North Korean Hackers Compromise Go and PHP Packages

9 pointsposted 12 hours ago
by 6mile

1 Comments

6mile

12 hours ago

Because the Go and Packagist registries don't require additional publishing credentials like NPM and PyPI North Korean threat actors have been able to compromise legitimate packages via their PolinRider campaign.