DevThe Next Webabout 10 hours ago

Self-replicating Miasma worm hits 73 Microsoft GitHub repositories in supply chain attack

1 min read

Miasma worm infected 73 Microsoft GitHub repos, including Azure and MicrosoftDocs. The worm plants payloads that trigger in AI coding tools like Claude Code and Cursor. GitHub disabled the repos after finding malicious code harvesting developer credentials. The attack exploits previously compromised credentials, allowing the worm to spread autonomously across repositories. The payload detonates when a developer clones an affected repo and opens it in an AI coding agent.

Level

Hype check

Tap to vote and see what everyone thinks.

#cybersecurity #supplychain #malware

Read full story

More to chew on!

Cloudabout 16 hours ago

IronWorm and Miasma Infect 36 and 73 Supply-Chain Packages

AIabout 11 hours ago

New IronWorm Malware Hits 36 Packages In npm Supply-Chain Attack

AIabout 5 hours ago