Storia in 9 fonti

Supply Chain Attack Hits 32 Red Hat NPM Packages

Hackers published 96 malicious versions across 32 Red Hat NPM packages in a supply chain attack similar to Mini Shai-Hulud.

Raccontata da

Confronto fonti

6 prospettive sulla stessa storia

AI · summaries

securityweek.comStai leggendo7 h fa

Supply Chain Attack Hits 32 Red Hat NPM Packages

32 Red Hat NPM packages compromised in 72-second attack; malware steals GitHub/npm tokens, cloud credentials impacting ~10M downloads. Supply chain attack escalation; immediate credential rotation and dependency audits critical for all JavaScript-using teams.

originale

Timeline cronologica

lunedì 1 giugno 2026·dev.to
31 paquetes npm de Red Hat comprometidos roban credenciales de nube
StepSecurity detectó 31 paquetes del scope @redhat-cloud-services en npm publicados con código malicioso que roba credenciales de nube. Qué pasó y cóm
lunedì 1 giugno 2026·ilsoftware.it
Attacco a Red Hat: malware nascosto nei pacchetti npm, a rischio credenziali cloud
Pacchetti Red Hat Cloud Services compromessi su npm: furto di segreti CI/CD, token cloud, worm e mitigazioni.

Supply Chain Attack Hits 32 Red Hat NPM Packages

Confronto fonti

Supply Chain Attack Hits 32 Red Hat NPM Packages

Timeline cronologica

31 paquetes npm de Red Hat comprometidos roban credenciales de nube

Attacco a Red Hat: malware nascosto nei pacchetti npm, a rischio credenziali cloud

Dozens of Red Hat packages backdoored through its offical NPM channel

Infected Red Hat npm packages expose developer credentials

Red Hat npm packages compromised to steal developer credentials

Shai-Hulud malware worms Red Hat npm package versions downloaded 80K times a week

Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm

Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm

Dozens of Red Hat packages backdoored through its official NPM channel

Dozens of Red Hat packages backdoored through its offical NPM channel

Red Hat npm packages compromised to steal developer credentials

Shai-Hulud malware worms Red Hat npm package versions downloaded 80K times a week

Infected Red Hat npm packages expose developer credentials

Supply Chain Attack Hits 32 Red Hat NPM Packages

Red-Hat-Infostealer kommt auf mehr als 100.000 Downloads