Yearlong supply-chain attack targeting security pros steals 390K credentials
Screenshot showing a graph tracking mining activity. Credit: Checkmarx But wait, there’s more On Friday, Datadog revealed that MUT-1244 employed additional means for installing its second-stage malware. One was through a collection of at least 49 malicious entries posted to GitHub that contained Trojanized proof-of-concept exploits for security vulnerabilities. These packages help malicious and benevolent […]
December 13, 2024 | Biz & IT, credential theft, cryptomining, GitHub, npm, Security, supply chain attacks | No comments