THE article discusses the emerging threats posed by the Miasma and Hades worms, which are currently infiltrating npm and PyPI ecosystems by executing malicious code upon project open and package import. Unlike traditional threats that rely on install times, these worms spread rapidly by exploiting developer workflows, making existing defenses such as EDR and SCA scanners ineffective. The new Dev Machine Guard's Suspicious Files feature detects these threats by flagging suspicious files across developer machines.
It is designed to fill the security gap left by conventional tools by monitoring file executions on developer systems, specifically targeting artifacts linked to these worms. Organizations are encouraged to adopt this detection method to maintain security and safeguard their development environments.