All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Security
Security
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

North Korean Chollima Group Targets PHP Developers via Malicious Packagist Package

The North Korean malware loader hides in a Packagist-listed package and its GitHub branch to fetch and execute remote code in a likely Contagious Interview-style lure.

Read the full article
Kirill Boychenko1mo ago8 min readenNews

You might also wanna read

Composer and Packagist Introduce New Supply Chain Security Measures After PHP Ecosystem Attacks

The last months, and even more so the last weeks, saw an increasing amount of software supply chain attacks targeting open-source ecosystems

blog.packagist.com·1mo ago

Composer and Packagist Introduce New Supply Chain Security Measures After PHP Ecosystem Attacks

The last months, and even more so the last weeks, saw an increasing amount of software supply chain attacks targeting open-source ecosystems

blog.packagist.com·1mo ago

North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign

The North Korean threat actors linked to the Contagious Interview campaign have been observed publishing 108 unique packages and web browser

thehackernews.com·13d ago

Packagist is now protected by Aikido Intel and other updates to the PHP registry

Aikido's malware feed now blocks bad package versions in Composer by default. A look at how Packagist is closing whole classes of supply cha

aikido.dev·21d ago

North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign

The North Korean threat actors linked to the Contagious Interview campaign have been observed publishing 108 unique packages and web browser

BackBox.org·13d ago

Hacker uses Trojanized Python and PHP Packages to Steal AWS Keys

Two trojanized Python and PHP packages have been uncovered revealing another instance of program source chain assault aimed at the open-sour

Packetlabs·4y ago

North Korea’s npm Supply Chain Attack Hit Rollup Developer Tools

Researchers at JFrog traced a fresh npm supply chain attack to North Korea's Lazarus group, six lookalike packages built to steal developer

Aardwolf Security·13d ago

Comments

Sign in to join the conversation.

No comments yet. Be the first.