Hackers Use Single-Letter Go Module Typosquat to Deploy DNS
Source: Cybersecuritynews
Published:
<p>A seemingly innocent typo in a Go module name has been quietly serving a live backdoor for nearly three years. Security researchers uncovered a malicious package called github.com/shopsprint/decimal that impersonates the popular github.com/shopspring/decimal library, differing by just a single le