Red Hat npm packages compromised to steal developer credentials
Summary
A supply-chain attack compromised over 30 npm packages within Red Hat's '@redhat-cloud-services' namespace. The attackers distributed a new variant of the Shai-Hulud malware, named "Miasma," designed to steal developer credentials.
IFF Assessment
FOE
This incident represents a supply-chain attack that could lead to the compromise of developer credentials, which is detrimental to defenders.
Defender Context
This attack highlights the persistent threat of supply-chain compromises targeting developer tools and infrastructure. Defenders should be vigilant about the integrity of their software dependencies and monitor for unusual activity within their development environments. It underscores the importance of robust dependency scanning and secure coding practices.