Miasma Worm 73: Inside the Microsoft/GitHub Supply Chain Attack Targeting 73 Tech Organisations

DFIR analysis of the Miasma Worm 73 supply chain campaign — binding.gyp exploitation, four-stage obfuscation, Bun runtime C2, and GitHub dead-drop infrastructure targeting 73 technology organisations.

2026-06-20T10:05:39.794Z
Rudra Verma, Senior Security Architect & Researcher