Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack

doode Blog

RSS 𝕏 f ▶

No current banned IPs (last update: 2026-06-26 13:32) <a href="/attacks/">Full report</a>

doode Blog

Home / Tech / Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack

Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack

June 26, 2026 dirk 0 Comments 3 tags

Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack

Cybersecurity researchers have flagged yet another evolution of the supply chain attack linked to the Mini Shai-Hulud, Miasma, and Hades malware family that has compromised a new set of npm packages, even as it has propagated to the Go ecosystem.

“The latest activity includes malicious npm releases affecting LeoPlatform and RStreams packages, GitHub Actions workflow abuse, and a related Go

Source: The Hacker News

Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack

Leave a Reply Cancel reply

Explore More

The Jqwik Anti-AI Affair

ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories

In praise of memcached