โ ๏ธ Hackers Compromised 34 Packages in npm, PyPI, and Crates in New Supply Chain Attack
Source: https://t.co/gMv95UxYK1
New TrapDoor supply chain campaign, an active attack deploying 34 malicious packages and over 384 related versions across npm, PyPI, and Crates[.]io to steal developer credentials and cryptocurrency wallets.
The operation explicitly targets developers in the crypto, DeFi, Solana, and AI communities by disguising malware as generic developer tools and security scanners.
The TrapDoor campaign utilizes distinct, ecosystem-specific execution paths to maximize its reach during standard developer installation and build workflows.
#cybersecuritynews #supplychainattack
โ ๏ธHackers Compromised 233 Versions of Laravel-Lang Packages by Hacking 700 GitHub Repos
Source: https://t.co/uOvdrO1kna
A highly sophisticated supply chain attack has compromised the Laravel-Lang ecosystem, injecting credential-stealing remote code execution backdoors into 233 package versions across 700 GitHub repositories.
The attackers bypassed direct repository commits by exploiting GitHub's version tagging system to point legitimate tags toward a malicious fork.
The initial infection phase utilizes a stealthy dropper that masquerades as a standard Laravel localization function.
It fingerprints the host system using specific hardware metrics and establishes a temporary marker file to prevent redundant executions.
Via @AikidoSecurity