Perceptive Security
SOC/SIEM Consultancy
Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm
Published:
1 June 2026 at 17:40:28
Alert date:
1 June 2026 at 19:03:21
Source:
thehackernews.com
Supply Chain & Dependencies, Ransomware & Malware, Data Breach & Exfiltration
A new supply chain attack campaign called Miasma has compromised @redhat-cloud-services npm packages. The attack is described as a Mini Shai-Hulud campaign that uses install-time execution tactics to steal credentials and secrets from developer machines. The malware also delivers a self-propagating worm component. The campaign targets CI/CD environments and uses encrypted exfiltration methods. This represents a significant threat to the npm ecosystem and Red Hat cloud services users.
Technical details
A new Mini Shai-Hulud supply chain attack campaign codenamed Miasma compromised @redhat-cloud-services npm packages using obfuscated preinstall hooks. The malware collects GitHub Actions secrets, npm tokens, cloud credentials, Kubernetes and Vault material, SSH keys, Git credentials, and other sensitive files. It uses encrypted exfiltration to api.anthropic[.]com:443/v1/api with GitHub as fallback. The malware avoids execution on Russian-language systems, generates uniquely encrypted payloads for each infection, and includes privilege escalation, endpoint protection checks, and persistence mechanisms through SessionStart hooks and Visual Studio Code tasks.json injection. It targets cloud identities specifically for GCP and Azure, and can weaponize stolen credentials to further poison the software supply chain.
Mitigation steps:
Isolate hosts that have installed the affected versions
Remove the malicious versions
Rotate exposed credentials
Review for any signs of suspicious GitHub or npm activity
Audit the environment for persistence artifacts involving changes to configuration files (~/.claude/settings.json, .vscode/tasks.json, .github/workflows/codeql.yml, .github/setup.js)
Enforce strong access controls
For CI/CD systems: suspend affected workflow runs
Invalidate build artifacts produced during the exposure window
Review whether any release, container image, npm package, or deployment artifact was created after the malicious package was installed
Note that uninstalling the npm package or deleting node_modules should not be considered sufficient cleanup due to background execution and persistence mechanisms
Affected products:
@redhat-cloud-services/vulnerabilities-client
@redhat-cloud-services/tsc-transform-imports
@redhat-cloud-services/topological-inventory-client
@redhat-cloud-services/sources-client
@redhat-cloud-services/rule-components
@redhat-cloud-services/remediations-client
@redhat-cloud-services/rbac-client
Anthropic Claude Code
Microsoft Visual Studio Code
Related links:
https://thehackernews.com/2026/05/mini-shai-hulud-pushes-malicious-antv.html
https://socket.dev/blog/mini-shai-hulud-campaign-hits-red-hat-cloud-services-npm-packages
https://www.aikido.dev/blog/red-hat-npm-packages-compromised-credential-stealing-worm
https://research.jfrog.com/post/shai-hulud-miasma-redhat-cloud-services/
https://x.com/MsftSecIntel/status/2061485730958848188
https://www.ox.security/blog/new-npm-supply-chain-attack-redhat-cloud-services-compromised
https://safedep.io/redhat-cloud-services-hit-by-mini-shai-hulud-npm-worm/
https://www.stepsecurity.io/blog/multiple-redhat-cloud-services-npm-packages-compromised
https://www.wiz.io/blog/miasma-supply-chain-attack-targeting-redhat-npm-packages
https://thehackernews.com/2026/05/glassworm-malware-takedown-disrupts.html
Related CVE's:
Related threat actors:
IOC's:
api.anthropic[.]com:443/v1/api, GitHub repositories with description: Miasma: The Spreading Blight, Commit message: IfYouInvalidateThisTokenItWillNukeTheComputerOfTheOwner:<token>, package-updated.tgz, ~/.claude/settings.json, .vscode/tasks.json, .github/workflows/codeql.yml, .github/setup.js
This article was created with the assistance of AI technology by Perceptive.