Dozens of Red Hat packages backdoored through its official NPM channel

Official Red Hat NPM accounts have been compromised and used to push a malicious worm that spreads from machine to machine, ...
The Hacker News

Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm

Compromised npm packages targeted Red Hat cloud services, enabling credential theft and expanding supply chain risks.

Red Hat confirms compromise of npm packages after employee account breach

The malicious npm packages are looking to steal credentials and propagate further.

Red Hat hit by npm supply‑chain attack - here's how to stay safe

Red Hat hit by npm supply‑chain attack - here's how to stay safe ...
Tech Times

Red Hat npm Packages Compromised, 57 More Follow: Signed Attestations Cannot Block Pipeline Hijack

Miasma compromised 32 Red Hat packages June 1 via a hijacked CI/CD pipeline producing valid SLSA attestations, then hit 57 more June 3 using Phantom Gyp to evade install monitors. Red Hat confirmed no ...
InfoWorld

Infected Red Hat npm packages expose developer credentials

Researchers have uncovered a new Shai-Hulud malware variant targeting Red Hat-related npm packages, spreading through ...

Shai-Hulud malware worms Red Hat npm package versions downloaded 80K times a week

The new supply chain attack hit at least 32 npm package releases published under the Red Hat Cloud Services namespace, ...
Forbes

Red Hat Infuses Lightspeed Generative AI Across Cloud Platform And Tools

Red Hat changed. The company that we thought of back in the 1990s was thought of as an open source operating system and software development tools purist, with a hard-core geek following that had a ...