TrapDoor attacks npm, PyPI and CratesIO to steal credentials
Source: Foro3D
Published:
<p>A supply chain attack campaign called TrapDoor is spreading malware in popular repositories like npm, PyPI, and CratesIO. The malicious packages seek to steal credentials from unsuspecting developers. The threat exploits trust in open-source software to infiltrate development environments.</p> <p