bulwarkblack.com • 2h
Npm, Microsoft, and AI Coding Agents: Shai Hulud and Miasma Worm Supply Chain Campaigns
Between May and June 2026, threat actor TeamPCP executed a multi-stage supply chain attack transitioning from the Shai Hulud cluster to the Miasma Worm. Shai Hulud utilized dependency confusion and SLSA provenance spoofing to compromise CI/CD pipelines and exfiltrate AWS Redshift data. The subsequent Miasma Worm evolved into an "environment-triggered" threat, hijacking AI agent configuration files (e.g., .claude/settings.json, .cursor/rules/setup.mdc) to achieve zero-click execution upon workspace opening. This campaign compromised 176 npm packages and 37 PyPI wheels, culminating in a June 5 breach of Microsoft that disabled 73 GitHub repositories and disrupted Azure Functions deployment actions globally.
Links:bulwarkblack.com, gurucul.com, vibegraveyard.ai, NSFOCUS, Fortinet, Microsoft, Labs, Vectra, Trendmicro, Upwind, Es-la •