Forensic Summary
Seventy-three Microsoft-hosted open source packages were compromised with the Miasma credential-stealing worm, which activates specifically when developers open packages inside AI coding agents. The malware, attributed to threat actor TeamPCP, exploits legitimate OIDC token workflows and SLSA provenance attestation to bypass supply-chain integrity checks and spread laterally across cloud infrastructure. This marks the second such compromise of an official Microsoft repository in as many months, indicating a sustained campaign targeting developer toolchains and the AI-assisted development pipeline.
Read the full technical deep-dive on Grid the Grey: https://gridthegrey.com/posts/miasma-worm-targets-ai-coding-agents-via-poisoned-microsoft-packages/
Top comments (0)