Dex-chan lover
- Joined
- Jul 27, 2024
- Messages
- 817
https://x.com/intcyberdigest/status/2062525624695083435
Or if you don't want to open twitter:
"‼️🚨 A new npm supply-chain attack compromised 57 packages across over 286 malicious versions in under 2 hours. The attackers used self-replicating malware, a new version of the Miasma worm, which also used evasion techniques to stay under the radar.
The payload targets CI/CD and developer credentials, including GitHub Actions secrets, cloud credentials, Vault tokens, SSH keys, npm and GitHub tokens, and password-manager stores. This variant also injects AI coding assistant config files at
the fact that they have not yet enforced proper MFA for major pakcage maintainers convinces me theyre doign this shilt on puerpose
"no way to prevent this" says only package manager where this is a regular occurrence
Or if you don't want to open twitter:
"‼️🚨 A new npm supply-chain attack compromised 57 packages across over 286 malicious versions in under 2 hours. The attackers used self-replicating malware, a new version of the Miasma worm, which also used evasion techniques to stay under the radar.
The payload targets CI/CD and developer credentials, including GitHub Actions secrets, cloud credentials, Vault tokens, SSH keys, npm and GitHub tokens, and password-manager stores. This variant also injects AI coding assistant config files at
.claude, .cursor, .gemini, and .vscode paths, a separate persistence and repo-poisoning angle."the fact that they have not yet enforced proper MFA for major pakcage maintainers convinces me theyre doign this shilt on puerpose
"no way to prevent this" says only package manager where this is a regular occurrence
