supply chain attack Archives - The Coolest Info

Miasma Worm Hit 73 Microsoft Repos on GitHub — And It Took Just 105 Seconds to Contain

June 9, 2026June 9, 20260

Microsoft removed 73 GitHub repositories after the Miasma supply-chain worm compromised them to distribute password-stealing malware. All repos are restored, but the worm’s targeting of AI coding tools signals a new phase in supply-chain attacks.

IronWorm Malware Turns npm Packages Into Self-Spreading Infection Machines

June 7, 2026June 7, 20260

A new malware called IronWorm is spreading through npm by poisoning legitimate packages with a Rust-based stealer that uses stolen credentials to self-replicate. It deploys an eBPF rootkit and targets AI development credentials, making it one of the more sophisticated supply chain attacks in recent memory.