Hacker News
new
top
best
ask
show
job
North Korean Hackers Compromise Go and PHP Packages
(
opensourcemalware.com
)
8 points
by
6mile
3 hours ago
1 comment
6mile
3 hours ago
Because the Go and Packagist registries don't require additional publishing credentials like NPM and PyPI North Korean threat actors have been able to compromise legitimate packages via their PolinRider campaign.