Over 144,000 Phishing Packages Posted to Open-Source Repositories
SecureWorld News
DECEMBER 15, 2022
Security researchers at Checkmarx and Illustria recently discovered a campaign in which a threat actor(s) managed to post over 144,000 phishing packages to popular open source platforms, including NPM, PyPi, and NuGet. The threat actors also used referral IDs to retail websites to benefit from referral rewards.
Let's personalize your content