A supply chain attack hit Red Hat’s NPM repository, where malicious versions of 32 packages were published in 72 seconds to spread a credential-stealing worm. The malware, linked to the Mini Shai-Hulud variant, targeted developer secrets and GitHub data, prompting Red Hat to release clean versions and urge immediate credential rotation. #RedHat #MiniShaiHulud #TeamPCP #GitHubActions #NPM
Keypoints
- Hackers published malicious versions of 32 Red Hat NPM packages.
- The poisoned releases were pushed in a 72-second window.
- The attack affected the Red Hat Hybrid Cloud Console JavaScript ecosystem.
- The payload was a Mini Shai-Hulud worm variant named “Miasma: The Spreading Blight.”
- Red Hat removed the malicious packages and released clean versions.
Read More: https://www.securityweek.com/supply-chain-attack-hits-32-red-hat-npm-packages/