DailyDarkWeb reports that software security teams are facing a sophisticated new supply chain threat within the open-source ecosystem. Following a year of high-profile incidents, including the Shai-hulud npm worm and the North Korea-linked Graphalgo campaign targeting cryptocurrency developers, researchers at ReversingLabs have uncovered a novel operation. Dubbed the “Ghost campaign,” this new wave of attacks […] The post Hackers Use Fake NPM Install Alerts To Distribute RAT Malware In Open Source Ecosystem appeared first on Cyber Security News.