Nietzsche Virus Lab

The software supply chain has a new predator. 🐛 Meet Iron Worm, the "rustier cousin" of the infamous Shai-Hulud worm. Just like its predecessor, it burrows into dev environments, steals credentials, and self-propagates through trusted GitHub and npm workflows. Except this one is built in heavy, async Rust, hides behind an eBPF kernel rootkit, and talks over Tor. Full teardown of the beast: https://t.co/9Tn4G8tluW

Compromised npm packages ([email protected], [email protected]) are abusing Hugging Face repos as exfiltration infrastructure. The packages deploy a remote access trojan (RAT) that captures keystrokes, screenshots, and crypto wallet credentials. Indicators of compromise (IOCs): - npm user: hexalpha10 / author: toskypi - 195.201.194[.]107:8010 (WebSocket C2) - c2-toskypi.onrender[.]com (HTTP C2) - huggingface[.]co/api (exfiltration endpoint) - HKCU\Software\Microsoft\Windows\CurrentVersion\Run\MicrosoftSystem64 (persistence) - MicrosoftSystem64.service (Linux systemd persistence) - \MicrosoftSystem64 (Windows scheduled task) - MicrosoftSystem64/payload.js (payload directory) Defenders: treat unexpected huggingface[.]co/api calls from non-ML workloads as suspicious.

3rd wave dropped.. 3 more packages impersonating emcd[.]io, @𝚎𝚖𝚌𝚍-𝚟𝚞𝚎/𝚊𝚞𝚝𝚑 @𝚎𝚖𝚌𝚍-𝚟𝚞𝚎/𝚕𝚘𝚊𝚗𝚜 @𝚎𝚖𝚌𝚍-𝚟𝚞𝚎/𝚋𝟸𝚋-𝚙𝚊𝚢-𝚏𝚘𝚛𝚖 1. Downloads a platform-specific second-stage payload from 𝚘𝚘𝚋[.]𝚖𝚘𝚒𝚔𝚊[.]𝚝𝚎𝚌𝚑/𝚙𝚊𝚢𝚕𝚘𝚊𝚍/{𝚙𝚕𝚊𝚝𝚏𝚘𝚛𝚖}using a hardcoded secret key. 2. Writes the payload to ~/.𝚎𝚖𝚌𝚍-𝚟𝚞𝚎_𝚒𝚗𝚒𝚝.𝚓𝚜 (a dot-prefixed hidden file in the user's home directory). 3. Executes the payload immediately via spawn(𝚙𝚛𝚘𝚌𝚎𝚜𝚜.𝚎𝚡𝚎𝚌𝙿𝚊𝚝𝚑, [𝚙𝚊𝚢𝚕𝚘𝚊𝚍_𝚙𝚊𝚝𝚑], 𝚎𝚗𝚟). 4. Reports installation metadata to oob[.]moika[.]tech/report (C2 callback). Updated Blog: https://t.co/pDdUVfMFZv Campaign Details: https://t.co/FLwqh6ZnGQ

Microsoft has identified a npm supply chain compromise impacting 90+ redhat-cloud-services/* packages, including patch-client 4.0.4, insights-client 4.0.4, rbac-client 9.0.3, host-inventory-client 5.0.3, frontend-components 7.7.2, and others. The payload is a self-propagating worm that infects other npm packages and self-publishes. Each compromised package adds a malicious preinstall hook, embedding an index.js script in the package.json that silently executes “node index.js” during installation, downloads Bun, and runs a payload that steals secrets from npm, GitHub, Amazon Web Services (AWS), and Secure Shell (SSH). The added code bloats index.js from ~8KB to ~4.3MB, acting as a heavily obfuscated ROT-9 eval loader. If any of the compromised packages are installed, users and organizations should assume compromise, rotate credentials, revert to a previously trusted version, and block compromised packages. Identified compromised npm packages have been taken down, and we continue to work with the npm team. Microsoft continues to investigate this attack and will publish updates as more information is available.