Packagist Supply Chain Attack Infects 8 Packages Using GitHub
Source: Thehackernews
Published:
<p>A new "coordinated" supply chain attack campaign has impacted eight packages on Packagist including malicious code designed to run a Linux binary retrieved from a GitHub Releases URL.</p> <p>"Although the affected packages were all Composer packages, the malicious code was not added to composer.j