A coordinated attack campaign is actively targeting software developers through malicious repositories disguised as legitimate Next.js projects and technical assessment materials. The attackers rely on job-themed lures, presenting fake recruitment challenges that convince developers to clone and run poisoned code on their own machines. Once a developer executes the project, it silently connects to attacker-controlled […] The post Microsoft Warns of Hackers Attacking Developers with Malicious Next.js Repositories appeared first on Cyber Security News.