Miasma source code leak on GitHub
Data Leak
Summary
Hide ▲
Show ▼
The Miasma source code was briefly leaked on GitHub, exposing malware framework code that could be copied, studied, and modified by other threat actors. The exposure reportedly passed through numerous compromised developer accounts, which makes the publication path more concerning than an accidental upload. The leak could speed follow-on abuse of open-source ecosystems by lowering the effort needed to adapt the framework.
Related Happenings
Miasma supply-chain malware activity
Malware Activity
H score34
First: 10.06.2026 23:27
Last: 10.06.2026 23:27
Sources 1
How related:
The malware infects a developer machine, steals the build environment and cloud credentials, and then uses those to compromise legitimate repositories and packages, publishing trojanized versions to infect downstream developers and repeat the cycle.
About this happening:
The **Miasma** malware activity is enabling **supply-chain compromise** by stealing **build environment** and **cloud credentials**, then using them to poison legitimate packages...
Miasma supply-chain malware activity
Malware ActivityHow related: The malware infects a developer machine, steals the build environment and cloud credentials, and then uses those to compromise legitimate repositories and packages, publishing trojanized versions to infect downstream developers and repeat the cycle.
About this happening: The **Miasma** malware activity is enabling **supply-chain compromise** by stealing **build environment** and **cloud credentials**, then using them to poison legitimate packages...
Red Hat npm Namespace Hijacked in Supply Chain hit by cyberattack
Incident
H score13
First: 01.06.2026 20:40
Last: 01.06.2026 20:40
Sources 1
About this happening:
**Red Hat's** official npm namespace was hijacked in a **supply chain attack** that republished **32 packages** in the **@redhat-cloud-services** scope on **June 1**; the maliciou...
Red Hat npm Namespace Hijacked in Supply Chain hit by cyberattack
IncidentAbout this happening: **Red Hat's** official npm namespace was hijacked in a **supply chain attack** that republished **32 packages** in the **@redhat-cloud-services** scope on **June 1**; the maliciou...
JINX-0164 cryptocurrency recruitment-lure campaign
Campaign
H score39
First: 28.05.2026 10:54
Last: 28.05.2026 10:54
Sources 1
About this happening:
A **JINX-0164** campaign is targeting **cryptocurrency firms** and developers with **LinkedIn recruiter lures**, a fake meeting-and-fix workflow, and **macOS malware** to steal cr...
JINX-0164 cryptocurrency recruitment-lure campaign
CampaignAbout this happening: A **JINX-0164** campaign is targeting **cryptocurrency firms** and developers with **LinkedIn recruiter lures**, a fake meeting-and-fix workflow, and **macOS malware** to steal cr...
Shai-Hulud public GitHub repository credential exposure
Data Leak
H score26
First: 18.05.2026 20:28
Last: 18.05.2026 20:28
Sources 1
About this happening:
**Shai-Hulud** stole **developer credentials** that were later exposed in **public GitHub repositories**, turning a theft phase into a public leak of access data. The exposed mate...
Shai-Hulud public GitHub repository credential exposure
Data LeakAbout this happening: **Shai-Hulud** stole **developer credentials** that were later exposed in **public GitHub repositories**, turning a theft phase into a public leak of access data. The exposed mate...
Mistral AI internal repositories and source code leak
Data Leak
H score26
First: 15.05.2026 01:50
Last: 15.05.2026 01:50
Sources 1
About this happening:
A **TeamPCP** forum post claims **Mistral AI** source code and internal repositories were stolen and are now being offered for sale, creating a risk of public release. The alleged...
Mistral AI internal repositories and source code leak
Data LeakAbout this happening: A **TeamPCP** forum post claims **Mistral AI** source code and internal repositories were stolen and are now being offered for sale, creating a risk of public release. The alleged...
Timeline
-
10.06.2026 23:27 2 articles · 22h ago
Miasma source code leaked on GitHub through compromised developer accounts
Initial DisclosureMiasma source code was leaked on GitHub through numerous compromised developer accounts, with the code posted in a repository named "Miasma-Open-Source-Release." The exposure made the malware framework publicly accessible and could help other threat actors reuse or modify it.
Show sources
- The ‘Miasma’ worm source code briefly leaked on GitHub — www.bleepingcomputer.com — 10.06.2026 23:27
- The ‘Miasma’ worm source code briefly leaked on GitHub — www.bleepingcomputer.com — 10.06.2026 23:27