{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreiff3edbq6hrvqnont64hrrhuiz6hafmafi2xeslpntmvvxou6nwbu",
    "uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mp73hnrad2e2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreifmtvuqnc5zl5hfpvwhfedjiqxdhg5gldv56ljmoknsfwd5d4xfj4"
    },
    "mimeType": "image/jpeg",
    "size": 332244
  },
  "path": "/2026/06/miasma-malware-targets-npm-packages-and.html",
  "publishedAt": "2026-06-26T11:05:45.000Z",
  "site": "https://thehackernews.com",
  "textContent": "Cybersecurity researchers have flagged yet another evolution of the supply chain attack linked to the Mini Shai-Hulud, Miasma, and Hades malware family that has compromised a new set of npm packages, even as it has propagated to the Go ecosystem.\n\n\"The latest activity includes malicious npm releases affecting LeoPlatform and RStreams packages, GitHub Actions workflow abuse, and a related Go",
  "title": "Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack"
}