SlowMist Issues npm Supply Chain Attack Alert: 23 Packages Affected, Credentials from 408 GitHub Repositories Stolen

CoinFeed June 25 news, the SlowMist security team issued an alert stating that a new variant of Shai-Hulud/Miasma/Hades npm malware is affecting the npm ecosystem, and this variant is linked to the compromised npm developer account czirker. The attack uses a pre-configured binding.gyp file to execute malicious code during npm install. Currently, 23 affected packages have been confirmed, among which leo-logger has a weekly download count of 3,140. As of the alert release, 408 affected GitHub repositories containing stolen credentials have been detected.