Threat Intelligence Report

astro.config.mjs Supply Chain Attack via Blockchain C2

📅 June 12, 2026 📰 safedep.io 🔍 0 CVE(s) referenced

A highly sophisticated supply chain attack embedded a stealthy, two-stage malware loader in the astro.config.mjs of a popular open source project, using a deceptive pull request and public blockchain infrastructure for resilient command-and-control, evading traditional detection and blocking methods.

vendor

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap

🎯 IOC Extraction

⚔️ MITRE ATT&CK TTPs

📦 STIX 2.1 Bundle