Socket’s Threat Research Team has identified a remote access trojan (RAT) distributed through several PHP packages published on Packagist by the actor behind the username nhattuanbl. These malicious packages, disguised as useful Laravel utilities, have been observed installing a persistent backdoor that allows remote access to web servers. The identified packages, nhattuanbl/lara-helper and nhattuanbl/simple-queue, contain […] The post Malicious Laravel Packages Deploy PHP RAT, Compromise Web Servers appeared first on Cyber Security News.