Microsoft UpdateALERT Medium

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

A large-scale npm supply chain attack compromised over 90 versions of @redhat-cloud-services packages, silently infecting CI/CD environments and developer systems. The malicious code steals credentials from GitHub, cloud platforms, and local machines, then spr...

Impact

Review the update details and guidance.

Recommended Action

Read the blog post for update guidance and deployment notes.

Published: 6/3/2026, 4:45:06 AMSource: Microsoft Security BlogTags: Credential theft npm