{"id":17820,"date":"2026-06-09T13:44:00","date_gmt":"2026-06-09T09:44:00","guid":{"rendered":"https:\/\/eternos974.live\/?p=17820"},"modified":"2026-06-09T06:48:45","modified_gmt":"2026-06-09T02:48:45","slug":"campagne-cyber-miasma-attaque-via-github-et-npm-pour-voler-les-secrets-des-developpeurs","status":"publish","type":"post","link":"https:\/\/eternos974.live\/index.php\/2026\/06\/09\/campagne-cyber-miasma-attaque-via-github-et-npm-pour-voler-les-secrets-des-developpeurs\/","title":{"rendered":"Campagne cyber Miasma : attaque via GitHub et npm pour voler les secrets des d\u00e9veloppeurs"},"content":{"rendered":"<p>Un malware nomm\u00e9 Miasma a r\u00e9cemment secou\u00e9 le monde du d\u00e9veloppement logiciel, exploitant des failles dans GitHub et npm pour voler des secrets critiques. Cette campagne, qui a touch\u00e9 des centaines de projets, soul\u00e8ve des questions urgentes sur la s\u00e9curit\u00e9 des outils que les d\u00e9veloppeurs utilisent quotidiennement.<\/p>\n<p>La cyberattaque s&rsquo;inscrit dans une strat\u00e9gie de supply chain attack, o\u00f9 les attaquants ont compromis un compte GitHub de Red Hat. En exploitant cette faille de confiance, ils ont pouss\u00e9 32 packages corrompus sous le label @redhat-cloud-services sur npm. Ces packages, portant une signature cryptographique l\u00e9gitime, ont permis aux cybercriminels de collecter des cl\u00e9s cloud, tokens GitHub et mots de passe SSH. Avec plus de 117 000 t\u00e9l\u00e9chargements hebdomadaires, l&rsquo;impact est consid\u00e9rable.<\/p>\n<p>Le malware Miasma ne se contente pas de se cacher dans les packages. Il s&rsquo;installe dans les fichiers de configuration de Claude Code et VS Code, continuant \u00e0 op\u00e9rer m\u00eame apr\u00e8s la d\u00e9sinstallation du package. Une variante, Mini Shai-Hulud, a m\u00eame permis \u00e0 l&rsquo;attaque de s&rsquo;auto-r\u00e9pliquer, for\u00e7ant GitHub \u00e0 suspendre 73 d\u00e9p\u00f4ts appartenant \u00e0 Microsoft. L&rsquo;effet domino a rendu la situation critique, avec des risques de propagation exponentielle.<\/p>\n<p>Les d\u00e9veloppeurs doivent v\u00e9rifier imm\u00e9diatement les fichiers ~\/.claude\/settings.json et .vscode\/tasks.json pour d\u00e9tecter tout script suspect. En cas d&rsquo;infection, la rotation imm\u00e9diate des secrets (tokens, cl\u00e9s cloud) est imp\u00e9rative. Microsoft et GitHub ont d\u00e9j\u00e0 d\u00e9sactiv\u00e9 les d\u00e9p\u00f4ts compromis, mais la vigilance reste de mise. Cette attaque rappelle \u00e0 quel point la cybers\u00e9curit\u00e9 est un enjeu vital pour tous, quels que soient leurs m\u00e9tiers. Suivez les derni\u00e8res actualit\u00e9s tech pour rester inform\u00e9 des \u00e9volutions de ce dossier.<\/p>\n<h2>Sources<\/h2>\n<ul>\n<li><a href=\"https:\/\/www.numerama.com\/cyberguerre\/2270899-alerte-autour-de-miasma-le-ver-informatique-qui-se-glisse-dans-claude-code-pour-voler-les-secrets-des-developpeurs.html\" target=\"_blank\" rel=\"nofollow noopener\">Source 1<\/a><\/li>\n<\/ul>\n<p>\u00c0 tr\u00e8s vite sur <a href=\"https:\/\/eternos974.live\" target=\"_blank\" rel=\"noopener\"><strong>l\u2019EternoStation<\/strong><\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>D\u00e9couvrez comment le malware Miasma exploite GitHub et npm pour voler les secrets des d\u00e9veloppeurs, avec des conseils pour se prot\u00e9ger.<\/p>\n","protected":false},"author":1,"featured_media":17821,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"cybocfi_hide_featured_image":"","_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_post_was_ever_published":false},"categories":[393],"tags":[],"class_list":["post-17820","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-infos"],"aioseo_notices":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/eternos974.live\/wp-content\/uploads\/2026\/06\/miasma-worm-supply-chain-attack-73-microsoft-github-repositories-compromised-via-ai-coding-tools-cover.png?fit=1536%2C1024&ssl=1","jetpack-related-posts":[],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/posts\/17820","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/comments?post=17820"}],"version-history":[{"count":1,"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/posts\/17820\/revisions"}],"predecessor-version":[{"id":17822,"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/posts\/17820\/revisions\/17822"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/media\/17821"}],"wp:attachment":[{"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/media?parent=17820"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/categories?post=17820"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/eternos974.live\/index.php\/wp-json\/wp\/v2\/tags?post=17820"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}