoft a dĂ» bloquer lâaccĂšs aux dĂ©pĂŽts
#GitHub de plus de 70 de ses propres projets. Certains dâentre eux ont Ă©tĂ© piratĂ©s au cours dâune campagne de vols dâidentifiants dâoutils dâIA gĂ©nĂ©rative nommĂ©e
#Miasma.
https://next.ink/241517/des-outils-microsoft-pirates-pour-voler-des-identifiants-doutils-ia-comme-claude-code/
Des outils Microsoft piratĂ©s pour voler des identifiants dâoutils IA comme Claude Code
Microsoft a dĂ» bloquer lâaccĂšs aux dĂ©pĂŽts GitHub de plus de 70 de ses propres projets. Certains dâentre eux ont Ă©tĂ© piratĂ©s au cours dâune campagne deâŠ
đą Le ver Miasma ravage la supply chain open-source : de Red Hat Ă 73 dĂ©pĂŽts Microsoft GitHub
đ ## đïž Contexte
Article publié le 8 juin 2026 par Nigel Douglas (Cloudsmith), analysant la campagne du ver **Miasma** qui a frappé l'éc...
đ cyberveille : https://cyberveille.ch/posts/2026-06-09-le-ver-miasma-ravage-la-supply-chain-open-source-de-red-hat-a-73-depots-microsoft-github/
đ source : https://cloudsmith.com/blog/miasma-worms-path-of-destruction
#GitHub #Miasma #Cyberveille
3/3
The Word macro era only ended when Office blocked execution by default.
The question now is how many developer machines get hollowed out before the modern IDE imposes the same friction.
https://haunted.lighthouse.co.im/articles/you-opened-it/
#SupplyChainSecurity #GitHub #OpenSource #Miasma
You Opened It
On 5 June 2026, GitHub disabled 73 Microsoft repositories in 105 seconds. What Miasma required of its victims was simpler than any previous supply chain attack: they opened a repository in their IDE.
CyberVeille.ch
Teddy / Domingo (đšđ”/đŹđ§)
The New Oil
13
CyberSecureFox 
knoppix