AsyncAPI Supply Chain Attack Delivers Miasma RAT via NPM
A supply chain attack on AsyncAPI has resulted in malicious npm packages delivering Miasma RAT. This incident reveals critical vulnerabilities.
A sophisticated supply chain attack has targeted the AsyncAPI open-source project, leading to the release of malicious npm packages. Attackers exploited the CI/CD workflow to publish compromised versions, highlighting significant security vulnerabilities in automated software supply chains.