#github-command-and-control
#github-command-and-control

[ follow ]

Shai-Hulud keeps burrowing: 314 npm packages infected after another account compromise

An npm account compromise injected malware into 314 packages, stole cloud and GitHub credentials, and used GitHub as command-and-control via automated token-driven activity.

[ Load more ]

#github-command-and-control#github-command-and-control

Shai-Hulud keeps burrowing: 314 npm packages infected after another account compromise

#github-command-and-control
#github-command-and-control