Researchers find several packages in the @redhat-cloud-services npm namespace shipped malware targeting credentials for GitHub Actions, AWS, GCP, and others (Rohan Prabhu/Step Security Blog)
Researchers find several packages in the @redhat-cloud-services npm namespace shipped malware targeting credentials for GitHub Actions, AWS, GCP, and others — Several packages in the @redhat-cloud-services npm scope were found to carry malicious payloads that fire via a preinstall hook on every npm install.
from Techmeme https://ift.tt/Ei71Pyv
Researchers find several packages in the @redhat-cloud-services npm namespace shipped malware targeting credentials for GitHub Actions, AWS, GCP, and others (Rohan Prabhu/Step Security Blog)
![Researchers find several packages in the @redhat-cloud-services npm namespace shipped malware targeting credentials for GitHub Actions, AWS, GCP, and others (Rohan Prabhu/Step Security Blog)]()
Reviewed by Contributer
on
June 01, 2026
Rating:
No comments: