Miasma Worm Hits 73 Microsoft GitHub Repositories in Major Supply Chain Attack

Microsoft's GitHub repositories have become the latest to fall victim to the ongoing Miasma self-replicating supply chain attack campaign. The incident impacted 73 Microsoft repositories across four of its GitHub organizations, including Azure, Azure-Samples, Microsoft, and MicrosoftDocs, per OpenSourceMalware. The development has GitHub to disable access to those repositories. "Access to this

The article reports that the Miasma self‑replicating supply chain worm, previously seen compromising @redhat-cloud-services npm packages and spreading via GitHub and other ecosystems, has now infected 73 Microsoft GitHub repositories across several official organizations, prompting GitHub to disable access to those repos.[2][5][6] These attacks are part of a broader Miasma campaign that steals developer, CI/CD, and cloud credentials and then uses those to automatically publish backdoored artifacts and modify repositories.[2][5] From a CyberSE.AI perspective, this represents a critical AI/software supply chain risk: any AI models, agents, or services built from or deployed via affected repositories could inherit hidden backdoors or exfiltration code, so organizations need SBOM-driven provenance checks, deterministic/verified builds, and continuous monitoring of GitHub, CI/CD, and package registries to detect and contain such worm-style compromises before they propagate into AI workloads.