Martin Cid Magazine

Malicious code hid inside Red Hat’s npm packages and spread to steal cloud keys

Security researchers found malicious code buried inside more than 30 of Red Hat's official software packages, built to harvest cloud and developer credentials.

Dozens of Red Hat packages backdoored through its official NPM channel

Official Red Hat NPM accounts have been compromised and used to push a malicious worm that spreads from machine to machine, ...

Scammers are using a fake captcha hack to steal your personal information: 'Verify you're ...

Hackers are using this insidious scam to get unwitting victims to install malware themselves.

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain ...
TechRepublic

Fake Claude Code Spreads Malware to Windows, macOS Users

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows and macOS systems. Threat actors are exploiting a common developer habit — ...

Red Hat hit by npm supply‑chain attack - here's how to stay safe

Days after IBM and Red Hat announced a master security plan for open-source software, Red Hat suffers a major breach of its ...

'Miasma' worm infests Red Hat npm packages

"We immediately initiated an investigation and removed the packages from the npm registry. "While our investigation is ongoing, we have not identified any impact to customer or pa ...