SECURITYARS TECHNICA
Dozens of Red Hat packages backdoored through its official NPM channel
Red Hat's official NPM accounts were compromised to distribute malicious packages stealing credentials. Over 30 packages were affected in a supply-chain attack identified by security firm Aikido.