Miasma Worm Compromises 73 Microsoft GitHub Repositories in Supply Chain Attack

The Miasma self-replicating worm has compromised 73 Microsoft GitHub repositories in a supply chain attack, affecting four organizations: Azure, Azure-Samples, Microsoft, and MicrosoftDocs. The incident was reported by OpenSourceMalware, leading GitHub to disable access to the impacted repositories. No specific dates, CVE IDs, or technical details about the worm’s propagation mechanism were provided. The attack targets Microsoft’s open-source and documentation repositories, though the exact impact on downstream users remains unspecified. The campaign is described as ongoing, with no attribution to a threat actor mentioned.